CN103517162A - Communication system and method based on XPON - Google Patents

Communication system and method based on XPON Download PDF

Info

Publication number
CN103517162A
CN103517162A CN201310416240.5A CN201310416240A CN103517162A CN 103517162 A CN103517162 A CN 103517162A CN 201310416240 A CN201310416240 A CN 201310416240A CN 103517162 A CN103517162 A CN 103517162A
Authority
CN
China
Prior art keywords
key
module
signal
message
message frame
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201310416240.5A
Other languages
Chinese (zh)
Other versions
CN103517162B (en
Inventor
蒋屹新
陈彬
李鹏
郭晓斌
董旭柱
许爱东
陈华军
蒙家晓
关泽武
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China South Power Grid International Co ltd
Beijing Normal University
Original Assignee
China South Power Grid International Co ltd
Beijing Normal University
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China South Power Grid International Co ltd, Beijing Normal University filed Critical China South Power Grid International Co ltd
Priority to CN201310416240.5A priority Critical patent/CN103517162B/en
Publication of CN103517162A publication Critical patent/CN103517162A/en
Application granted granted Critical
Publication of CN103517162B publication Critical patent/CN103517162B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Optical Communication System (AREA)

Abstract

A communication system based on XPON, it includes an optical line terminal, a mere distribution network, at least a mere network unit, characterized by that, the said optical line terminal, change the Ethernet data signal received, control and encrypt the optical signal power, transmit to each mere network unit via the mere distribution network, the said mere network unit deciphers the signal received, power control and equilibrium detect, transmit to each terminal user equipment; compared with the prior art, the invention has the advantages that the power control prevents the optical fiber line or equipment from being burnt out due to overheating in the transmission process, secondarily encrypts and balancedly corrects the signal and the secret key, and ensures the safety, effectiveness and reliability of the signal transmission process.

Description

A kind of communication system and method based on XPON
Technical field
The present invention relates to a kind of communication system and method for Optical Fiber Transmission, relate in particular to a kind of communication system and method based on XPON.
Background technology
XPON, as optical fiber access technology of new generation, all has huge advantage at aspects such as anti-interference, bandwidth characteristic, access distance, maintenance managements, and its application has obtained showing great attention to of global operator.EPON and the GPON of comparative maturity in XPON light access technology, be all comprised of local side OLT, user side ONU equipment and passive optical distribution network ODN.
A kind of novel optical line terminal OLT based on XPON system of Chinese patent, publication number: CN202435410U discloses a kind of novel optical line terminal OLT device, in this device, comprises main control unit, cross matrix control unit and data transmit-receive unit; Main control unit, comprises CPU, routing table memory; Transmit-Receive Unit, comprise interchanger, business module, first line of a couplet EPON module and hardware routing table module, this device can directly forward the data between same interface model, different business intermodule is realized expedite data dispatch by cross matrix unit, reduced the buffer memory of business data flow, forwarding time.Above-mentioned novel optical line terminal OLT device, for shortening the data retransmission time, but fails, at optical line terminal and optical network unit, the light signal of transmission is carried out to safe transmission protection.
In view of above-mentioned defect, creator of the present invention has obtained this creation finally through long research and practice.
Summary of the invention
The object of the present invention is to provide a kind of communication system based on XPON and method in order to overcome above-mentioned technological deficiency.
For achieving the above object, the invention provides a kind of communication system based on XPON, it comprises an optical line terminal, one smooth distributing network, at least one optical network unit, described optical line terminal, the Ethernet data receiving is carried out to signal conversion, light signal is carried out to power control and encryption, via light distributing network, be transferred to each optical network unit, described optical network unit is decrypted to the received signal, power is transferred to each end user device after controlling and detecting with equilibrium, described optical line terminal and optical network unit need be stored identical initial key k_known separately, wherein, the message frame form transmitting in described light signal is, comprises even bit, information encryption and decruption key key and error check code CRC checking that one group of random number is chosen information as the unpaired message of information encryption in message frame, odd bits that message part data1 chooses information or data2,
Described optical line terminal comprises a control module, an encrypting module and a power control module, and described optical network unit comprises a control module, a deciphering module and a rectification module, wherein,
Described encrypting module, described encrypting module produces a random key key and uses random key key is that message part is encrypted to data1 in message frame or data2, after message part has been encrypted, use the initial key K_known consistent with deciphering module of storage in encrypting module to be encrypted key key;
Described power control module, light signal is converted to current signal or voltage signal, according to setting threshold, judges whether luminous power transships and store optical power value, if power overload duration interval T, to control module output feedback signal, transmitting optical signal after Modulating Power; If current signal or voltage signal do not reach setting threshold or the instantaneous threshold value that reaches, continuing transmitting optical signal can;
Described deciphering module, carries out CRC check and unpaired message checking to information, if a pair of message frame receiving has any one CRC check erroneous results, abandons two message frames and sends request to optical line terminal, waits for that optical line terminal retransmits; If check results is correct, message frame is carried out to pair verification, after success, first use the initial key k_known of optical network unit storage to decipher key key, after two message frames of depositing data1, data2 being deciphered respectively with key key, being obtained decryption information, control module is sent to rectification module by decryption information;
Described rectification module, is converted to current signal or voltage signal by light signal, according to setting threshold, judges whether luminous power transships and store optical power value, if power overload duration interval T, to control module output feedback signal, adjust power output, transmitting optical signal after Modulating Power; If current signal or voltage signal do not reach setting threshold or the instantaneous threshold value that reaches, optical signal transmission is arrived to balance module, light signal is after photoelectric conversion, filter and amplification, according to following judgement formula, the signal of telecommunication is adjudicated, signal is after judgement is corrected, and described balance module is converted to light signal by restoring signal and continues transmission.
Judgement formula:
max X 1 , . . . , X n Σ k = 1 n ( - ( y k - u k ) ( y k + 2 u k ) 2 σ 2 + ln ( 1 2 π σ ) )
U in above-mentioned formula kfor at optical line terminal 1 input signal sequence x kaverage, y kfor the sequence receiving in optical network unit judging module, σ 2for the variance of noise, the most possible sequence recovering can have above-mentioned formula to calculate.
Preferably, described encrypting module comprises a key generation module, an administration module and a conversion module, wherein,
Described key generation module produces a random key key and is stored in administration module;
Described conversion module, using the random key key producing is that message part is encrypted to data1 in message frame or data2; Described conversion module, to data1 in message frame or data2, be that message part and key key carry out respectively shift transformation, message part after shift transformation and key are partly carried out to product of transformation, and product of transformation result in above-mentioned steps is carried out to shift transformation, in the message frame after being encrypted, data1 or data2 are that message part is stored in administration module;
Described conversion module, is used the initial key K_known of administration module storage to be encrypted key key; Described conversion module, initial key K_known and key key to administration module storage carry out respectively shift transformation, initial key K_known and key key to the administration module storage after shift transformation carry out product of transformation, and to described, product of transformation result in above-mentioned steps being carried out to shift transformation, initial key K_known and key key after being encrypted are stored in administration module.
Preferably, described deciphering module comprises an authentication module, an administration module and an inverse transform module, wherein,
Authentication module carries out CRC check and unpaired message checking to information, if the message frame receiving has a CRC check erroneous results, abandons two message frames, and administration module sends request to optical line terminal, waits for that optical line terminal retransmits; If check results is correct, message frame is carried out to pair verification, choose the consistent a pair of message frame of unpaired message and be delivered in conversion module and be decrypted;
Described inverse transform module, is used the initial key k_known of administration module storage to decipher key key; Described inverse transform module, initial key k_known to key key in message frame and administration module storage carries out backward shift bit map, initial key k_known to key key in the message frame after shift transformation and administration module storage carries out contrary product of transformation, to described, product of transformation result in above-mentioned steps is carried out to backward shift bit map, the key key after being deciphered;
Described inverse transform module, using key key is message part deciphering to data1 in message frame or data2; Described inverse transform module, data1 in key key and message frame in message frame, data2 are carried out respectively to backward shift bit map, data1 in key key and message frame in message frame after shift transformation, data2 are carried out to contrary product of transformation, to described, product of transformation result in above-mentioned steps is carried out to backward shift bit map, conversion module obtains deciphering rear information, and information after deciphering is sent to control module.
The present invention also provides a kind of communication means based on XPON, and the communication system based on XPON based on above-mentioned realizes, and it comprises the following steps:
Step a, described optical line terminal receives network signal, and control module changes into corresponding light signal by described network signal, is transferred to power control module;
Step b, described power control module will judge that whether optical signal power surpasses setting threshold, and carry out power control according to result;
Step c, described control module is transferred to encrypting module by signal after power adjustment signal and signal key key is encrypted;
Steps d, described encrypting module sends signal after encryption to control module, and described control module sends via light distributing network, is sent to each optical network unit;
Step e, the control module in described optical network unit sends signal to deciphering module, to decrypted signal;
Step f, described control module is sent to rectification module by signal after deciphering, and signal power is controlled and distortion rectification;
Step g, EO.
Preferably, the power detection control procedure in described step b is:
Step b1, in described power control module, optical splitter is divided into two-way by light signal, is transferred to respectively converting unit and switch element;
Step b2, described converting unit is converted to current signal or voltage signal by light signal;
Step b3, described converting unit judges according to setting threshold whether luminous power transships and store optical power value; If described converting unit judgment result is that power nonoverload, perform step b5; If described converting unit judgment result is that power overload, after time interval T, to the luminous power judgement of sampling for the second time, if judgement overload for the second time performs step b4, if judge for the second time, nonoverload performs step b5;
Step b4, described converting unit transmits control signal to control module, and switch element temporarily disconnects;
Step b5, described control module is adjusted power output, makes power output be less than setting threshold, and described switch element is closed, and light signal continues transmission;
Step b6, EO.
Preferably, in described step c, to message part and key key ciphering process, be:
Step c1, described key generation module produces key key at random;
Step c2, described conversion module, is that in message part and message frame, key key carries out shift transformation to data1 in message frame or data2;
Step c3, described conversion module, carries out product of transformation to the message part after shift transformation and key key;
Step c4, described conversion module carries out shift transformation to product of transformation result in above-mentioned steps, the information after being encrypted to described;
Step c5, described conversion module, carries out shift transformation to the initial key k_known of key key in message frame and administration module storage;
Step c6, described conversion module, carries out product of transformation to the initial key k_known of key key in the message frame after shift transformation and administration module storage;
Step c7, described conversion module, carries out shift transformation to described to product of transformation result in above-mentioned steps, the key key after being encrypted;
Step c8, information and key key after described conversion module is encrypted to the output of outgoing management module;
Step c9, EO.
Preferably, the decryption verification process in described step e is:
Step e1, described authentication module carries out CRC check to the message frame receiving;
Step e2, described authentication module judges that whether any one message frame CRC check result is wrong; If the wrong e3 that performs step of CRC check result; CRC check result does not have mistake to perform step e4;
Step e3, abandons a pair of message frame, and administration module sends request to optical line terminal, waits for optical line terminal resend messages frame.
Step e4, carries out pair verification to described message frame, chooses the consistent a pair of message frame of unpaired message and is delivered in conversion module and decodes.
Step e5, described inverse transform module is used the initial key k_known of administration module storage to key key deciphering, obtains after key key, with key key, two message frames of depositing data1, data2 is deciphered respectively.
Step e6, described inverse transform module obtains deciphering rear information, and information after deciphering is sent to control module;
Step e7, EO.
Preferably, the decrypting process in described step e5 is:
Step e51, described inverse transform module, carries out backward shift bit map to the initial key k_known of key key in message frame and administration module storage;
Step e52, described inverse transform module, carries out contrary product of transformation to the initial key k_known of key key in the message frame after shift transformation and administration module storage;
Step e53, described modular converter, carries out backward shift bit map to described to product of transformation result in above-mentioned steps, obtains key key;
Step e54, described inverse transform module, is that message part carries out backward shift bit map to data1 or data2 in key key and message frame in message frame;
Step e55, described inverse transform module, is that message part carries out contrary product of transformation to data1 or data2 in key key and message frame in the message frame after shift transformation;
Step e56, described inverse transform module, carries out backward shift bit map to described to product of transformation result in above-mentioned steps.
Preferably, in described step f, the distortion correcting process of rectification module is:
Step f1, described photoelectric conversion module changes into the signal of telecommunication by the light signal receiving;
Step f2, the signal of telecommunication in above-mentioned steps is through described filtration module elimination interference signal;
Step f3, in above-mentioned steps, after filtering, signal is amplified to signal through described amplification module the intensity needing;
Step f4, described judging module, to signal equalization, is adjudicated the signal of telecommunication according to judgement formula;
Judgement formula:
max X 1 , . . . , X n Σ k = 1 n ( - ( y k - u k ) ( y k + 2 u k ) 2 σ 2 + ln ( 1 2 π σ ) )
U in above-mentioned formula kfor at optical line terminal input signal sequence x kaverage, y kfor the sequence receiving in optical network unit judging module, σ 2for the variance of noise, the most possible sequence recovering can have above-mentioned formula to calculate;
Step f5, the signal of telecommunication in said process after judgement, is converted to light signal through described electrical to optical converter by the signal recovering and continues transmission;
Step f6, EO.
Beneficial effect of the present invention is compared with the prior art: be somebody's turn to do communication system and method based on XPON, can to signal, carry out power control in optical line terminal, prevent overheated fibre circuit or the equipment of burning out in transmitting procedure, to signal and key superencipher, ensure the fail safe of transmitting procedure, prevented the leakage of initial key; At optical network unit, to the deciphering of signal secondary, even if initial key is revealed, also cannot complete secondary deciphering, power is controlled and signal is corrected, and has guaranteed the validity and reliability in signals transmission.
Accompanying drawing explanation
Fig. 1 is the functional block diagram of a kind of communication system based on XPON of the present invention;
Fig. 2 is the functional block diagram of power control module in a kind of communication system optical line terminal based on XPON of the present invention;
Fig. 3 is the functional block diagram of a kind of communication system encrypting module based on XPON of the present invention;
Fig. 4 is the functional block diagram of a kind of communication system deciphering module based on XPON of the present invention;
Fig. 5 is the functional block diagram of a kind of communication system optical network unit rectification module based on XPON of the present invention;
Fig. 6 is the functional block diagram of balance module in a kind of communication system rectification module based on XPON of the present invention;
Fig. 7 is the flow chart of the communication means of a kind of communication system based on XPON of the present invention;
Fig. 8 is the light signal threshold decision process flow diagram of a kind of communication means based on XPON of the present invention;
Fig. 9 is the signal encryption process flow diagram of a kind of communication means based on XPON of the present invention;
Figure 10 is the flow chart of the decrypted signal process of a kind of communication means based on XPON of the present invention;
Figure 11 is the flow chart of the power control process of a kind of communication system optical network unit based on XPON of the present invention;
Figure 12 is the flow chart of the distortion correcting process for a kind of communication system optical network unit based on XPON of the present invention;
Embodiment
Below in conjunction with accompanying drawing, to the present invention is above-mentioned, be described in more detail with other technical characterictic and advantage.
Communication system based on XPON in the present invention and method, be encrypted at optical signal transmission front end, and receiving terminal is decrypted, and increased the fail safe of XPON system, and light signal is carried out to power is controlled and balanced, prevents that optical fiber from crossing cause thermal damage.
Refer to shown in Fig. 1, it is for the functional block diagram of a kind of communication system based on XPON of the present invention, comprise an OLT optical line terminal 1, an ODN light distributing network 2, at least one ONU optical network unit 3, wherein said OLT optical line terminal 1 comprises an encrypting module 11, a control module 12, a power control module 13, and described ONU optical network unit 3 comprises a deciphering module 31, a control module 32, a rectification module 33.Described optical line terminal OLT 1, the Ethernet data receiving is carried out to signal conversion, light signal is carried out to power control and encryption, via ODN light distributing network 2, be transferred to each ONU optical network unit 3, described ONU optical network unit 3 is decrypted to the received signal, equilibrium and power are transferred to each end user device after controlling and detecting, and described optical line terminal 1 and optical network unit 3 need be stored identical initial key k_known separately.
Refer to shown in Fig. 2, it is the functional block diagram of power control module in a kind of communication system optical line terminal based on XPON of the present invention, communication system power control module based on XPON comprises an optical splitter 131, one converting unit 132 and a switch element 133, wherein said optical splitter 131 is divided into two-way by light signal, be transferred to respectively converting unit 132 and switch element 133, described converting unit 132 is converted to current signal or voltage signal by light signal, according to setting threshold, judge whether luminous power transships and store optical power value, if power overload is to control module 12 output feedback signals, adjust power output, switch element 133 temporarily disconnects, if current signal or voltage signal do not reach setting threshold, switch element 133 closures, light signal can continue transmission.
Refer to shown in Fig. 3, it is for the functional block diagram of a kind of communication system encrypting module based on XPON of the present invention, described encrypting module 11 comprises a key generation module 111, one administration module 112 and a conversion module 113, wherein key generation module 111 produces a random key key and is stored in administration module 112, described conversion module 113, to data1 in message frame or data2, be that message part and key key carry out respectively shift transformation, described conversion module 113, message part after shift transformation and key are partly carried out to product of transformation, and to described, product of transformation result in above-mentioned steps is carried out to shift transformation, in message frame after being encrypted, data1 or data2 are message part.
Described conversion module 113, initial key K_known and key key to administrative unit 112 storages carry out respectively shift transformation, initial key K_known and key to administrative unit 112 storages after shift transformation partly carry out product of transformation, and product of transformation result in above-mentioned steps is carried out to shift transformation, the key key after being encrypted to described.
Refer to shown in Fig. 4, it is for the functional block diagram of a kind of communication system deciphering module based on XPON of the present invention, described deciphering module 31 comprises an authentication module 311, an administration module 312 and an inverse transform module 313, and wherein 311 pairs of information of authentication module are carried out CRC check and unpaired message checking.If a pair of message frame receiving, has a CRC check erroneous results, abandon two message frames, administration module 312 sends request to optical line terminal 1, waits for that optical line terminal 1 retransmits.If check results is correct, message frame is carried out to pair verification, choose the consistent a pair of message frame of unpaired message and be delivered in inverse transform module 313 and decode.
Described inverse transform module 313, first use the initial key k_known of administration module 312 storages to decipher key key, described inverse transform module 313, initial key k_known to key key in message frame and administration module 312 storages carries out backward shift bit map, initial key k_known to key key in the message frame after shift transformation and administration module 312 storages carries out contrary product of transformation, to described, product of transformation result in above-mentioned steps is carried out to backward shift bit map, obtain key key.
Described inverse transform module 313, with key key, two message frames of depositing data1, data2 are deciphered respectively afterwards, described inverse transform module 313, data1 in key key and message frame in message frame, data2 are carried out to backward shift bit map, data1 in key key and message frame in message frame after shift transformation, data2 are carried out to contrary product of transformation, to described, product of transformation result in above-mentioned steps is carried out to backward shift bit map, inverse transform module 313 obtains deciphering rear information, and information after deciphering is sent to control module 32.
Refer to shown in Fig. 5, it is for the functional block diagram of a kind of communication system optical network unit rectification module based on XPON of the present invention, communication system rectification module based on XPON comprises an optical splitter 331, one converting unit 332, one switch element 333 and a balance module 334, wherein said optical splitter 331 is divided into two-way by light signal, be transferred to respectively converting unit 332 and switch element 333, described converting unit 332 is converted to current signal or voltage signal by light signal, according to setting threshold, judge whether luminous power transships and store optical power value, if power overload duration T, to control module 32 output feedback signals, adjust power output, switch element 333 temporarily disconnects, if current signal or voltage signal do not reach setting threshold, switch element 333 closures, optical signal transmission is to balance module 334.
Refer to shown in Fig. 6, it is the functional block diagram of balance module in a kind of communication system rectification module based on XPON of the present invention, wherein, described balance module 334 comprises a photoelectric conversion module 3341, one filtration module 3342, one amplification module 3343 and a judging module 3344, 3341 pairs of light signals that receive of wherein said photoelectric conversion module change into the signal of telecommunication, the signal of telecommunication is module 3342 elimination interference signals after filtering, the intensity of the needs that signal amplified through amplification module 3343, 3344 pairs of signal equalizations of judging module, according to judgement formula, the signal of telecommunication is adjudicated, the interference producing in correcting signal transmitting procedure.Recover after primary signal, through electrical to optical converter 3345, restoring signal is converted to light signal and continues transmission.
Judgement formula:
max X 1 , . . . , X n Σ k = 1 n ( - ( y k - u k ) ( y k + 2 u k ) 2 σ 2 + ln ( 1 2 π σ ) ) - - - ( 1 )
U in above-mentioned formula kfor at optical line terminal 1 input signal sequence x kaverage, y kfor the sequence receiving in optical network unit judging module, σ 2for the variance of noise, the most possible sequence recovering can have above-mentioned formula to calculate.
Below the communication process of a kind of communication system based on XPON of the present invention is described in detail.
Refer to shown in Fig. 7, the flow chart of its communication means that is a kind of communication system based on XPON of the present invention, its process is:
Step a1, described optical line terminal 1 receives network signal, and control module 12 changes into corresponding light signal by described network signal, is transferred to power control module 13;
Step a2, described power control module 13 will judge that whether optical signal power surpasses setting threshold, and carry out power control according to result;
Refer to shown in Fig. 8, it for the light signal threshold decision process flow diagram of a kind of communication means based on XPON of the present invention, concrete steps is:
Step a21, in described power control module 13, optical splitter 131 is divided into two-way by light signal, is transferred to respectively converting unit 132 and switch element 133;
Step a22, described converting unit 132 is converted to current signal or voltage signal by light signal;
Step a23, described converting unit 132 judges according to setting threshold whether luminous power transships and store optical power value;
If it is that described current signal or voltage signal do not reach setting threshold that described converting unit 132 judgment result is that power nonoverload, perform step a26; If it is that described current signal or voltage signal surpass setting threshold that described converting unit 132 judgment result is that power overload, after time interval T, luminous power is sampled for the second time and judged whether overload, if judgement overload for the second time, perform step a24, if judge for the second time, nonoverload performs step a26;
Step a24, described converting unit 132 transmits control signal to control module 12, adjusts power output, and switch element 133 temporarily disconnects;
Step a25, described control module 12 is adjusted power output, makes power output be less than setting threshold;
Step a26, described switch element 133 closures, light signal continues transmission;
Step a27, EO.
Step a3, described control module 12 is transferred to encrypting module by signal after power adjustment signal is encrypted;
Refer to shown in table 1, table 2, it is message frame architecture figure, table 1 is data1 part message frame format chart, and table 2 is data2 part message frame format chart, and wherein encrypting module produces one group of identical random number, unpaired message as enciphered message, in enciphered message, data1 partly chooses the radix position of information, and data2 partly chooses the even bit of information, and key is to information encryption and decruption key, CRC is verified as a kind of error check code, in checking transmitting procedure, whether has error code.
Unpaired message data1 key CRC check
Table 1
Unpaired message data2 key CRC check
Table 2
Refer to shown in Fig. 9, it for the signal encryption process flow diagram of a kind of communication means based on XPON of the present invention, concrete steps is:
Step a31, described key generation module 111 is random to be produced key key and is stored in administrative unit 112;
Step a32, described conversion module 113, is that message part carries out shift transformation to data1 in message frame or data2;
Step a33, described conversion module 113, carries out shift transformation to key key in message frame;
Step a34, described conversion module 113, carries out product of transformation to the message part after shift transformation and key key
Step a35,113 pairs of described conversion modules are described carries out shift transformation to product of transformation result in above-mentioned steps, the information after being encrypted;
Step a36, described conversion module 113 is used the initial key k_known of administration module 112 storages to be encrypted key key;
Described modular converter is used the initial key K_known of administration module 112 storages to carry out following operation to key key ciphering process order:
Step a361, described conversion module 113, carries out shift transformation to the initial key k_known of key key in message frame and administration module 312 storages;
Step a362, described conversion module 113, carries out product of transformation to the initial key k_known of key key in the message frame after shift transformation and administration module 112 storages;
Step a363, described conversion module 113, carries out shift transformation to described to product of transformation result in above-mentioned steps, the key key after being encrypted;
Step a37, information and key key after described conversion module 113 is encrypted to 112 outputs of outgoing management module;
Step a38, EO.
Step a4, described encrypting module 11 sends signal after encryption to control module 12, and described control module 12 sends via light distributing network 2, is sent to each optical network unit 3.
Step a5, the control module 32 in described optical network unit 3 sends signal to deciphering module 31, and signal is decrypted.
Refer to shown in Figure 10, the flow chart of its decrypted signal process that is a kind of communication means based on XPON of the present invention, its process is:
Step a51,311 pairs of message frames that receive of described authentication module carry out CRC check;
Step a52, described authentication module 311 judges that whether any one message frame CRC check result is wrong;
If the wrong a53 that performs step of described authentication module 311 judgement message frame CRC check result; If described authentication module 311 judgement message frame CRC check results do not have mistake to perform step a54;
Step a53, abandons a pair of message frame, and administration module 312 sends request to optical line terminal 1, waits for that optical line terminal 1 retransmits.
Step a54, carries out pair verification to described message frame, chooses the consistent a pair of message frame of unpaired message and is delivered in inverse transform module 313 and decodes.
Step a55, the initial key k_known of described inverse transform module 313 use administration module 312 storages, to key key deciphering, obtains after key key, with key key, two message frames of depositing data1, data2 is deciphered respectively.
Described to the following operation of message frame decrypting process order execution with key key and data1, data2:
Step a551, described inverse transform module 313, carries out backward shift bit map to the initial key k_known of key key in message frame and administration module 312 storages;
Step a552, described inverse transform module 313, carries out contrary product of transformation to the initial key k_known of key key in the message frame after shift transformation and administration module 312 storages;
Step a553, described inverse transform module 313, carries out backward shift bit map to described to product of transformation result in above-mentioned steps, obtains key key;
Step a554, described inverse transform module 313, carries out backward shift bit map to the data1 in key key and message frame in message frame, data2;
Step a555, described inverse transform module 313, carries out contrary product of transformation to the data1 in key key and message frame in the message frame after shift transformation, data2;
Step a556, described inverse transform module 313, carries out backward shift bit map to described to product of transformation result in above-mentioned steps;
Step a56, inverse transform module 313 obtains deciphering rear information, and information after deciphering is sent to control module 32;
Step a57, EO.
Step a6, described control module 32 is sent to rectification module 33 by signal after deciphering, and signal is carried out to power control and distortion rectification;
Refer to shown in Figure 11, the flow chart of its power control process that is a kind of communication system optical network unit based on XPON of the present invention, its process is:
Step a61, described optical splitter 331 is divided into two-way by light signal, is transferred to respectively converting unit 332 and switch element 333;
Step a62, described converting unit 332 is converted to current signal or voltage signal by light signal;
Step a63, judges according to setting threshold whether luminous power transships and store optical power value;
If it is that described current signal or voltage signal surpass setting threshold that described converting unit 332 judgment result is that power overload, perform step a64; If it is that described current signal or voltage signal do not reach setting threshold that described converting unit 132 judgment result is that power nonoverload, perform step a66;
Step a64, described to control module 32 output feedback signals, adjust power output, switch element 333 temporarily disconnects;
Step a65, described control module 32 is adjusted power output, makes power output be less than setting threshold;
Step a66, if described current signal or voltage signal do not reach setting threshold, switch element 333 closures, optical signal transmission is to rectification module 334;
Refer to shown in Figure 12, the flow chart of its distortion correcting process that is a kind of communication system optical network unit based on XPON of the present invention, its process is:
Step a661,3341 pairs of light signals that receive of described photoelectric conversion module change into the signal of telecommunication;
Step a662, the signal of telecommunication in above-mentioned steps is module 3342 elimination interference signals after filtering;
Step a663, the intensity of the needs that in above-mentioned steps, after filtering, signal amplifies signal through amplification module 3343;
Step a664,3344 pairs of signal equalizations of judging module, adjudicate the interference producing in correcting signal transmitting procedure to the signal of telecommunication according to judgement formula;
Judgement formula:
max X 1 , . . . , X n Σ k = 1 n ( - ( y k - u k ) ( y k + 2 u k ) 2 σ 2 + ln ( 1 2 π σ ) ) - - - ( 1 )
U in above-mentioned formula kfor at optical line terminal 1 input signal sequence x kaverage, y kfor the sequence receiving in optical network unit judging module, σ 2for the variance of noise, the most possible sequence recovering can have above-mentioned formula to calculate.
Step a665, described process electrical to optical converter 3345 is converted to light signal by the signal recovering and continues transmission;
Step a666, EO.
Step a7, EO.
The foregoing is only preferred embodiment of the present invention, is only illustrative for invention, and nonrestrictive.Those skilled in the art is understood, and in the spirit and scope that limit, can carry out many changes to it in invention claim, revise, and even equivalence, but all will fall within the scope of protection of the present invention.

Claims (9)

1. the communication system based on XPON, it comprises an optical line terminal, a smooth distributing network, at least one optical network unit, it is characterized in that, described optical line terminal, the Ethernet data receiving is carried out to signal conversion, light signal is carried out to power control and encryption, via light distributing network, be transferred to each optical network unit, described optical network unit is decrypted to the received signal, power is controlled and balanced detection after be transferred to each end user device, described optical line terminal and optical network unit need be stored identical initial key k_known separately; Wherein, a kind of message frame form transmitting in described light signal, unpaired message, the message part data1 that comprises information choose needs the odd bits of transmission of information, information encryption and decruption key key, error check code CRC checking; Another kind of message frame form, the unpaired message, the message part data2 that comprise information choose and need the even bit of transmission of information, information encryption and decruption key key, error check code CRC checking;
Described optical line terminal comprises a control module, an encrypting module and a power control module, and described optical network unit comprises a control module, a deciphering module and a rectification module, wherein,
Described encrypting module, described encrypting module produces a random key key and uses random key key is that message part is encrypted to data1 in message frame or data2, after message part has been encrypted, use storing consistent initial key K_known with deciphering module key key is encrypted in encrypting module;
Described power control module, is converted to current signal or voltage signal by light signal, according to setting threshold, judges whether luminous power transships and store optical power value, if power overload duration interval T, to control module output feedback signal, adjust power output, transmitting optical signal after Modulating Power; If current signal or voltage signal do not reach setting threshold or the instantaneous threshold value that reaches, continue transmitting optical signal;
Described deciphering module, carries out CRC check and unpaired message checking to information, if a pair of message frame receiving has any one CRC check erroneous results, abandons two message frames and sends request to optical line terminal, waits for that optical line terminal retransmits; If check results is correct, message frame is carried out to pair verification, after success, first use the initial key k_known of optical network unit storage to decipher key key, after two message frames of depositing data1, data2 being deciphered respectively with key key, being obtained decryption information, control module is sent to rectification module by decryption information;
Described rectification module, is converted to current signal or voltage signal by light signal, according to setting threshold, judges whether luminous power transships and store optical power value, if power overload duration interval T, to control module output feedback signal, adjust power output, transmitting optical signal after Modulating Power; If current signal or voltage signal do not reach setting threshold or the instantaneous threshold value that reaches, optical signal transmission is arrived to balance module, light signal is after photoelectric conversion, filter and amplification, according to following judgement formula, the signal of telecommunication is adjudicated, signal is after judgement is corrected, and described balance module is converted to light signal by restoring signal and continues transmission;
Judgement formula:
Figure DEST_PATH_FSB0000118115140000011
U in above-mentioned formula kfor at optical line terminal 1 input signal sequence x kaverage, y kfor the sequence receiving in optical network unit judging module, σ 2for the variance of noise, the most possible sequence recovering can have above-mentioned formula to calculate.
2. the communication system based on XPON according to claim 1, is characterized in that described encrypting module comprises a key generation module, an administration module and a conversion module, wherein,
Described key generation module produces a random key key and is stored in administration module;
Described conversion module, using the random key key producing is that message part is encrypted to data1 in message frame or data2; Described conversion module, to data1 in message frame or data2, be that message part and key key carry out respectively shift transformation, message part after shift transformation and key are partly carried out to product of transformation, and product of transformation result in above-mentioned steps is carried out to shift transformation, in the message frame after being encrypted, data1 or data2 are that message part is stored in administration module;
Described conversion module, is used the initial key K_known of administration module storage to be encrypted key key; Described conversion module, initial key K_known and key key to administration module storage carry out respectively shift transformation, initial key K_known and key key to the administration module storage after shift transformation carry out product of transformation, and to described, product of transformation result in above-mentioned steps being carried out to shift transformation, initial key K_known and key key after being encrypted are stored in administration module.
3. the described communication system based on XPON according to claim 1 and 2, is characterized in that, described deciphering module comprises an authentication module, an administration module and an inverse transform module, wherein,
Authentication module carries out CRC check and unpaired message checking to information, if the message frame receiving has a CRC check erroneous results, abandons two message frames, and administration module sends request to optical line terminal, waits for that optical line terminal retransmits; If check results is correct, message frame is carried out to pair verification, choose the consistent a pair of message frame of unpaired message and be delivered in conversion module and be decrypted;
Described inverse transform module, is used the initial key k_known of administration module storage to decipher key key; Described inverse transform module, initial key k_known to key key in message frame and administration module storage carries out backward shift bit map, initial key k_known to key key in the message frame after shift transformation and administration module storage carries out contrary product of transformation, to described, product of transformation result in above-mentioned steps is carried out to backward shift bit map, the key key after inverse transform module is deciphered;
Described inverse transform module, using key key is message part deciphering to data1 in message frame or data2; Described inverse transform module, data1 in key key and message frame in message frame, data2 are carried out respectively to backward shift bit map, data1 in key key and message frame in message frame after shift transformation, data2 are carried out to contrary product of transformation, to described, product of transformation result in above-mentioned steps is carried out to backward shift bit map, inverse transform module obtains deciphering rear information, and information after deciphering is sent to control module.
4. the communication means based on XPON, the communication system based on XPON based on the claims 1 realizes, and it is characterized in that, and it comprises the following steps:
Step a, described optical line terminal receives network signal, and control module changes into corresponding light signal by described network signal, is transferred to power control module;
Step b, described power control module will judge that whether optical signal power surpasses setting threshold, and carry out power control according to result;
Step c, it is that message part and key key are encrypted to data1 in message frame or data2 that described control module is transferred to encrypting module by signal after power adjustment;
Steps d, described encrypting module sends signal after encryption to control module, and described control module sends via light distributing network, is sent to each optical network unit;
Step e, the control module in described optical network unit sends signal to deciphering module, to decrypted signal;
Step f, described control module is sent to rectification module by signal after deciphering, and signal power is controlled and distortion rectification;
Step g, EO.
5. a kind of communication means based on XPON according to claim 4, is characterized in that, the power detection control procedure in described step b is:
Step b1, the optical splitter in described power control module is transferred to respectively converting unit and switch element by light signal;
Step b2, described converting unit is converted to current signal or voltage signal by light signal;
Step b3, described converting unit judges according to setting threshold whether luminous power transships and store optical power value; If described converting unit judgment result is that power nonoverload, perform step b5; If described converting unit judgment result is that power overload, after time interval T, to the luminous power judgement of sampling for the second time, if judgement overload for the second time performs step b4, if judge for the second time, nonoverload performs step b5;
Step b4, described converting unit transmits control signal to control module, and switch element temporarily disconnects;
Step b5, described control module is adjusted power output, makes power output be less than setting threshold, and described switch element is closed, and light signal continues transmission;
Step b6, EO.
6. a kind of communication means based on XPON according to claim 4, is characterized in that, in described step c is that message part and key key ciphering process are to data1 in message frame or data2:
Step c1, described key generation module produces key key at random;
Step c2, described conversion module, is that in message part and message frame, key key carries out shift transformation to data1 in message frame or data2;
Step c3, described conversion module, carries out product of transformation to the message part after shift transformation and key key;
Step c4, described conversion module carries out shift transformation to product of transformation result in above-mentioned steps, the information after being encrypted to described;
Step c5, described conversion module, carries out shift transformation to the initial key k_known of key key in message frame and administration module storage;
Step c6, described conversion module, carries out product of transformation to the initial key k_known of key key in the message frame after shift transformation and administration module storage;
Step c7, described conversion module, carries out shift transformation to described to product of transformation result in above-mentioned steps, the key key after being encrypted;
Step c8, information and key key after described conversion module is encrypted to the output of outgoing management module;
Step c9, EO.
7. a kind of communication means based on XPON according to claim 4, is characterized in that, the decryption verification process in described step e is:
Step e1, described authentication module carries out CRC check to the message frame receiving;
Step e2, described authentication module judges that whether any one message frame CRC check result is wrong; If the wrong e3 that performs step of CRC check result; CRC check result does not have mistake to perform step e4;
Step e3, abandons a pair of message frame, and administration module sends request to optical line terminal, waits for optical line terminal resend messages frame;
Step e4, carries out pair verification to described message frame, chooses the consistent a pair of message frame of unpaired message and is delivered in inverse transform module and decodes;
Step e5, described inverse transform module is used the initial key k_known of administration module storage to key key deciphering, obtains after key key, with key key, two message frames of depositing data1, data2 is deciphered respectively;
Step e6, described inverse transform module obtains deciphering rear information, and information after deciphering is sent to control module;
Step e7, EO.
8. the decryption verification process of a kind of communication means based on XPON according to claim 7, is characterized in that, the decrypting process in described step e5 is:
Step e51, described inverse transform module, carries out backward shift bit map to the initial key k_known of key key in message frame and administration module storage;
Step e52, described inverse transform module, carries out contrary product of transformation to the initial key k_known of key key in the message frame after shift transformation and administration module storage;
Step e53, described inverse conversion module, carries out backward shift bit map to described to product of transformation result in above-mentioned steps, obtains key key;
Step e54, described inverse transform module, is that message part carries out backward shift bit map to data1 or data2 in key key and message frame in message frame;
Step e55, described inverse transform module, is that message part carries out contrary product of transformation to data1 or data2 in key key and message frame in the message frame after shift transformation;
Step e56, described inverse transform module, carries out backward shift bit map to described to product of transformation result in above-mentioned steps.
9. a kind of communication means based on XPON according to claim 4, is characterized in that, in described step f, the distortion correcting process of rectification module is:
Step f1, described photoelectric conversion module changes into the signal of telecommunication by the light signal receiving;
Step f2, the signal of telecommunication in above-mentioned steps is through described filtration module elimination interference signal;
Step f3, in above-mentioned steps, after filtering, signal is amplified to signal through described amplification module the intensity needing;
Step f4, described judging module, to signal equalization, is adjudicated the signal of telecommunication according to judgement formula;
Judgement formula:
Figure DEST_PATH_FSB0000118115140000041
U in above-mentioned formula kfor at optical line terminal input signal sequence x kaverage, y kfor the sequence receiving in optical network unit judging module, σ 2for the variance of noise, the most possible sequence recovering can have above-mentioned formula to calculate;
Step f5, the signal of telecommunication in said process after judgement, is converted to light signal through described electrical to optical converter by the signal recovering and continues transmission;
Step f6, EO.
CN201310416240.5A 2013-09-13 2013-09-13 Communication system and method based on XPON Active CN103517162B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201310416240.5A CN103517162B (en) 2013-09-13 2013-09-13 Communication system and method based on XPON

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201310416240.5A CN103517162B (en) 2013-09-13 2013-09-13 Communication system and method based on XPON

Publications (2)

Publication Number Publication Date
CN103517162A true CN103517162A (en) 2014-01-15
CN103517162B CN103517162B (en) 2017-02-15

Family

ID=49899062

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201310416240.5A Active CN103517162B (en) 2013-09-13 2013-09-13 Communication system and method based on XPON

Country Status (1)

Country Link
CN (1) CN103517162B (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104850467A (en) * 2015-05-23 2015-08-19 许昌学院 Computer self-protection system and computer self-protection method
CN104871999A (en) * 2015-04-28 2015-09-02 范石军 Intelligent intensive livestock and poultry monitoring system and intelligent intensive livestock and poultry monitoring method
CN105914877A (en) * 2016-04-26 2016-08-31 吕忠华 Remote intelligent monitoring apparatus for the running of an electric power system terminal
CN106205256A (en) * 2016-06-28 2016-12-07 于祥南 A kind of simulation training naval vessels underwater emission behaviour's thunder alignment system

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20080040604A1 (en) * 2005-12-05 2008-02-14 Electronics & Telecommunications Research Institute System and method for providing authenticated encryption in GPON network
CN101159506A (en) * 2007-10-26 2008-04-09 华为技术有限公司 PON communication channel balancing method, device and system
CN101902664A (en) * 2009-05-26 2010-12-01 中兴通讯股份有限公司 Method and system for improving encryption/decryption speed of passive optical network

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20080040604A1 (en) * 2005-12-05 2008-02-14 Electronics & Telecommunications Research Institute System and method for providing authenticated encryption in GPON network
CN101159506A (en) * 2007-10-26 2008-04-09 华为技术有限公司 PON communication channel balancing method, device and system
CN101902664A (en) * 2009-05-26 2010-12-01 中兴通讯股份有限公司 Method and system for improving encryption/decryption speed of passive optical network

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104871999A (en) * 2015-04-28 2015-09-02 范石军 Intelligent intensive livestock and poultry monitoring system and intelligent intensive livestock and poultry monitoring method
CN104871999B (en) * 2015-04-28 2018-03-16 范石军 A kind of intelligence intensive domestic animal, poultry monitoring system and method
CN104850467A (en) * 2015-05-23 2015-08-19 许昌学院 Computer self-protection system and computer self-protection method
CN105914877A (en) * 2016-04-26 2016-08-31 吕忠华 Remote intelligent monitoring apparatus for the running of an electric power system terminal
CN106205256A (en) * 2016-06-28 2016-12-07 于祥南 A kind of simulation training naval vessels underwater emission behaviour's thunder alignment system
CN106205256B (en) * 2016-06-28 2019-06-21 青岛果子科技服务平台有限公司 A kind of simulated training naval vessels underwater emission behaviour thunder positioning system

Also Published As

Publication number Publication date
CN103517162B (en) 2017-02-15

Similar Documents

Publication Publication Date Title
CN106789015B (en) Intelligent power distribution network communication safety system
CN102983965A (en) Transformer substation quantum communication model, quantum secret key distribution center and model achieving method
CN103795541B (en) Secure communication method of electricity information acquisition system of 230M wireless private network channel
CN103517162A (en) Communication system and method based on XPON
CN101998193B (en) The cryptographic key protection method of EPON and system
CN107276753A (en) The quantum key distribution system and method for a kind of channel multiplexing
CN106549502B (en) A kind of safe distribution of electric power protecting, monitoring system
CN103023579A (en) Method for conducting quantum secret key distribution on passive optical network and passive optical network
CN102916809B (en) Dynamic authentication method for intelligent power network control command based on state estimation
CN104010305A (en) Bidirectional authentication reinforcement method of terminal and access network based on physical layer secret key
CN105162584A (en) Quantum key distribution system and method
CN103051459A (en) Management method and device of traction secrete key of safety card
CN113472520A (en) ModbusTCP (Transmission control protocol) security enhancement method and system
CN203251308U (en) Passive optical network
CN101938741A (en) Method, system and device for mutual authentication
CN109067550A (en) Two-way authentication system and mutual authentication method based on CPK tagged keys
CN104639328B (en) A kind of GOOSE message authentication method and system
CN106559218A (en) A kind of safe acquisition method of intelligent substation continuous data
CN103684759A (en) Terminal data encrypting method and device
CN102903226B (en) Data transmission method for communication of intelligent electric meters
CN104753682A (en) Generating system and method of session keys
CN113259315B (en) Communication message safety protection method and system suitable for power distribution network
CN212660171U (en) Quantum key distribution system applied to mobile communication network
CN104994107A (en) MMS message off-line analysis method based on IEC62351
CN102546152B (en) Method for achieving multi-stage encryption and decryption of data

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant