CN103517162B - Communication system and method based on XPON - Google Patents

Communication system and method based on XPON Download PDF

Info

Publication number
CN103517162B
CN103517162B CN201310416240.5A CN201310416240A CN103517162B CN 103517162 B CN103517162 B CN 103517162B CN 201310416240 A CN201310416240 A CN 201310416240A CN 103517162 B CN103517162 B CN 103517162B
Authority
CN
China
Prior art keywords
module
key
signal
optical
message
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201310416240.5A
Other languages
Chinese (zh)
Other versions
CN103517162A (en
Inventor
蒋屹新
陈彬
李鹏
郭晓斌
董旭柱
许爱东
陈华军
蒙家晓
关泽武
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Normal University
Research Institute of Southern Power Grid Co Ltd
Original Assignee
Beijing Normal University
Research Institute of Southern Power Grid Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Normal University, Research Institute of Southern Power Grid Co Ltd filed Critical Beijing Normal University
Priority to CN201310416240.5A priority Critical patent/CN103517162B/en
Publication of CN103517162A publication Critical patent/CN103517162A/en
Application granted granted Critical
Publication of CN103517162B publication Critical patent/CN103517162B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Abstract

The invention discloses a communication system based on the XPON. The communication system comprises an optical line terminal, an optical distribution network and at least one optical network unit. The communication system is characterized in that the optical line terminal converts received Ethernet data signals and performs power control and encryption on optical signals. The optical signals are transmitted to all the optical network units through the optical distribution network, the optical network units perform decryption, power control and balance detection on the received signals and transmit the signals to all terminal user devices. Compared with the prior art, the communication system based on the XPON has the advantages that burnout of optical lines or devices due to overheating is prevented through power control in the transmission process, secondary encryption and balance correction are performed on the signals and secret keys, and therefore safety, validity and reliability of the signals in the transmission process are ensured.

Description

A kind of communication system based on XPON and method
Technical field
The present invention relates to a kind of communication system of Optical Fiber Transmission and method, more particularly, to a kind of communication system based on XPON And method.
Background technology
XPON, as optical fiber access technology of new generation, in anti-interference, bandwidth characteristic, accesses the side such as distance, maintenance management Face is respectively provided with huge advantage, and its application has obtained the highest attention of global operator.Comparative maturity in XPON soft exchange technology EPON and GPON, is all made up of local side OLT, user side ONU equipment and passive optical distribution network ODN.
A kind of new optical line terminal OLT based on XPON system of Chinese patent, publication number:CN202435410U discloses A kind of new optical line terminal OLT device, in this device, receives and dispatches list including main control unit, cross matrix control unit data Unit;Main control unit, including CPU, routing table memory;Transmit-Receive Unit, including exchanger, business module, first line of a couplet EPON module and Hardware routing table module, this device directly can be forwarded the data between same interface model, and different business intermodule leads to Cross cross matrix unit and realize without hindrance data dispatch, decrease the caching of business data flow, forwarding time.Above-mentioned is new Optical line terminal OLT device, for shortening the data forwarding time, but fails in optical line terminal with optical network unit to transmission Optical signal carries out safe transmission protection.
In view of drawbacks described above, creator of the present invention passes through long research and practice obtains this creation finally.
Content of the invention
It is an object of the invention to provide a kind of communication system based on XPON and method are in order to overcome above-mentioned technological deficiency.
For achieving the above object, the present invention provide a kind of communication system based on XPON, it include an optical line terminal, one Light distribution network, at least one optical network unit, described optical line terminal, signal conversion is carried out to the Ethernet data receiving, Power Control and encryption are carried out to optical signal, is transferred to each optical network unit, described optical network unit pair via light distribution network The signal receiving is decrypted, Power Control and equilibrium detection after be transferred to each end user device, described optical line terminal Identical initial key k_known need to each be stored with optical network unit;Wherein, the message frame transmitting in described optical signal For, including one group of random number as in message frame information encryption unpaired message, message part data1 choose information odd bits Or data2 chooses even bit, information encryption and decryption keys key and the error check code CRC validation of information;
Described optical line terminal includes a control module, an encrypting module and a power control module, described optical-fiber network list Unit includes a control module, a deciphering module and a rectification module, wherein,
Described encrypting module, described encrypting module produces a random key key and using random key key in message frame Data1 or data2 be message part encryption, message part encryption after the completion of, using encrypting module memory storage and deciphering module Consistent initial key K_known is encrypted to key key;
Described power control module, converts optical signals to current signal or voltage signal, judges light according to given threshold Whether power transships and stores optical power value, if power overload duration time interval T, to control module output feedback signal, Optical signal is transmitted after adjustment power;If current signal or voltage signal are not reaching to given threshold or instantaneously reach threshold value, continue Resuming optical signals can;
Described deciphering module, carries out CRC check and unpaired message checking, if a pair of the message frame receiving, has to information Any one CRC check result mistake, then abandon two message frames and send request to optical line terminal, wait optical line terminal Retransmit;If check results are correct, message frame is carried out with pair verification, initial first by optical network unit storage after success Key k_known deciphers to key key, with key key, two message frames depositing data1, data2 is being deciphered respectively, is obtaining To after decryption information, control module sends decryption information to rectification module;
Described rectification module, converts optical signals to current signal or voltage signal, judges luminous power according to given threshold Whether transship and store optical power value, if power overload duration time interval T, to control module output feedback signal, adjust Power output, transmits optical signal after adjustment power;If current signal or voltage signal are not reaching to given threshold or instantaneously reach Threshold value, then by optical signal transmission to balance module, optical signal, after photoelectric conversion, filter and amplification, adjudicates formula pair according to following Electric signal makes decisions, and after signal is corrected through judgement, described balance module is converted to optical signal continuation transmission by recovering signal.
Judgement formula:
U in above-mentioned formulakIt is in optical line terminal 1 input signal sequence xkAverage, ykIt is to adjudicate mould in optical network unit The sequence that block receives, σ2For the variance of noise, then the most possible sequence recovering can have above-mentioned formula to calculate.
Preferably, described encrypting module includes a key generation module, a management module and a conversion module, wherein,
Described key generation module produces a random key key and is stored in management module;
Described conversion module, is that message part enters using the key key randomly generating to data1 or data2 in message frame Row encryption;Described conversion module, is message part to data1 or data2 in message frame and key key carries out displacement respectively and becomes Change, product of transformation is carried out to the message part after shift transformation and key part, and product of transformation result in above-mentioned steps is entered Shiftrows, in the message frame after being encrypted, data1 or data2 is that message part is stored in management module;
Described conversion module, the initial key K_known using management module storage is encrypted to key key;Described Conversion module, enters shiftrows to the initial key K_known and key key of management module storage, respectively to shift transformation The initial key K_known and key key of management module storage afterwards carry out product of transformation, and take advantage of in above-mentioned steps to described Product transformation result enters shiftrows, and the initial key K_known after being encrypted and key key are stored in management module.
Preferably, described deciphering module includes an authentication module, a management module and an inverse transform module, wherein,
Authentication module carries out CRC check and unpaired message checking to information, if the message frame receiving, has a CRC Check results mistake, then abandon two message frames, and management module sends request to optical line terminal, waits optical line terminal weight Pass;If check results are correct, message frame is carried out with pair verification, choose a pair of consistent message frame of unpaired message and be delivered to change It is decrypted in die change block;
Described inverse transform module, the initial key k_known using management module storage deciphers to key key;Described inverse Conversion module, carries out backward shift bit map to the initial key k_known of key key in message frame and management module storage, to shifting In message frame after bit map, the initial key k_known of key key and management module storage carries out inverse product of transformation, to described Backward shift bit map is carried out to product of transformation result in above-mentioned steps, the key key after being deciphered;
Described inverse transform module, is message part deciphering to data1 or data2 in message frame using key key;Described inverse Conversion module, carries out backward shift bit map respectively to data1, the data2 in key key and message frame in message frame, and displacement is become Data1, data2 in key key and message frame in message frame after changing carries out inverse product of transformation, to described in above-mentioned steps Product of transformation result carries out backward shift bit map, conversion module deciphered after information, will deciphering after information be sent to control module.
The present invention also provides a kind of communication means based on XPON, is realized based on the above-mentioned communication system based on XPON , it comprises the following steps:
Step a, described optical line terminal receives network signal, and described network signal is changed into accordingly by control module Optical signal, is transferred to power control module;
Step b, described power control module will determine that whether optical signal power exceedes given threshold, and is carried out according to result Power Control;
Step c, after power is adjusted by described control module, signal transmission is entered to signal and signal key key to encrypting module Row encryption;
Step d, after described encrypting module will be encrypted, signal sends control module to, and described control module distributes net via light Network sends, and is sent to each optical network unit;
Step e, the control module in described optical network unit transmits a signal to deciphering module, to decrypted signal;
Step f, after described control module will be deciphered, signal is sent to rectification module, and signal power control and distortion are rectified Just;
Step g, operation terminates.
Preferably, the power detection control process in described step b is:
Step b1, in described power control module, optical signal is divided into two-way by optical splitter, be transferred to respectively converting unit and Switch element;
Step b2, described converting unit converts optical signals to current signal or voltage signal;
Step b3, according to given threshold, described converting unit judges whether luminous power is transshipped and stored optical power value;If institute Stating converting unit judged result is power nonoverload, then execution step b5;If described converting unit judged result is power overload, Then after time interval T, judgement that luminous power is sampled for the second time, if second judges overload, execution step b4, if sentence for the second time Disconnected nonoverload then execution step b5;
Step b4, described converting unit sends control signal to control module, and switch element temporarily disconnects;
Step b5, described control module adjusts power output, makes power output be less than given threshold, described switch element closes Close, optical signal continues transmission;
Step b6, operation terminates.
Preferably, in described step c to message part and key key ciphering process being:
Step c1, described key generation module randomly generates key key;
Step c2, described conversion module, is key key in message part and message frame to data1 or data2 in message frame Enter shiftrows;
Step c3, described conversion module, product of transformation is carried out to the message part after shift transformation and key key;
Step c4, described conversion module enters shiftrows to described to product of transformation result in above-mentioned steps, is added Information after close;
Step c5, described conversion module, the initial key k_known to key key in message frame and management module storage Enter shiftrows;
Step c6, described conversion module, what key key in the message frame after shift transformation and management module were stored is initial Key k_known carries out product of transformation;
Step c7, described conversion module, enters shiftrows to described to product of transformation result in above-mentioned steps, is added Key key after close;
Step c8, described conversion module exports information and key key after encryption to outgoing management module;
Step c9, operation terminates.
Preferably, the decryption verification process in described step e is:
Step e1, described authentication module carries out CRC check to the message frame receiving;
Step e2, described authentication module judges whether any one message frame CRC check result is wrong;If CRC check Wrong then execution step e3 of result;CRC check result does not have mistake then execution step e4;
Step e3, abandons a pair of message frame, and management module sends request to optical line terminal, waits optical line terminal to retransmit Message frame.
Step e4, carries out pair verification to described message frame, chooses a pair of consistent message frame of unpaired message and is delivered to change Decode in die change block.
Step e5, described inverse transform module uses the initial key k_known of management module storage that key key is deciphered, After obtaining key key, with key key, two message frames depositing data1, data2 are deciphered respectively.
Step e6, described inverse transform module deciphered after information, will deciphering after information be sent to control module;
Step e7, operation terminates.
Preferably, the decrypting process in described step e5 is:
Step e51, described inverse transform module, the initial key k_ to key key in message frame and management module storage Known carries out backward shift bit map;
Step e52, described inverse transform module, key key in the message frame after shift transformation and management module are stored Initial key k_known carries out inverse product of transformation;
Step e53, described modular converter, to described, backward shift bit map is carried out to product of transformation result in above-mentioned steps, obtain To key key;
Step e54, described inverse transform module, is information to data1 or data2 in key key in message frame and message frame Part carries out backward shift bit map;
Step e55, described inverse transform module, to data1 in key key in the message frame after shift transformation and message frame or Data2 is that message part carries out inverse product of transformation;
Step e56, described inverse transform module, to described, backward shift bit map is carried out to product of transformation result in above-mentioned steps.
Preferably, the distortion correcting process of rectification module is in described step f:
Step f1, the optical signal receiving is changed into electric signal by described photoelectric conversion module;
Step f2, the electric signal in above-mentioned steps filters off interference signal through described filtration module;
Step f3, in above-mentioned steps, signal is amplified to the intensity of needs through described amplification module by filtered signal;
Step f4, described judging module, to signal equalization, makes decisions to electric signal according to judgement formula;
Judgement formula:
U in above-mentioned formulakIt is in optical line terminal input signal sequence xkAverage, ykIt is to adjudicate mould in optical network unit The sequence that block receives, σ2For the variance of noise, then the most possible sequence recovering can have above-mentioned formula to calculate;
Step f5, the electric signal after adjudicating in said process, through described electrical to optical converter, the signal recovering is changed Continue transmission for optical signal;
Step f6, operation terminates.
Compared with the prior art the beneficial effects of the present invention is:It is somebody's turn to do the communication system based on XPON and method, Neng Gou Optical line terminal carries out Power Control to signal, prevents from overheated in transmitting procedure burning out fibre circuit or equipment, to signal and close The secondary encryption of key, the security ensureing transmitting procedure is it is therefore prevented that the leakage of initial key;Optical network unit to signal secondary solution Close, even if initial key is revealed also cannot complete secondary deciphering, Power Control and signal are corrected it is ensured that in signals transmission Validity and reliability.
Brief description
Fig. 1 is a kind of functional block diagram of the communication system based on XPON of the present invention;
Fig. 2 is a kind of functional block diagram based on power control module in the communication system optical line terminal of XPON of the present invention;
Fig. 3 is a kind of functional block diagram of the communication system encrypting module based on XPON of the present invention;
Fig. 4 is a kind of functional block diagram of the communication system deciphering module based on XPON of the present invention;
Fig. 5 is a kind of functional block diagram of the communication system optical network unit rectification module based on XPON of the present invention;
Fig. 6 is a kind of functional block diagram based on balance module in the communication system rectification module of XPON of the present invention;
Fig. 7 is a kind of flow chart of the communication means of the communication system based on XPON of the present invention;
Fig. 8 is a kind of optical signal threshold value deterministic process flow chart of communication means based on XPON of the present invention;
Fig. 9 is a kind of signal encryption process flow diagram flow chart of the communication means based on XPON of the present invention;
Figure 10 is a kind of flow chart of the decrypted signal process of the communication means based on XPON of the present invention;
Figure 11 is a kind of flow chart of the power control process of the communication system optical network unit based on XPON of the present invention;
Figure 12 is a kind of flow chart of the distortion correcting process of the communication system optical network unit based on XPON of the present invention;
Specific embodiment
Below in conjunction with accompanying drawing, the above-mentioned He other technical characteristic of the present invention and advantage are described in more detail.
Communication system based on XPON and method in the present invention, are encrypted in optical signal transmission front end, and receiving terminal is carried out Deciphering, increased the security of XPON system, and executes Power Control and equilibrium to optical signal, prevents optical fiber from crossing cause thermal damage.
Refer to shown in Fig. 1, it is a kind of functional block diagram of the communication system based on XPON of the present invention, including an OLT light Line terminal 1, an ODN light distribution network 2, at least one ONU optical network unit 3, wherein said OLT optical line terminal 1 includes one Encrypting module 11, a control module 12, a power control module 13, described ONU optical network unit 3 include a deciphering module 31, One control module 32, a rectification module 33.Described optical line terminal OLT 1, carries out signal to the Ethernet data receiving and turns Change, Power Control and encryption are carried out to optical signal, be transferred to each ONU optical network unit 3 via ODN light distribution network 2, described ONU optical network unit 3 is decrypted to the signal receiving, equalize and Power Control detection after be transferred to each terminal use and set Standby, described optical line terminal 1 and optical network unit 3 need to each store identical initial key k_known.
Refer to shown in Fig. 2, its be the present invention a kind of based on Power Control mould in the communication system optical line terminal of XPON The functional block diagram of block, includes an optical splitter 131, a converting unit 132 and based on the communication system power control module of XPON Switch element 133, optical signal is divided into two-way by wherein said optical splitter 131, is transferred to converting unit 132 and switch element respectively 133, described converting unit 132 converts optical signals to current signal or voltage signal, judges that luminous power is according to given threshold No transship and store optical power value, if power overload, to control module 12 output feedback signal, adjust power output, switch is single Unit 133 temporarily disconnects;If current signal or voltage signal are not reaching to given threshold, switch element 133 closes, and optical signal can Continue transmission.
Refer to shown in Fig. 3, it is a kind of functional block diagram of the communication system encrypting module based on XPON of the present invention, described Encrypting module 11 includes a key generation module 111, a management module 112 and a conversion module 113, wherein key generation module 111 generation one random key key are simultaneously stored in management module 112, described conversion module 113, to data1 in message frame or Data2 is message part and key key enters shiftrows respectively, described conversion module 113, to the message portion after shift transformation Divide and key part carries out product of transformation, and to described, shiftrows are entered to product of transformation result in above-mentioned steps, added In message frame after close, data1 or data2 is message part.
Described conversion module 113, moves respectively to the initial key K_known and key key of administrative unit 112 storage Bit map, carries out product of transformation to the initial key K_known and key part of administrative unit 112 storage after shift transformation, And to described, shiftrows are entered to product of transformation result in above-mentioned steps, the key key after being encrypted.
Refer to shown in Fig. 4, it is a kind of functional block diagram of the communication system deciphering module based on XPON of the present invention, described Deciphering module 31 includes an authentication module 311, a management module 312 and an inverse transform module 313, and wherein authentication module 311 is right Information carries out CRC check and unpaired message checking.If a pair of the message frame receiving, there is a CRC check result mistake, then Abandon two message frames, management module 312 sends request to optical line terminal 1, wait optical line terminal 1 to retransmit.If verification knot Fruit is correct, then message frame is carried out with pair verification, chooses a pair of consistent message frame of unpaired message and is delivered to inverse transform module 313 In be decoded.
Described inverse transform module 313, the initial key k_known first by management module 312 storage solves to key key Close, described inverse transform module 313, the initial key k_known of key key in message frame and management module 312 storage is carried out Backward shift bit map, enters to the initial key k_known of key key in the message frame after shift transformation and management module 312 storage The inverse product of transformation of row, carries out backward shift bit map to described to product of transformation result in above-mentioned steps, obtains key key.
Described inverse transform module 313, after with key key, two message frames depositing data1, data2 are deciphered respectively, institute State inverse transform module 313, backward shift bit map is carried out to data1, the data2 in key key and message frame in message frame, to displacement Data1, data2 in key key and message frame in message frame after conversion carries out inverse product of transformation, to described to above-mentioned steps Middle product of transformation result carries out backward shift bit map, inverse transform module 313 deciphered after information, will deciphering after information be sent to control Molding block 32.
Refer to shown in Fig. 5, it is a kind of work(of the communication system optical network unit rectification module based on XPON of the present invention Energy block diagram, includes an optical splitter 331, a converting unit 332, a switch element 333 based on the communication system rectification module of XPON With a balance module 334, optical signal is divided into two-way by wherein said optical splitter 331, is transferred to converting unit 332 and switch respectively Unit 333, described converting unit 332 converts optical signals to current signal or voltage signal, judges light work(according to given threshold Whether rate is transshipped and is stored optical power value, if power overload duration T, to control module 32 output feedback signal, adjusts Whole power output, switch element 333 temporarily disconnects;If current signal or voltage signal are not reaching to given threshold, switch is single Unit 333 closure, optical signal transmission is to balance module 334.
Refer to shown in Fig. 6, it is a kind of work(based on balance module in the communication system rectification module of XPON of the present invention Energy block diagram, wherein, described balance module 334 includes a photoelectric conversion module 3341, a filtration module 3342, an amplification module 3343 and a judging module 3344, wherein said photoelectric conversion module 3341 changes into electric signal to the optical signal receiving, electricity Module 3342 filters off interference signal, the intensity of the needs amplifying signal through amplification module 3343, judgement to signal after filtering Module 3344, to signal equalization, makes decisions to electric signal according to judgement formula, the interference producing in correcting signal transmitting procedure. After recovering primary signal, be converted to optical signal continuation transmission through electrical to optical converter 3345 by recovering signal.
Judgement formula:
U in above-mentioned formulakIt is in optical line terminal 1 input signal sequence xkAverage, ykIt is to adjudicate mould in optical network unit The sequence that block receives, σ2For the variance of noise, then the most possible sequence recovering can have above-mentioned formula to calculate.
The communication process of communication system based on XPON a kind of to the present invention is described in detail below.
Refer to shown in Fig. 7, it is a kind of flow chart of the communication means of the communication system based on XPON of the present invention, its mistake Cheng Wei:
Step a1, described optical line terminal 1 receives network signal, and described network signal is changed into phase by control module 12 The optical signal answered, is transferred to power control module 13;
Step a2, described power control module 13 will determine that whether optical signal power exceedes given threshold, and according to result Carry out Power Control;
Refer to shown in Fig. 8, it is a kind of optical signal threshold value deterministic process stream of communication means based on XPON of the present invention Cheng Tu, concretely comprises the following steps:
Step a21, in described power control module 13, optical signal is divided into two-way by optical splitter 131, is transferred to conversion respectively Unit 132 and switch element 133;
Step a22, described converting unit 132 converts optical signals to current signal or voltage signal;
Step a23, according to given threshold, described converting unit 132 judges whether luminous power is transshipped and stored optical power value;
If described converting unit 132 judged result is described current signal for power nonoverload or voltage signal is not reaching to Given threshold, then execution step a26;If described converting unit 132 judged result is described current signal or electricity for power overload Pressure signal exceedes given threshold, after time interval T, second sampling of luminous power is judged whether to transship, if judging for the second time Carry, then execution step a24, if second judges nonoverload, execution step a26;
Step a24, described converting unit 132 sends control signal to control module 12, adjusts power output, switch element 133 temporarily disconnect;
Step a25, described control module 12 adjusts power output, makes power output be less than given threshold;
Step a26, described switch element 133 closes, and optical signal continues transmission;
Step a27, operation terminates.
Step a3, after power is adjusted by described control module 12, signal transmission is encrypted to signal to encrypting module;
Refer to shown in table 1, table 2, it is message frame structure format figure, table 1 is data1 part messages frame format figure, table 2 For data2 part messages frame format figure, wherein encrypting module produces one group of identical random number, as the pairing letter of encryption information Breath, in encryption information, data1 part chooses the radix position of information, and data2 part chooses the even bit of information, and key is to information Encryption and decryption keys, CRC validation is a kind of error check code, whether has error code in checking transmitting procedure.
Unpaired message data1 key CRC check
Table 1
Unpaired message data2 key CRC check
Table 2
Refer to shown in Fig. 9, it is a kind of signal encryption process flow diagram flow chart of the communication means based on XPON of the present invention, tool Body step is:
Step a31, described key generation module 111 randomly generates key key and is stored in administrative unit 112;
Step a32, described conversion module 113, is that message part enters shiftrows to data1 or data2 in message frame;
Step a33, described conversion module 113, enters shiftrows to key key in message frame;
Step a34, described conversion module 113, product of transformation is carried out to the message part after shift transformation and key key
Step a35, described conversion module 113 enters shiftrows to described to product of transformation result in above-mentioned steps, obtains Information to after encryption;
Step a36, described conversion module 113 uses the initial key k_known of management module 112 storage to key key It is encrypted;
The initial key K_known that described modular converter is stored using management module 112 to key key, hold by encrypted program Row is following to be operated:
Step a361, described conversion module 113, the initial key to key key in message frame and management module 312 storage K_known enters shiftrows;
Step a362, described conversion module 113, key key in the message frame after shift transformation and management module 112 are deposited The initial key k_known of storage carries out product of transformation;
Step a353, described conversion module 113, to described, shiftrows are entered to product of transformation result in above-mentioned steps, Key key after being encrypted;
Step a37, described conversion module 113 exports information and key key after encryption to outgoing management module 112;
Step a38, operation terminates.
Step a4, described encrypting module 11 will encrypt after signal send control module 12 to, described control module 12 via Light distribution network 2 sends, and is sent to each optical network unit 3.
Step a5, the control module 32 in described optical network unit 3 transmits a signal to deciphering module 31, and signal is carried out Deciphering.
Refer to shown in Figure 10, it is a kind of flow process of the decrypted signal process of the communication means based on XPON of the present invention Scheme, its process is:
Step a51, described authentication module 311 carries out CRC check to the message frame receiving;
Step a52, described authentication module 311 judges whether any one message frame CRC check result is wrong;
If described authentication module 311 judges that message frame CRC check result is wrong, execution step a53;If described checking Module 311 judges that message frame CRC check result does not have mistake then execution step a54;
Step a53, abandons a pair of message frame, and management module 312 sends request to optical line terminal 1, waits optical line eventually End 1 re-transmission.
Step a54, carries out pair verification to described message frame, and a pair of consistent message frame of selection unpaired message is delivered to inverse It is decoded in conversion module 313.
Step a55, described inverse transform module 313 uses the initial key k_known of management module 312 storage to key key Two message frames depositing data1, data2, after obtaining key key, are deciphered respectively by deciphering with key key.
Described to below the decrypted program performing of message frame with key key and data1, data2 operate:
Step a551, described inverse transform module 313, what key key in message frame and management module 312 were stored is initially close Key k_known carries out backward shift bit map;
Step a552, described inverse transform module 313, to key key in the message frame after shift transformation and management module 312 The initial key k_known of storage carries out inverse product of transformation;
Step a553, described inverse transform module 313, to described, the change of backward shift position is carried out to product of transformation result in above-mentioned steps Change, obtain key key;
Step a554, described inverse transform module 313, data1, the data2 in key key and message frame in message frame is entered Row backward shift bit map;
Step a555, described inverse transform module 313, in key key and message frame in the message frame after shift transformation Data1, data2 carry out inverse product of transformation;
Step a556, described inverse transform module 313, to described, the change of backward shift position is carried out to product of transformation result in above-mentioned steps Change;
Step a56, inverse transform module 313 deciphered after information, will deciphering after information be sent to control module 32;
Step a57, operation terminates.
Step a6, after described control module 32 will be deciphered, signal is sent to rectification module 33, carries out Power Control to signal Correct with distortion;
Refer to shown in Figure 11, it is a kind of Power Control mistake of the communication system optical network unit based on XPON of the present invention The flow chart of journey, its process is:
Step a61, optical signal is divided into two-way by described optical splitter 331, is transferred to converting unit 332 and switch element respectively 333;
Step a62, described converting unit 332 converts optical signals to current signal or voltage signal;
According to given threshold, step a63, judges whether luminous power is transshipped and stored optical power value;
If described converting unit 332 judged result is described current signal for power overload or voltage signal exceedes setting threshold Value, then execution step a64;If described converting unit 132 judged result is described current signal or voltage letter for power nonoverload Number it is not reaching to given threshold, then execution step a66;
Step a64, described adjust power output to control module 32 output feedback signal, switch element 333 temporarily breaks Open;
Step a65, described control module 32 adjusts power output, makes power output be less than given threshold;
Step a66, if described current signal or voltage signal are not reaching to given threshold, switch element 333 closes, light Signal transmission is to rectification module 334;
Refer to shown in Figure 12, it was corrected for a kind of distortion of the communication system optical network unit based on XPON of the present invention The flow chart of journey, its process is:
Step a661, described photoelectric conversion module 3341 changes into electric signal to the optical signal receiving;
Step a662, module 3342 filters off interference signal to the electric signal in above-mentioned steps after filtering;
Step a663, the intensity of the needs that signal is amplified by filtered signal through amplification module 3343 in above-mentioned steps;
Step a664, judging module 3344, to signal equalization, makes decisions to electric signal according to judgement formula, correcting signal The interference producing in transmitting procedure;
Judgement formula:
U in above-mentioned formulakIt is in optical line terminal 1 input signal sequence xkAverage, ykIt is to adjudicate mould in optical network unit The sequence that block receives, σ2For the variance of noise, then the most possible sequence recovering can have above-mentioned formula to calculate.
Step a665, described through electrical to optical converter 3345 by the signal recovering be converted to optical signal continue transmission;
Step a666, operation terminates.
Step a7, operation terminates.
The foregoing is only presently preferred embodiments of the present invention, be merely illustrative for invention, and nonrestrictive. Those skilled in the art understands, it can be carried out in the spirit and scope that invention claim is limited with many changes, change, Even equivalent, but fall within protection scope of the present invention.

Claims (9)

1. a kind of communication system based on XPON, it includes an optical line terminal, a smooth distribution network, at least one optical-fiber network list Unit, it is characterised in that described optical line terminal, carries out signal conversion to the Ethernet data receiving, carries out work(to optical signal Rate controls and encrypts, and is transferred to each optical network unit via light distribution network, described optical network unit is to the signal receiving Be decrypted, Power Control and equilibrium detection after be transferred to each end user device, described optical line terminal and optical network unit Identical initial key k_known need to each be stored;Wherein, a kind of message frame transmitting in described optical signal, including letter The unpaired message of breath, message part data1 chooses needs the odd bits of transmission information, information encryption and decryption keys key, mistake Check code CRC validation;Another kind of message frame, chooses and need to transmit letter including the unpaired message of information, message part data2 The even bit of breath, information encryption and decryption keys key, error check code CRC validation;
Described optical line terminal includes a control module, an encrypting module and a power control module, described optical network unit bag Include a control module, a deciphering module and a rectification module, wherein,
Described encrypting module is produced a random key key and using random key key, data1 or data2 in message frame is believed Breath Partial encryption, after the completion of message part encryption, using consistent with deciphering module storage initial key k_ in encrypting module Known is encrypted to key key;
Described power control module, converts optical signals to current signal or voltage signal, judges luminous power according to given threshold Whether transship and store optical power value, if power overload duration time interval T, export to the control module of optical line terminal anti- Feedback signal, adjusts power output, transmits optical signal after adjustment power;If current signal or voltage signal are not reaching to given threshold Or instantaneously reach threshold value, then continue transmission optical signal;
Described deciphering module, carries out CRC check and unpaired message checking, if a pair of the message frame receiving, has any to information One CRC check result mistake, then abandon two message frames and send request to optical line terminal, wait optical line terminal weight Pass;If check results are correct, message frame is carried out with pair verification, initially close first by optical network unit storage after success Key k_known deciphers to key key, then with key key, two message frames depositing data1, data2 is deciphered respectively, obtains After decryption information, the control module of optical network unit sends decryption information to rectification module;
Described rectification module, converts optical signals to current signal or voltage signal, whether judges luminous power according to given threshold Transship and store optical power value, if power overload duration time interval T, export feedback letter to the control module of optical network unit Number, adjust power output, after adjustment power, transmit optical signal;If current signal or voltage signal are not reaching to given threshold or wink When reach threshold value, then by optical signal transmission to balance module, described balance module include a photoelectric conversion module, one filtering mould Block, an amplification module, a judging module and an electrical to optical converter, the optical signal receiving is turned by wherein said photoelectric conversion module Chemical conversion electric signal, electric signal filters off interference signal through described filtration module, through described amplification module, signal is amplified to needs Intensity, described judging module equalizes to signal, according to judgement formula, electric signal is made decisions, and signal is corrected extensive through judgement After multiple, be converted to optical signal continuation transmission through described electrical to optical converter by recovering signal;
Judgement formula:
m a x X 1 , K , X n Σ k = 1 n ( - ( y k - u k ) ( y k + 2 u k ) 2 σ 2 + ln ( 1 2 π σ ) )
U in above-mentioned formulakIt is in optical line terminal input signal sequence XkAverage, ykIt is to connect in optical network unit judging module The sequence receiving, σ2For the variance of noise, then the most possible sequence recovering can be calculated by above-mentioned formula.
2. the communication system based on XPON according to claim 1 is it is characterised in that described encrypting module includes a key Generation module, a management module and a conversion module, wherein,
Described key generation module produces a random key key and is stored in the management module of encrypting module;
Described conversion module, is that message part carries out adding to data1 or data2 in message frame using the key key randomly generating Close;Described conversion module, to data1 or data2 in message frame be message part and key key enters shiftrows respectively, right Message part after shift transformation and key part carry out product of transformation, and enter shiftrows to product of transformation result, obtain In message frame after encryption, data1 or data2 is that message part is stored in the management module of encrypting module;
Described conversion module, the initial key k_known using the management module storage of encrypting module carries out to key key adding Close;Described conversion module, moves respectively to the initial key k_known and key key of the management module storage of encrypting module Bit map, carries out product to the initial key k_known and key key of the management module storage of the encrypting module after shift transformation Conversion, and shiftrows are entered to product of transformation result, the initial key k_known after being encrypted and key key are stored in In the management module of encrypting module.
3. the communication system based on XPON according to claim 2 is it is characterised in that described deciphering module includes a checking Module, a management module and an inverse transform module, wherein,
Authentication module carries out CRC check and unpaired message checking to information, if the message frame receiving, has a CRC check Result mistake, then abandon two message frames, and the management module of deciphering module sends request to optical line terminal, waits optical link eventually End retransmits;If check results are correct, message frame is carried out with pair verification, choose a pair of consistent message frame transmission of unpaired message It is decrypted in inverse transform module;
Described inverse transform module, the initial key k_known using the management module storage of described deciphering module solves to key key Close;Described inverse transform module, the initial key k_known to the management module storage of key key and deciphering module in message frame Carry out backward shift bit map, in the message frame after backward shift bit map key key and deciphering module management module storage initial Key k_known carries out inverse product of transformation, carries out backward shift bit map to inverse product of transformation result, after inverse transform module is deciphered Key key;
Described inverse transform module, is message part deciphering to data1 or data2 in message frame using key key;Described inverse transformation Module, carries out backward shift bit map to data1, the data2 in key key and message frame in message frame, respectively to backward shift bit map Data1, data2 in key key and message frame in message frame afterwards carries out inverse product of transformation, and inverse product of transformation result is carried out Backward shift bit map, inverse transform module deciphered after information, information will be sent to the control module of optical network unit after deciphering.
4. a kind of communication means based on XPON, is realized based on the communication system based on XPON for the claims 3, its feature It is, it comprises the following steps:
Step a, described optical line terminal receives network signal, and described network signal is converted by the control module of optical line terminal Become corresponding optical signal, be transferred to power control module;
Step b, described power control module will determine that whether optical signal power exceedes given threshold, and carries out power according to result Control;
Step c, the control module of described optical line terminal power is adjusted after signal transmission to encrypting module in message frame Data1 or data2 is message part and key key is encrypted;
Step d, after described encrypting module will be encrypted, signal sends the control module of described optical line terminal to, and described optical link is eventually The control module at end sends via light distribution network, is sent to each optical network unit;
Step e, the control module in described optical network unit transmits a signal to deciphering module, to decrypted signal;
Step f, after the control module in described optical network unit will be deciphered, signal is sent to rectification module, carries out power to signal Control and distortion is corrected;
Step g, operation terminates.
5. a kind of communication means based on XPON according to claim 4 is it is characterised in that power in described step b Control process is:
Step b1, optical signal is transferred to the conversion list in power control module by optical splitter in described power control module respectively Switch element in unit and power control module;
Step b2, the converting unit in described power control module converts optical signals to current signal or voltage signal;
Step b3, according to given threshold, the converting unit in described power control module judges whether luminous power is transshipped and stored light Performance number;If the converting unit judged result in described power control module is power nonoverload, execution step b5;If described Converting unit judged result in power control module is power overload, then, after time interval T, second sampling of luminous power is sentenced Disconnected, if judging overload, execution step b4 for second, if second judges nonoverload, execution step b5;
Step b4, the converting unit in described power control module sends control signal, institute to the control module of optical line terminal The switch element stated in power control module temporarily disconnects;
Step b5, the control module adjustment power output of described optical line terminal, make power output be less than given threshold, described work( Switch element closure in rate control module, optical signal continues transmission;
Step b6, operation terminates.
6. a kind of communication means based on XPON according to claim 4 is it is characterised in that offseting in described step c In breath frame, data1 or data2 is message part and key key ciphering process is:
Step c1, described key generation module randomly generates key key;
Step c2, described conversion module, is that in message part and message frame, key key is carried out to data1 or data2 in message frame Shift transformation;
Step c3, described conversion module, product of transformation is carried out to the message part after shift transformation and key key;
Step c4, described conversion module enters shiftrows to product of transformation result, the information after being encrypted;
Step c5, described conversion module, the initial key k_ to the management module storage of key key and encrypting module in message frame Known enters shiftrows;
Step c6, described conversion module, the management module storage to key key and encrypting module in the message frame after shift transformation Initial key k_known carry out product of transformation;
Step c7, described conversion module, enters shiftrows to product of transformation result, the key key after being encrypted;
Step c8, described conversion module exports information and key key after encryption to the management module of encrypting module;
Step c9, operation terminates.
7. a kind of communication means based on XPON according to claim 4 is it is characterised in that deciphering in described step e Process is:
Step e1, described authentication module carries out CRC check to the message frame receiving;
Step e2, described authentication module judges whether any one message frame CRC check result is wrong;If CRC check result Wrong then execution step e3;CRC check result does not have mistake then execution step e4;
Step e3, abandons a pair of message frame, and the management module of deciphering module sends request to optical line terminal, waits optical link eventually End retransmits message frame;
Step e4, carries out pair verification to described message frame, chooses a pair of consistent message frame of unpaired message and is delivered to inverse transformation Decode in module;
Step e5, described inverse transform module uses the initial key k_known of the management module storage of deciphering module to key key Two message frames depositing data1, data2, after obtaining key key, are deciphered respectively by deciphering with key key;
Step e6, described inverse transform module deciphered after information, information will be sent to the control mould of optical network unit after deciphering Block;
Step e7, operation terminates.
8. a kind of communication means based on XPON according to claim 7 is it is characterised in that deciphering in described step e5 Process is:
Step e51, described inverse transform module, in message frame key key and deciphering module management module storage initially close Key k_known carries out backward shift bit map;
Step e52, described inverse transform module, the management mould to key key and deciphering module in the message frame after backward shift bit map The initial key k_known of block storage carries out inverse product of transformation;
Step e53, described inverse transform module, backward shift bit map is carried out to inverse product of transformation result, obtains key key;
Step e54, described inverse transform module, is message part to data1 or data2 in key key in message frame and message frame Carry out backward shift bit map;
Step e55, described inverse transform module, to data1 in key key in the message frame after backward shift bit map and message frame or Data2 is that message part carries out inverse product of transformation;
Step e56, described inverse transform module, backward shift bit map is carried out to inverse product of transformation result.
9. a kind of communication means based on XPON according to claim 4 is it is characterised in that correct mould in described step f The distortion correcting process of block is:
Step f1, the optical signal receiving is changed into electric signal by described photoelectric conversion module;
Step f2, electric signal filters off interference signal through described filtration module;
Step f3, signal is amplified to the intensity of needs through described amplification module by filtered signal;
Step f4, described judging module, to signal equalization, makes decisions to electric signal according to judgement formula;
Judgement formula:
max X 1 , K , X n Σ k = 1 n ( - ( y k - u k ) ( y k + 2 u k ) 2 σ 2 + ln ( 1 2 π σ ) )
U in above-mentioned formulakIt is in optical line terminal input signal sequence xkAverage, ykIt is to connect in optical network unit judging module The sequence receiving, σ2For the variance of noise, then the most possible sequence recovering can be calculated by above-mentioned formula;
Step f5, the electric signal after judgement, through described electrical to optical converter, the signal recovering is converted to optical signal and continues to pass Defeated;
Step f6, operation terminates.
CN201310416240.5A 2013-09-13 2013-09-13 Communication system and method based on XPON Active CN103517162B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201310416240.5A CN103517162B (en) 2013-09-13 2013-09-13 Communication system and method based on XPON

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201310416240.5A CN103517162B (en) 2013-09-13 2013-09-13 Communication system and method based on XPON

Publications (2)

Publication Number Publication Date
CN103517162A CN103517162A (en) 2014-01-15
CN103517162B true CN103517162B (en) 2017-02-15

Family

ID=49899062

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201310416240.5A Active CN103517162B (en) 2013-09-13 2013-09-13 Communication system and method based on XPON

Country Status (1)

Country Link
CN (1) CN103517162B (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104871999B (en) * 2015-04-28 2018-03-16 范石军 A kind of intelligence intensive domestic animal, poultry monitoring system and method
CN104850467A (en) * 2015-05-23 2015-08-19 许昌学院 Computer self-protection system and computer self-protection method
CN105914877A (en) * 2016-04-26 2016-08-31 吕忠华 Remote intelligent monitoring apparatus for the running of an electric power system terminal
CN106205256B (en) * 2016-06-28 2019-06-21 青岛果子科技服务平台有限公司 A kind of simulated training naval vessels underwater emission behaviour thunder positioning system

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101159506A (en) * 2007-10-26 2008-04-09 华为技术有限公司 PON communication channel balancing method, device and system
CN101902664A (en) * 2009-05-26 2010-12-01 中兴通讯股份有限公司 Method and system for improving encryption/decryption speed of passive optical network

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR100715679B1 (en) * 2005-12-05 2007-05-09 한국전자통신연구원 System and method for providing authenticated encryption in gpon network

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101159506A (en) * 2007-10-26 2008-04-09 华为技术有限公司 PON communication channel balancing method, device and system
CN101902664A (en) * 2009-05-26 2010-12-01 中兴通讯股份有限公司 Method and system for improving encryption/decryption speed of passive optical network

Also Published As

Publication number Publication date
CN103517162A (en) 2014-01-15

Similar Documents

Publication Publication Date Title
CN103517162B (en) Communication system and method based on XPON
CN102983965A (en) Transformer substation quantum communication model, quantum secret key distribution center and model achieving method
CN106789015A (en) A kind of intelligent distribution network communication security system
CN105305615B (en) A kind of monitoring method of wireless test and data transmission system
CN106549502B (en) A kind of safe distribution of electric power protecting, monitoring system
CN106788977A (en) Low-power consumption bluetooth device talk encryption method and system
CN105227298B (en) Intelligent substation message safe transmission implementation method based on modified GCM
CN107147631A (en) For the data safety communication system and method in Internet of Things
CN101998193B (en) The cryptographic key protection method of EPON and system
CN113055162B (en) WIA-PA network security communication method based on state cryptographic algorithm
CN102035845A (en) Switching equipment for supporting link layer secrecy transmission and data processing method thereof
CN106100710A (en) A kind of unconditional safety of physical layer cooperation transmission method based on interference alignment techniques
CN103023579A (en) Method for conducting quantum secret key distribution on passive optical network and passive optical network
CN105072636A (en) Wireless testing and data transmission system
Jose et al. Energy efficient recoverable concealed data aggregation in wireless sensor networks
CN105281432B (en) A kind of supervising device of wireless test and data transmission system
CN102239661A (en) Method and device for exchanging key
CN107181735A (en) Data unidirectional transmission system and method between inside and outside gateway
CN104639328B (en) A kind of GOOSE message authentication method and system
CN113472520B (en) ModbusTCP (Transmission control protocol) security enhancement method and system
CN103825725B (en) A kind of efficient random physical layer key generation method based on vector quantization
CN102903226B (en) Data transmission method for communication of intelligent electric meters
CN108155996A (en) Smart home safe communication method based on family's channel
CN109067550A (en) Two-way authentication system and mutual authentication method based on CPK tagged keys
CN110278068B (en) LoRa communication encryption system based on chaos sequence

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant