A typical stateful (resp. stateless) group key distribution (GKD) protocol is composed of a secret assignment algorithm, and stateful join/leave rekeying algorithms (resp. a stateless group rekeying algorithm). Any design flaw in any of these algorithms could lead to attacks on GKD protocols. We sho