CN107040377A - A kind of method for storing cipher key based on quantum secret communication - Google Patents
A kind of method for storing cipher key based on quantum secret communication Download PDFInfo
- Publication number
- CN107040377A CN107040377A CN201710402477.6A CN201710402477A CN107040377A CN 107040377 A CN107040377 A CN 107040377A CN 201710402477 A CN201710402477 A CN 201710402477A CN 107040377 A CN107040377 A CN 107040377A
- Authority
- CN
- China
- Prior art keywords
- key
- group
- transmitting terminal
- management node
- receiving terminal
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0894—Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0852—Quantum cryptography
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Physics & Mathematics (AREA)
- Electromagnetism (AREA)
- Theoretical Computer Science (AREA)
- Storage Device Security (AREA)
Abstract
A kind of method for storing cipher key based on quantum secret communication, comprises the following steps:A) transmitting terminal creates key;B) key group is created:Transmitting terminal key management node is that several keys create key group, firstly generating one can ensure in the unique key group ID in whole key storage space, then several keys are stored in the key group, several keys are assigned with ensureing unique sub-key ID in the key group;C) receiving terminal, which is received, creates key instruction;D) receiving terminal creates key;E) receiving terminal key management node feeding back transmitting terminal key management node key group creates operation and completed.Compared with prior art, the present invention by original key storage space by carrying out packet storage, coding of the key ID in group is set to reduce partial bytes, the group inner sealed key ID bytes of so all keys are all reduced, the occasion of a large amount of storage keys is being needed, key ID causes the situation of waste of storage space to obtain greatly reducing.
Description
Technical field
The present invention relates to key storage technical field, more particularly to a kind of key storage side based on quantum secret communication
Method.
Background technology
With a wide range of popularization of internet, the information transmission between the mankind has reached unprecedented quantity and frequency,
Various privacy informations expose on the internet more and more, and therefore, the mankind have also arrived unprecedented to the demand of secret communication
Height, at present, data message using quantum key encrypt be most regular assurance communication security means, so to quantum key
Demand be very big, in addition, quantum key includes key identification, corresponding key value and produces the key substantially
Nodal information, the key directly obtained from quantum key distribution network include two parts of key identification and key value, it is close
Key mark is the index of key, while being also primary key ID, key value is the particular content of key.Under normal circumstances, in order to
Ensure primary key ID uniqueness, primary key ID may have very long byte, such as primary key ID length half 8
Individual byte or 16 bytes, and the length of key is usually 32 bytes or less.So in storage, shared by key ID
Space is just than larger.With the key ID of 16 bytes, as shown in figure 1, exemplified by the cipher key content of 32 bytes, ID consumes 1/3rd
Memory space, needing the occasions of a large amount of storage keys, such expense causes the waste of memory space.
The content of the invention
Present invention aims at a kind of method for storing cipher key based on quantum secret communication is provided, to solve in the prior art
The occasion of a large amount of storage keys is being needed, key ID can cause the technical bug that memory space is largely wasted.
The technical proposal of the invention is realized in this way:
A kind of method for storing cipher key based on quantum secret communication, including can generate and can mutually transmit the transmitting terminal of key
QKD nodes and receiving terminal QKD nodes, it is close that the transmitting terminal QKD nodes have been connected respectively transmitting terminal with receiving terminal QKD nodes
Key management node and receiving terminal key management node, the transmitting terminal key management node communicate with receiving terminal key management node
Connection, the described method comprises the following steps:
A) transmitting terminal creates key:Transmitting terminal key management node asks several keys, institute into transmitting terminal QKD nodes
Transmitting terminal QKD nodes are stated to those several keys of transmitting terminal key management node feeding back and the key identification of those keys;
B) key group is created:Transmitting terminal key management node is that several keys create key group, firstly generates one
It can ensure, in the unique key group ID in whole key storage space, then several keys to be stored in the key group, should
Several keys are assigned with ensureing unique sub-key ID in the key group;
C) receiving terminal, which is received, creates key instruction:Transmitting terminal key management node notifies receiving terminal key management node to create
Need to specify the close of corresponding secret key in the key group ID and key group of transmitting terminal key group in identical key group, announcement information
Key is identified, and the key identification in announcement information needs the sub-key ID with corresponding secret key in key group to correspond;
D) receiving terminal creates key:Receiving terminal key management node receives the notification message of transmitting terminal key management node,
Key identification in message obtains key from receiving terminal QKD nodes, is then created further according to the key group ID in message
The key group of receiving terminal, will receive key and is put into the key group of receiving terminal and preserves;
E) receiving terminal key management node feeding back transmitting terminal key management node key group creates operation and completed.
Preferably, in a) step, transmitting terminal key management node asks several keys to transmitting terminal QKD nodes
Process, can also be divided into repeatedly request and complete by once asking to complete.
Preferably, in the step b), key is stored in key group in sequence.
Preferably, the key group ID is binary code, and the sub-key ID is binary code.
Preferably, in the key group can molecule key group, the sub-key component is equipped with can ensure to deposit in the key group
Unique sub-key group ID in space is stored up, key storage is in sub-key group, and the key is assigned with to ensure close in the son
Unique two grades of sub-key ID in key group.
Preferably, the key group may include N grades of sub-key groups, and the N is more than or equal to 2.
Compared with prior art, the present invention has following beneficial effect:
The method for storing cipher key based on quantum secret communication of the present invention, by the way that original key storage space is divided
Group storage, it is identical to be allowed due to the key ID between group and group, so coding of the key ID in group can reduce partial words
Section, the group inner sealed key ID bytes of so all keys all reduce, will save substantial amounts of memory space, need largely to store close
The occasion of key, key ID causes the situation of waste of storage space to obtain greatly reducing.
Brief description of the drawings
Fig. 1 is the key identification ID distribution conditions of key storage in the prior art;
Fig. 2 is the key identification ID distribution conditions of key storage in the present invention;
Fig. 3 is the schematic flow sheet of the method for storing cipher key of the invention based on quantum secret communication.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the present invention is clearly and completely described.
As shown in figure 3, a kind of method for storing cipher key based on quantum secret communication, including can generate and can mutually transmit close
The transmitting terminal QKD nodes of key and receiving terminal QKD nodes, between transmitting terminal QKD nodes and receiving terminal QKD nodes the transmission of key with
Reception is two-way, and transmitting terminal QKD nodes can be transmitted key and give receiving terminal QKD nodes, and receiving terminal QKD nodes as needed also may be used
Send key and give receiving terminal QKD nodes, wherein, QKD is quantum-key distribution device, the transmitting terminal QKD nodes and receiving terminal QKD
Node has been connected respectively transmitting terminal key management node and receiving terminal key management node, the transmitting terminal key management section
Point is communicated to connect with receiving terminal key management node, the described method comprises the following steps:
A) transmitting terminal creates key:Transmitting terminal key management node asks several keys, institute into transmitting terminal QKD nodes
Transmitting terminal QKD nodes are stated to those several keys of transmitting terminal key management node feeding back and the key identification of those keys;
B) key group is created:Transmitting terminal key management node is that several keys create key group, firstly generates one
It can ensure, in the unique key group ID in whole key storage space, then several keys to be stored in the key group, should
Several keys are assigned with ensureing unique sub-key ID in the key group;
C) receiving terminal, which is received, creates key instruction:Transmitting terminal key management node notifies receiving terminal key management node to create
Need to specify the close of corresponding secret key in the key group ID and key group of transmitting terminal key group in identical key group, announcement information
Key is identified, and the key identification in announcement information needs the sub-key ID with corresponding secret key in key group to correspond;
D) receiving terminal creates key:Receiving terminal key management node receives the notification message of transmitting terminal key management node,
Key identification in message obtains key from receiving terminal QKD nodes, is then created further according to the key group ID in message
The key group of receiving terminal, will receive key and is put into the key group of receiving terminal and preserves;
E) receiving terminal key management node feeding back transmitting terminal key management node key group creates operation and completed.
In a) step, transmitting terminal key management node asks the process of several keys to transmitting terminal QKD nodes, can
By once asking to complete, repeatedly request can also be divided into and completed, the key generation of the visual transmitting terminal QKD nodes of detailed process
Depending on ability.
The key is stored in key group in sequence, and key is preserved in sequence can facilitate the interior sub-key ID's of group suitable
Sequence is encoded, and key can not also be preserved in sequence, it is only necessary to which sub-key ID and the key key identification are corresponded.
The key group ID is binary code, and the sub-key ID is binary code.
In the key group can molecule key group, the sub-key component is equipped with can ensure in the key group memory space
Unique sub-key group ID, key storage is in sub-key group, and the key is assigned with to ensure in the sub-key group only
One two grades of sub-key ID.
The key group may include N grades of sub-key groups, and the N is more than or equal to 2, if needing the size of key stored huge,
N value can be determined as needed, and the storage of multistage group, the key group ID create-rules of certain key groups at different levels are carried out to key
Can be consistent with the first order, the sub-key ID of the key being stored in key group also can be consistent with the first order.
As shown in Fig. 2 a kind of embodiment of the present invention, transmitting terminal key management node is asked into transmitting terminal QKD nodes
Multiple keys (key here only has content, not including primary key ID), such as 32 are included in a key, this part of key
Individual, these keys are arranged in order.Key group have key group ID, key group ID be in whole key storage space it is unique,
Key so in key group can be by key group ID and its index unique mark in key group.Thus can greatly it carry
The efficiency of high key storage.Sub-key ID total length is added as 16 bytes, the byte of key length 32, a group key using group key ID
Comprising 32 cipher key calculations, sub-key length available of its key in group just can be with distinguishing identifier for the sub-key ID of 5 bytes
Complete, i.e. group key ID is 11 bytes, and sub-key ID is 5 bytes, so the space proportion shared by total key identification ID is 16/
(16+32*32)=1/65, the ratio of its total key identification ID space-consuming, well below 1/3 in background technology, is key
Substantial amounts of space has been saved in storage.
The principle of the comprehensive present invention understands, the method for storing cipher key of the invention based on quantum secret communication, by by original
First key storage space carries out packet storage, and it is identical to be allowed due to the key ID between group and group, so key ID exists
Coding in group can reduce partial bytes, and the group inner sealed key ID bytes of so all keys are all reduced, and will save substantial amounts of deposit
Space is stored up, the occasion of a large amount of storage keys is being needed, key ID causes the situation of waste of storage space to obtain greatly reducing.
Claims (6)
1. a kind of method for storing cipher key based on quantum secret communication, it is characterised in that including that can generate and can mutually transmit close
The transmitting terminal QKD nodes of key and receiving terminal QKD nodes, the transmitting terminal QKD nodes are connected respectively with receiving terminal QKD nodes
There are transmitting terminal key management node and receiving terminal key management node, the transmitting terminal key management node and receiving terminal key pipe
Node communication connection is managed, be the described method comprises the following steps:
A) transmitting terminal creates key:Transmitting terminal key management node asks several keys, the hair into transmitting terminal QKD nodes
Sending end QKD nodes are to those several keys of transmitting terminal key management node feeding back and the key identification of those keys;
B) key group is created:Transmitting terminal key management node is that several keys create key group, and firstly generating one can protect
Then several keys are stored in the key group, this is some by card in the unique key group ID in whole key storage space
Individual key is assigned with ensureing unique sub-key ID in the key group;
C) receiving terminal, which is received, creates key instruction:Transmitting terminal key management node notifies receiving terminal key management node is created identical
Key group, need to specify the key mark of corresponding secret key in the key group ID and key group of transmitting terminal key group in announcement information
Know, and the key identification in announcement information needs the sub-key ID with corresponding secret key in key group to correspond;
D) receiving terminal creates key:Receiving terminal key management node receives the notification message of transmitting terminal key management node, according to
Key identification in message obtains key from receiving terminal QKD nodes, then creates and receives further according to the key group ID in message
The key group at end, will receive key and is put into the key group of receiving terminal and preserves;
E) receiving terminal key management node feeding back transmitting terminal key management node key group creates operation and completed.
2. the method for storing cipher key as claimed in claim 1 based on quantum secret communication, it is characterised in that a) step
In, transmitting terminal key management node asks the process of several keys to transmitting terminal QKD nodes, can be by once having asked
Into, can also be divided into repeatedly request complete.
3. the method for storing cipher key as claimed in claim 2 based on quantum secret communication, it is characterised in that the step b)
In, key is stored in key group in sequence.
4. the method for storing cipher key as claimed in claim 3 based on quantum secret communication, it is characterised in that the key group ID
For binary code, the sub-key ID is binary code.
5. the method for storing cipher key as claimed in claim 4 based on quantum secret communication, it is characterised in that in the key group
Can molecule key group, the sub-key component is close equipped with can ensure unique sub-key group ID in the key group memory space
Key is stored in sub-key group, and the key is assigned with ensureing unique two grades of sub-key ID in the sub-key group.
6. the method for storing cipher key as claimed in claim 5 based on quantum secret communication, it is characterised in that the key group can
Including N grades of sub-key groups, the N is more than or equal to 2.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710402477.6A CN107040377A (en) | 2017-06-01 | 2017-06-01 | A kind of method for storing cipher key based on quantum secret communication |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710402477.6A CN107040377A (en) | 2017-06-01 | 2017-06-01 | A kind of method for storing cipher key based on quantum secret communication |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN107040377A true CN107040377A (en) | 2017-08-11 |
Family
ID=59539111
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710402477.6A Pending CN107040377A (en) | 2017-06-01 | 2017-06-01 | A kind of method for storing cipher key based on quantum secret communication |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107040377A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109067527A (en) * | 2018-08-31 | 2018-12-21 | 苏州科达科技股份有限公司 | A kind of quantum encryption communication method, communication terminal and computer readable storage medium |
| CN110490051A (en) * | 2019-07-03 | 2019-11-22 | 武汉虹识技术有限公司 | Iris authentication system and method |
| CN113708918A (en) * | 2020-05-21 | 2021-11-26 | 深圳华芯集成电路设计有限公司 | Multi-party communication method for distributed network and distributed network |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20060062392A1 (en) * | 2004-07-08 | 2006-03-23 | Magiq Technologies, Inc. | Key manager for QKD networks |
| CN102130769A (en) * | 2011-03-10 | 2011-07-20 | 北京邮电大学 | Model and method for realizing request control and automatic implementation of quantum key distribution (QKD) |
| CN104660602A (en) * | 2015-02-14 | 2015-05-27 | 山东量子科学技术研究院有限公司 | Quantum key transmission control method and system |
-
2017
- 2017-06-01 CN CN201710402477.6A patent/CN107040377A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20060062392A1 (en) * | 2004-07-08 | 2006-03-23 | Magiq Technologies, Inc. | Key manager for QKD networks |
| CN102130769A (en) * | 2011-03-10 | 2011-07-20 | 北京邮电大学 | Model and method for realizing request control and automatic implementation of quantum key distribution (QKD) |
| CN104660602A (en) * | 2015-02-14 | 2015-05-27 | 山东量子科学技术研究院有限公司 | Quantum key transmission control method and system |
Non-Patent Citations (1)
| Title |
|---|
| 宋玲: "嵌入式内存数据库的存储和索引算法研究", 《计算机科学与探索》 * |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109067527A (en) * | 2018-08-31 | 2018-12-21 | 苏州科达科技股份有限公司 | A kind of quantum encryption communication method, communication terminal and computer readable storage medium |
| CN109067527B (en) * | 2018-08-31 | 2020-12-22 | 苏州科达科技股份有限公司 | Quantum encryption communication method, communication terminal and computer readable storage medium |
| CN110490051A (en) * | 2019-07-03 | 2019-11-22 | 武汉虹识技术有限公司 | Iris authentication system and method |
| CN113708918A (en) * | 2020-05-21 | 2021-11-26 | 深圳华芯集成电路设计有限公司 | Multi-party communication method for distributed network and distributed network |
| CN113708918B (en) * | 2020-05-21 | 2024-06-07 | 深圳华芯集成电路设计有限公司 | Multi-party communication method for distributed network and distributed network |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104660726A (en) | Network configuration method, device and system for intelligent device | |
| CN107040377A (en) | A kind of method for storing cipher key based on quantum secret communication | |
| CN111010274A (en) | Safe and low-overhead SRv6 implementation method | |
| Wan et al. | Novel delivery schemes for decentralized coded caching in the finite file size regime | |
| CN114339632B (en) | Beidou short message encryption and decryption method based on SM4 packet encryption algorithm | |
| CN114189854A (en) | Tower footing safety monitoring terminal based on Beidou communication and 4G communication and data transmission method | |
| Yan et al. | Placement delivery array design for combination networks with edge caching | |
| CN115567207A (en) | Method and system for realizing multicast data encryption and decryption by quantum key distribution | |
| CN101202965B (en) | Method for transmitting safe point-to-point short message facing to connectionless | |
| CN100536485C (en) | Vector network address coding method | |
| CN112953940A (en) | Safe publishing and subscribing system and method based on hybrid encryption algorithm and key attribute filtering | |
| CN115022000A (en) | Communication method and device of railway signal system and electronic equipment | |
| CN102624741A (en) | TLV (Threshold Limit Value) based data transmission method and system thereof | |
| CN116095674A (en) | Lightweight data authentication encryption method | |
| CN117439744A (en) | Service data transmission method and device based on service security level | |
| US20110299624A1 (en) | Device and method for realizing prefix code construction | |
| CN112468993B (en) | Message sending method, message receiving method, device and equipment | |
| US20170026829A1 (en) | Advanced metering infrastructure network system and message broadcasting method | |
| CN114513780A (en) | Wireless communication network encryption system based on random key | |
| US20160277298A1 (en) | Compression Method and System for User Friendly Address in Mesh Networking | |
| CN113676315A (en) | Slicing application method of satellite-ground integrated quantum network | |
| CN115152180A (en) | Improved packet transmission | |
| CN113709172B (en) | SDH super frame structure and error correction method thereof | |
| CN116303806B (en) | Sharing method, value co-creation sharing system, medium and electronic equipment | |
| KR101632651B1 (en) | Method, server and computer program for transmitting binary data |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20170811 |
|
| WD01 | Invention patent application deemed withdrawn after publication |