CN108462578A - Based on the encrypted converged communication device of quantum key and its encipher-decipher method - Google Patents

Based on the encrypted converged communication device of quantum key and its encipher-decipher method Download PDF

Info

Publication number
CN108462578A
CN108462578A CN201810323573.6A CN201810323573A CN108462578A CN 108462578 A CN108462578 A CN 108462578A CN 201810323573 A CN201810323573 A CN 201810323573A CN 108462578 A CN108462578 A CN 108462578A
Authority
CN
China
Prior art keywords
quantum key
equipment
connect
cpu processor
converged communication
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
CN201810323573.6A
Other languages
Chinese (zh)
Inventor
苗春华
韩正甫
王剑锋
王俊
陈传亮
刘婧婧
宋晨
刘云
李欢
金丽
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Anhui Asky Quantum Technology Co Ltd
Original Assignee
Anhui Asky Quantum Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Anhui Asky Quantum Technology Co Ltd filed Critical Anhui Asky Quantum Technology Co Ltd
Priority to CN201810323573.6A priority Critical patent/CN108462578A/en
Publication of CN108462578A publication Critical patent/CN108462578A/en
Withdrawn legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0852Quantum cryptography
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0852Quantum cryptography
    • H04L9/0858Details about key distillation or coding, e.g. reconciliation, error correction, privacy amplification, polarisation coding or phase coding
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0863Generation of secret information including derivation or calculation of cryptographic keys or passwords involving passwords or one-time passwords

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Physics & Mathematics (AREA)
  • Electromagnetism (AREA)
  • Theoretical Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The invention discloses one kind being based on the encrypted converged communication device of quantum key and its encipher-decipher method, including the first converged communication equipment, the second converged communication equipment, the first quantum key distribution equipment and the second quantum key distribution equipment;The first converged communication equipment includes the first physical interface, the first CPU processor, the first encryption/decryption module, the first codec, the first modem and first antenna, the second converged communication equipment includes the second physical interface, the second CPU processor, the second encryption/decryption module, the second codec, second modem and the second antenna, and the first quantum key distribution equipment is communicated to connect with the second quantum key distribution equipment quantum;Fusion and interconnection, the access of different terminal equipment, the security protection of different channels merged with switching and different data of heterogeneous networks may be implemented in the present invention, and the communication requirement being suitable under varying environment, to make communication network stablize, Information Security enhances.

Description

Based on the encrypted converged communication device of quantum key and its encipher-decipher method
Technical field
The present invention relates to converged communication technical fields, and in particular to one kind being based on the encrypted converged communication device of quantum key And its encipher-decipher method.
Background technology
Present single communication net is by major natural disasters(Snow disaster, earthquake, flood etc.), great social accident (Terrorist activity, destructive activity etc.), military war etc. easily cause the destruction and interruption of communication line, if processing is not in time It will crisis personal safety, social safety or national security.Especially in social accident or military war period to information Security protection have also been proposed higher requirement, constantly reliable communications is required also data safety to be required not reveal.Existing communication net Stablize and safety is obviously insufficient.
Invention content
It is a kind of with the insufficient offer in safety the technical problem to be solved by the present invention is to stablize for existing communication net Based on the encrypted converged communication device of quantum key and its encipher-decipher method, the present invention may be implemented the fusions of heterogeneous networks with mutually Connection, the access of different terminal equipment, the security protection of different channels merged with switching and different data, are suitable for varying environment Under communication requirement, to make communication network stablize, Information Security enhancing.
To realize the above-mentioned technical purpose, the technical solution that the present invention takes is:
One kind be based on the encrypted converged communication device of quantum key, including the first converged communication equipment, the second converged communication equipment, First quantum key distribution equipment and the second quantum key distribution equipment;The first converged communication equipment connects including the first physics Mouth, the first CPU processor, the first encryption/decryption module, the first codec, the first modem and first antenna, described Two converged communication equipment include the second physical interface, the second CPU processor, the second encryption/decryption module, the second codec, second Modem and the second antenna;
First CPU processor is connected with first terminal equipment, first CPU processor and by the first physical interface One encryption/decryption module connects, and first CPU processor connect by the first codec with the first modem, and described the One modem is connect with first antenna, and the first antenna is connect with the second antenna communication, second antenna and second Modem connects, and the second modem is connect by the second codec with the second CPU processor, and described second CPU processor is connect with the second encryption/decryption module, and second CPU processor is connected with second terminal by the second physical interface Equipment, first CPU processor are connect with the first quantum key distribution equipment, second CPU processor and the second quantum Cipher key distribution system connects, and the first quantum key distribution equipment is communicated to connect with the second quantum key distribution equipment quantum.
As further improved technical scheme of the present invention, first codec and the second codec use DSP Chip or fpga chip.
As further improved technical scheme of the present invention, first modem includes the first radio modulation solution Adjust device, the first GSM modems, the first microwave modem and the first analog modem, the first antenna packet Include the first wireless antenna, the first microwave antenna and the first broadcast antenna, first radio modem and the first broadcast Antenna connects, and the first GSM modems connect with first wireless antenna, first microwave modem and The first microwave antenna connection, first analog modem are connected with the first analog line.
As further improved technical scheme of the present invention, the second modem includes the second radio modulation solution Adjust device, the 2nd GSM modems, the second microwave modem and the second analog modem, the second antenna packet Include the second wireless antenna, the second microwave antenna and the second broadcast antenna, second radio modem and the second broadcast Antenna connects, and the 2nd GSM modems connect with second wireless antenna, second microwave modem and The second microwave antenna connection, second analog modem are connected with the second analog line, the first wireless day Line is connect with the second wireless antenna by wireless communication, and first microwave antenna and the second microwave antenna pass through microwave network Network communicates to connect, and first broadcast antenna and the second broadcast antenna are connected by broadcast network communication, first artificial line Road and the second analog line are communicated to connect by PSTN network.
As further improved technical scheme of the present invention, the first terminal equipment and second terminal equipment are included in Line terminal equipment and mobile terminal device.
As further improved technical scheme of the present invention, the mobile terminal device includes smart mobile phone, described online Terminal device includes PSTN terminals, PC terminals and special line terminal;
Smart mobile phone in the first terminal equipment is connect by gsm wireless interface with the first GSM modems, and described PSTN terminals in one terminal device are connect by analog line interface with the first analog modem, and the first terminal is set PC terminals in standby are connect by Ethernet interface with the first CPU processor, and the special line terminal in the first terminal equipment is logical E1 interfaces are crossed to connect with the first CPU processor;
Smart mobile phone in the second terminal equipment is connect by gsm wireless interface with the 2nd GSM modems, and described PSTN terminals in two terminal devices are connect by analog line interface with the second analog modem, and the second terminal is set PC terminals in standby are connect by Ethernet interface with the second CPU processor, and the special line terminal in the second terminal equipment is logical E1 interfaces are crossed to connect with the second CPU processor.
As further improved technical scheme of the present invention, first CPU processor is connected with the first Ethernet interface, Second CPU processor is connected with the second Ethernet interface, and first Ethernet interface and the second Ethernet interface pass through Ethernet connects;First CPU processor is connected with the first E1 interfaces, and second CPU processor is connected with the 2nd E1 Interface, the first E1 interfaces and the 2nd E1 interfaces are connected by private line network.
As further improved technical scheme of the present invention, first CPU processor by network interface, USB interface or Serial ports is connect with the first quantum key distribution equipment, and second CPU processor passes through network interface, USB interface or serial ports and Two quantum key distribution equipment connect.
As further improved technical scheme of the present invention, pass through net in line terminal equipment in the first terminal equipment Mouth, USB interface or serial communication are connected with third quantum key distribution equipment, the online terminal in the second terminal equipment Equipment is connected with the 4th quantum key distribution equipment, the third quantum key point by network interface, USB interface or serial communication It sends out equipment to communicate to connect with the first quantum key distribution equipment quantum, the 4th quantum key distribution equipment and the second quantum are close Key discharge device quantum communications connect, described that encryption/decryption module is equipped in line terminal equipment.
To realize the above-mentioned technical purpose, another technical solution that the present invention takes is:
A kind of encipher-decipher method based on the encrypted converged communication device of quantum key, including first terminal equipment are merged with first Encipher-decipher method, the first converged communication equipment between communication equipment and the encipher-decipher method between the second converged communication equipment with And the second encipher-decipher method between converged communication equipment and second terminal equipment;
Encipher-decipher method between first terminal equipment and the first converged communication equipment includes:
(a)Between third quantum key distribution equipment and the first quantum key distribution equipment identical amount is generated by quantum communications Sub-key one;
(b)Quantum key one is obtained out of third quantum key distribution equipment in line terminal equipment in first terminal equipment, it should Encryption/decryption module in line terminal equipment is encrypted the clear data in it by quantum key one, obtains ciphertext number According to, in first terminal equipment at the first CPU that ciphertext data are sent in the first converged communication equipment by line terminal equipment Manage device;
(c)First CPU processor reads quantum key together by quantum key one and close out of first quantum key distribution equipment Literary data are sent to the first encryption/decryption module, and the first encryption/decryption module is decrypted by quantum key a pair of ciphertext data, is obtained Clear data after to decryption;
Encipher-decipher method between first converged communication equipment and the second converged communication equipment includes:
(d)Between first quantum key distribution equipment and the second quantum key distribution equipment identical amount is generated by quantum communications Sub-key two;
(e)The first CPU processor in first converged communication equipment reads quantum key out of first quantum key distribution equipment Two and quantum key two is sent to the first encryption/decryption module, the first encryption/decryption module by quantum key two to clear data into Row encryption, obtains encrypted ciphertext data, encrypted ciphertext remote data is sent to the second fusion by the first CPU processor The second CPU processor in communication equipment;
(f)Second CPU processor receives ciphertext data, and quantum key two is read out of second quantum key distribution equipment, the Ciphertext data and quantum key two are sent to the second encryption/decryption module by two CPU processors, and the second encryption/decryption module passes through quantum Ciphertext data are decrypted in key two, the clear data after being decrypted;
Encipher-decipher method between second converged communication equipment and second terminal equipment includes:
(g)Between second quantum key distribution equipment and the 4th quantum key distribution equipment identical amount is generated by quantum communications Sub-key three;
(h)The second CPU processor in second converged communication equipment reads quantum key out of second quantum key distribution equipment Three and quantum key three is sent to the second encryption/decryption module, the second encryption/decryption module by quantum key three to clear data into Row encryption, obtains encrypted ciphertext data, encrypted ciphertext data are sent to second terminal equipment by the second CPU processor In in line terminal equipment;
(i)Quantum key three is obtained out of the 4th quantum key distribution equipment in line terminal equipment in second terminal equipment, it should Encryption/decryption module in line terminal equipment carries out the ciphertext data received in line terminal equipment by quantum key three Decryption, obtains clear data.
Beneficial effects of the present invention are:
(1)The present invention supports different network communication channels(Such as PSTN network, Ethernet, wireless network, satellite network, extensively Broadcast network, private line network, Microwave Net etc.);Support different first terminal equipment or second terminal equipment(PSTN terminals, PC Terminal, GSM/CDMA/3G/4G/5G terminals, ICBM SHF satellite terminal, broadcasting station terminal, special line terminal etc.).
(2)The connection side of heterogeneous networks is provided between the first converged communication equipment and the second converged communication equipment of the present invention Formula can connect PSTN network, Ethernet, GSM/CDMA/3G/4G/5G networks(Wireless network), satellite network, radio network Network, the networks such as private line network;First converged communication equipment provides the connecting interface of different first terminal equipment, and the second fusion is logical Letter equipment provides the connecting interface of different second terminal equipment, can connect PSTN terminals, PC terminals, GSM/CDMA/3G/ 4G/5G terminals, ICBM SHF satellite terminal, broadcast terminal, special line terminal etc..When the first converged communication equipment of the present invention and the second fusion are logical When any type network channel connected between letter equipment is available, different types of first terminal equipment and second terminal equipment are all Data communication can be completed by the first converged communication equipment and the second converged communication equipment transfer, prevent single network channel Interruption causes data-transmission interruptions.
(3)The present invention is using the first quantum key distribution equipment and the second quantum key distribution equipment for realizing symmetrical close The actual time safety of key is distributed, and protection is encrypted using quantum key in the data for transmitting communication, realizes the first converged communication equipment To the safe transmission of the data of the second converged communication equipment.
(4)The present invention can also pass through third quantum key distribution equipment, the first quantum key distribution equipment, the second quantum Cipher key distribution system and the 4th quantum key distribution equipment realize first terminal equipment to the first converged communication equipment, the first fusion Communication equipment is encrypted to the second converged communication equipment, the second converged communication equipment to the whole network between second terminal equipment, realizes number According to safe transmission.
Description of the drawings
Fig. 1 is the structural diagram of the present invention.
Fig. 2 is the communication network architecture schematic diagram of the present invention.
Fig. 3 is the first converged communication equipment and the second converged communication equipment inner structure schematic diagram of the present invention.
Fig. 4 is the whole network data encryption and decryption structural schematic diagram of the present invention.
Fig. 5 is the data encrypting and deciphering structural representation between the first terminal equipment and the first converged communication equipment of the present invention Figure.
Specific implementation mode
The specific implementation mode of the present invention is further illustrated below according to Fig. 1 to Fig. 5:
Referring to Fig. 1 and Fig. 2, a kind of to be based on the encrypted converged communication device of quantum key, including the first converged communication equipment, second Converged communication equipment, the first quantum key distribution equipment and the second quantum key distribution equipment;The first converged communication equipment It is connected with the second converged communication equipment telecommunication, the first quantum key distribution equipment and the second quantum key distribution equipment Quantum communications connect, the first converged communication equipment and the communication connection of the first quantum key distribution equipment, the second converged communication equipment It is communicated to connect with the second quantum key distribution equipment.
Referring to Fig. 3, the first converged communication equipment includes the first physical interface(For realizing connecing for different terminal equipment Enter), the first CPU processor, the first encryption/decryption module, the first codec, the first modem and first antenna, described Two converged communication equipment include the second physical interface(For realizing the access of different terminal equipment), the second CPU processor, second Encryption/decryption module, the second codec, second modem and the second antenna;First CPU processor passes through the first object Reason interface is connected with first terminal equipment, and first CPU processor is connect with the first encryption/decryption module, at the first CPU Reason device is connect by the first codec with the first modem, and first modem is connect with first antenna, institute It states first antenna to communicate to connect with the second antenna remote, second antenna is connect with second modem, and described second adjusts Modulator-demodulator is connect by the second codec with the second CPU processor, second CPU processor and the second encryption/decryption module Connection, second CPU processor are connected with second terminal equipment by the second physical interface, first CPU processor with First quantum key distribution equipment connects, and second CPU processor is connect with the second quantum key distribution equipment.
In the present embodiment, first codec and the second codec use dsp chip or fpga chip.
In the present embodiment, referring to Fig. 3, first modem includes the first radio modem, first GSM/CDMA/3G/4G/5G modems, the first microwave modem and the first analog modem, described first day Line includes the first wireless antenna, the first microwave antenna and the first broadcast antenna, first radio modem and first Broadcast antenna connects, and the first GSM/CDMA/3G/4G/5G modems connect with first wireless antenna, and described the One microwave modem is connect with first microwave antenna, and first analog modem is connected with the first artificial line Road.The second modem includes the second radio modem, the 2nd GSM/CDMA/3G/4G/5G modulation /demodulation Device, the second microwave modem and the second analog modem, second antenna includes the second wireless antenna, second micro- Wave antenna and the second broadcast antenna, second radio modem are connect with the second broadcast antenna, the 2nd GSM/ CDMA/3G/4G/5G modems are connect with second wireless antenna, second microwave modem and described the Two microwave antennas connect, and second analog modem is connected with the second analog line, first wireless antenna and the Two wireless antennas are connected by wireless network telecommunication, and first microwave antenna and the second microwave antenna pass through Microwave Net Telecommunication connects, and first broadcast antenna and the second broadcast antenna are connected by broadcasting network telecommunication, and described first Analog line and the second analog line are connected by PSTN network telecommunication.
In the present embodiment, referring to Fig. 2, the first terminal equipment and second terminal equipment be included in line terminal equipment and Mobile terminal device.Wherein mobile terminal device includes GSM/CDMA/3G/4G/5G terminals(Such as smart mobile phone), broadcasting station Terminal etc. includes PSTN terminals, PC terminals, special line terminal, ICBM SHF satellite terminal in line terminal equipment(ICBM SHF satellite terminal is that Ethernet is set It is standby)Deng;GSM/CDMA/3G/4G/5G terminals in the first terminal equipment(Such as smart mobile phone)Pass through gsm wireless interface It is connect with the first GSM modems, referring to Fig. 3, the PSTN terminals in the first terminal equipment pass through analog line interface (Or RJ11 interfaces)It is connect with the first analog modem, the PC terminals in the first terminal equipment pass through Ethernet interface (Or RJ45 interfaces)It is connect with the first CPU processor, the special line terminal in the first terminal equipment passes through E1 interfaces and first CPU processor connects;GSM/CDMA/3G/4G/5G terminals in the second terminal equipment(Smart mobile phone)Pass through gsm wireless Interface is connect with the 2nd GSM modems, and the PSTN terminals in the second terminal equipment pass through analog line interface(Or RJ11 interfaces)It is connect with the second analog modem, the PC terminals in the second terminal equipment pass through Ethernet interface(Or RJ45 interfaces)It is connect with the second CPU processor, the special line terminal in the second terminal equipment passes through E1 interfaces and the 2nd CPU Processor connects.
Referring to Fig. 3, the first GSM/CDMA/3G/4G/5G modems and the 2nd GSM/CDMA/3G/4G/5G modulatedemodulates It adjusts device to be used to the mobile terminal signals such as mobile phone carrying out signal modulation, is received by the first wireless antenna and the second wireless antenna Hair;First radio modem and the second radio modem are used to complete the signal modulation of radio broadcasting, pass through First broadcast antenna and the second broadcast antenna are received and dispatched;First microwave modem and the second microwave modem are used for The signal modulation for completing microwave signal, is received and dispatched by the first microwave antenna and the second microwave antenna;First analog-modulated solution Device and the second analog modem is adjusted to be used to complete the A/D of voice data, D/A conversions are received and dispatched by RJ11 interfaces;First compiles Decoder and the second codec for being compressed to data, decompression operation, can be DSP either FPGA or ASCII; Data conversion, agreement when first CPU processor and the second CPU processor are for realizing different types of terminals device intercommunicating turn It changes, format conversion is uniformly packaged into IP data packets(Being unified into IP data packets facilitates the data encrypting and deciphering of encryption process to operate)With The configuration of equipment and management etc.;Encrypted card can be used in first encryption/decryption module and the second encryption/decryption module, for completing data Encryption process, encrypted mode support the ipsec protocol, ssl protocol or other kinds of agreement of standard, realize Encryption Algorithm Including AES, DES, 3DES, SM1, SM4 etc.;Further, quantum key is supported to be applied to the agreements such as IPSec, SSL, and right Session key in IPSec, ssl protocol is replaced with quantum key, i.e., data is encrypted with quantum key.
In the present embodiment, referring to Fig. 3, first CPU processor is also associated with the first Ethernet interface, and described second CPU processor is also associated with the second Ethernet interface, and first Ethernet interface and the second Ethernet interface pass through Ethernet Network telecommunication connects;First CPU processor is connected with the first E1 interfaces, and second CPU processor is connected with second E1 interfaces, the first E1 interfaces and the 2nd E1 interfaces are connected by E1 private line network telecommunications.
First CPU processor is connect by network interface, USB interface or serial ports with the first quantum key distribution equipment, Second CPU processor is connect by network interface, USB interface or serial ports with the second quantum key distribution equipment.
In conclusion supporting different network communications based on the network structure of the encrypted converged communication device of quantum key Channel(PSTN network, Ethernet, GSM/CDMA/3G/4G/5G networks(Wireless network), satellite network, broadcasting network, special line Network, Microwave Net etc.);Support different first terminal equipment or second terminal equipment(PSTN terminals, PC terminals, GSM/ CDMA/3G/4G/5G terminals, ICBM SHF satellite terminal, broadcasting station terminal, special line terminal etc.).First converged communication equipment and second is melted The connection type that heterogeneous networks are provided between hop communication equipment, can connect PSTN network, Ethernet, GSM/CDMA/3G/ 4G/5G networks(Wireless network), satellite network, broadcasting network, the networks such as private line network;First converged communication equipment provides different First terminal equipment connecting interface, the second converged communication equipment provides the connecting interface of different second terminal equipment, It can connect PSTN terminals, PC terminals, GSM/CDMA/3G/4G/5G terminals, ICBM SHF satellite terminal, broadcast terminal, special line terminal etc., One quantum key distribution equipment and the second quantum key distribution equipment are distributed for realizing the actual time safety of symmetric key.
Referring to Fig. 4 and Fig. 5, pass through network interface, USB interface or serial ports in line terminal equipment in the first terminal equipment Communication link is connected to third quantum key distribution equipment, similarly, in the second terminal equipment line terminal equipment by network interface, USB interface or serial communication are connected with the 4th quantum key distribution equipment, the third quantum key distribution equipment and first Quantum key distribution equipment quantum communicates to connect, the 4th quantum key distribution equipment and the second quantum key distribution equipment amount Son communication connection, it is described that encryption/decryption module is equipped in line terminal equipment.
The present embodiment can support the content transmissions such as voice, video, data, message, file, the network packet that can be supported It includes:PSTN network, Ethernet, GSM/CDMA/3G/4G/5G networks(Wireless network), satellite network, broadcasting network, private wire network Network, Microwave Net etc., the first terminal equipment and second terminal equipment that can be supported may each comprise:PSTN terminals(Phone is whole End), voip phone, computer(PC terminals), GSM/CDMA/3G/4G/5G terminals(Smart mobile phone), ICBM SHF satellite terminal, broadcasting station The link of terminal, digital terminal etc., support includes:Fixed-line phone network, wire net, wireless communication networks, satellite communication network, broadcast electricity The links such as platform net, Leased line net, microwave network.When any type connected based on the encrypted converged communication device of quantum key When network channel can be used, different first terminal equipment and second terminal equipment can pass through the first converged communication equipment and Data communication is completed in two converged communication equipment transfers, and protection is encrypted using quantum key in the data for transmitting communication, is realized The safe transmission of data.
The present embodiment also provides a kind of encipher-decipher method based on the encrypted converged communication device of quantum key, including first Encipher-decipher method, the first converged communication equipment between terminal device and the first converged communication equipment and the second converged communication equipment Between encipher-decipher method and the second converged communication equipment and second terminal equipment between encipher-decipher method;
Encipher-decipher method between first terminal equipment and the first converged communication equipment includes:It is merged in line terminal equipment and first The encipher-decipher method between encipher-decipher method and mobile terminal device and the first converged communication equipment between communication equipment.
Referring to Fig. 5, the encipher-decipher method between line terminal equipment and the first converged communication equipment includes:
(a)Between third quantum key distribution equipment and the first quantum key distribution equipment identical amount is generated by quantum communications Sub-key one;
(b)Quantum key one is obtained out of third quantum key distribution equipment in line terminal equipment in first terminal equipment, it should Encryption/decryption module in line terminal equipment is encrypted the clear data in it by quantum key one, obtains ciphertext number According to, in first terminal equipment at the first CPU that ciphertext data are sent in the first converged communication equipment by line terminal equipment Manage device;
(c)First CPU processor reads quantum key together by quantum key one and close out of first quantum key distribution equipment Literary data are sent to the first encryption/decryption module, and the first encryption/decryption module is decrypted by quantum key a pair of ciphertext data, is obtained Clear data after to decryption.
Due to the mobility of mobile terminal device itself, so the mobile terminal device in first terminal equipment can not connect Third quantum key distribution equipment, it is therefore desirable to quantum key is prestored inside mobile terminal device, i.e. mobile terminal is set The standby encipher-decipher method between the first converged communication equipment is:First quantum key distribution equipment can be close by the quantum of generation Key is stored in local, and subregion, segmentation, number storage;Mobile terminal device can import close with local quantum in advance The identical a certain amount of number key of key;When mobile terminal device needs communication, mobile terminal device uses specified number Data key is encrypted, and encrypted data are sent to the first CPU processor in the first converged communication equipment, the The first CPU processor in one converged communication equipment is decrypted from the local number key that obtains again.
Referring to Fig. 4, the encipher-decipher method between the first converged communication equipment and the second converged communication equipment includes:
(d)Between first quantum key distribution equipment and the second quantum key distribution equipment identical amount is generated by quantum communications Sub-key two;
(e)The first CPU processor in first converged communication equipment reads quantum key out of first quantum key distribution equipment Two and quantum key two is sent to the first encryption/decryption module, the first encryption/decryption module by quantum key two to clear data into Row encryption, obtains encrypted ciphertext data, encrypted ciphertext remote data is sent to the second fusion by the first CPU processor The second CPU processor in communication equipment;
(f)Second CPU processor receives ciphertext data, and quantum key two is read out of second quantum key distribution equipment, the Ciphertext data and quantum key two are sent to the second encryption/decryption module by two CPU processors, and the second encryption/decryption module passes through quantum Ciphertext data are decrypted in key two, the clear data after being decrypted.
Encipher-decipher method between second converged communication equipment and second terminal equipment includes:Second converged communication equipment with The encryption and decryption side between encipher-decipher method and the second converged communication equipment and mobile terminal device between line terminal equipment Method;
Wherein the second converged communication equipment and the encipher-decipher method between line terminal equipment include:
(g)Between second quantum key distribution equipment and the 4th quantum key distribution equipment identical amount is generated by quantum communications Sub-key three;
(h)The second CPU processor in second converged communication equipment reads quantum key out of second quantum key distribution equipment Three and quantum key three is sent to the second encryption/decryption module, the second encryption/decryption module by quantum key three to clear data into Row encryption, obtains encrypted ciphertext data, encrypted ciphertext data are sent to second terminal equipment by the second CPU processor In in line terminal equipment;
(i)Quantum key three is obtained out of the 4th quantum key distribution equipment in line terminal equipment in second terminal equipment, it should Encryption/decryption module in line terminal equipment carries out the ciphertext data received in line terminal equipment by quantum key three Decryption, obtains clear data.
The similarly encipher-decipher method between mobile terminal device and the first converged communication equipment, the second converged communication equipment with The encipher-decipher method between mobile terminal device in second terminal equipment includes:Second quantum key distribution equipment can be by life At quantum key be stored in local, and subregion, be segmented, number storage;Mobile terminal device can import and this in advance The identical a certain amount of number key of quantum key on ground;When mobile terminal device needs communication, the second converged communication equipment In the second CPU processor read out of second quantum key distribution equipment be stored in local specified number key and will compile Number key is sent to the second encryption/decryption module, and the second encryption/decryption module is added by clear data of the number key pair in it It is close, encrypted ciphertext data are obtained, encrypted ciphertext data are sent in second terminal equipment by the second CPU processor Mobile terminal device, mobile terminal device are decrypted using specified number key pair ciphertext data.
The encryption of first terminal equipment in the present embodiment to the first converged communication equipment:Support that different types of first is whole Data Encryption Transmission between end equipment and the first converged communication equipment.First terminal equipment and the first converged communication equipment are encrypted Mode supports the ipsec protocol, ssl protocol or other kinds of agreement of standard;Quantum key is supported to be applied to IPSec, SSL etc. Agreement, and the session key in the agreements such as IPSec, SSL is replaced with quantum key, i.e., data are carried out with quantum key Encryption.The present embodiment realizes terminal device to converged communication equipment, and converged communication equipment adds to the whole network between converged communication equipment It is close.
The first encryption/decryption module and the second encryption/decryption module in the present embodiment can need replacing encryption according to business Algorithm.Quantum key distribution equipment in the present embodiment(First quantum key distribution equipment, the second quantum key distribution equipment, Third quantum key distribution equipment and the 4th quantum key distribution equipment)Pool of keys is inside had, the buffering of key is used for.Pool of keys In key source can be quantum key, the key that PKI modes generate or the key manually pre-allocated.In the present embodiment The free space method of salary distribution of light, the fiber channel method of salary distribution can be used in quantum-key distribution, and the quantum entanglement method of salary distribution is being measured Symmetric key is formed between sub-key distribution terminal.
Protection scope of the present invention includes but not limited to embodiment of above, and protection scope of the present invention is with claims Subject to, any replacement being readily apparent that those skilled in the art that this technology is made, deformation, improvement each fall within the present invention's Protection domain.

Claims (10)

1. one kind being based on the encrypted converged communication device of quantum key, it is characterised in that:Including the first converged communication equipment, second Converged communication equipment, the first quantum key distribution equipment and the second quantum key distribution equipment;The first converged communication equipment Including the first physical interface, the first CPU processor, the first encryption/decryption module, the first codec, the first modem and One antenna, the second converged communication equipment include the second physical interface, the second CPU processor, the second encryption/decryption module, second Codec, second modem and the second antenna;
First CPU processor is connected with first terminal equipment, first CPU processor and by the first physical interface One encryption/decryption module connects, and first CPU processor connect by the first codec with the first modem, and described the One modem is connect with first antenna, and the first antenna is connect with the second antenna communication, second antenna and second Modem connects, and the second modem is connect by the second codec with the second CPU processor, and described second CPU processor is connect with the second encryption/decryption module, and second CPU processor is connected with second terminal by the second physical interface Equipment, first CPU processor are connect with the first quantum key distribution equipment, second CPU processor and the second quantum Cipher key distribution system connects, and the first quantum key distribution equipment is communicated to connect with the second quantum key distribution equipment quantum.
2. according to claim 1 be based on the encrypted converged communication device of quantum key, it is characterised in that:Described first compiles Decoder and the second codec use dsp chip or fpga chip.
3. according to claim 1 be based on the encrypted converged communication device of quantum key, it is characterised in that:Described first adjusts Modulator-demodulator includes the first radio modem, the first GSM modems, the first microwave modem and the first mould Quasi- modem, the first antenna include the first wireless antenna, the first microwave antenna and the first broadcast antenna, and described first Radio modem is connect with the first broadcast antenna, and the first GSM modems connect with first wireless antenna It connects, first microwave modem is connect with first microwave antenna, and first analog modem is connected with First analog line.
4. according to claim 3 be based on the encrypted converged communication device of quantum key, it is characterised in that:Described second adjusts Modulator-demodulator includes the second radio modem, the 2nd GSM modems, the second microwave modem and the second mould Quasi- modem, second antenna include the second wireless antenna, the second microwave antenna and the second broadcast antenna, and described second Radio modem is connect with the second broadcast antenna, and the 2nd GSM modems connect with second wireless antenna It connects, second microwave modem is connect with second microwave antenna, and second analog modem is connected with Second analog line, first wireless antenna are connect with the second wireless antenna by wireless communication, first microwave Antenna is communicated to connect with the second microwave antenna by Microwave Net, and first broadcast antenna and the second broadcast antenna pass through broadcast Network communication connects, and first analog line and the second analog line are communicated to connect by PSTN network.
5. according to claim 4 be based on the encrypted converged communication device of quantum key, it is characterised in that:Described first eventually End equipment and second terminal equipment are included in line terminal equipment and mobile terminal device.
6. according to claim 5 be based on the encrypted converged communication device of quantum key, it is characterised in that:It is described mobile whole End equipment includes smart mobile phone, and described in line terminal equipment includes PSTN terminals, PC terminals and special line terminal;
Smart mobile phone in the first terminal equipment is connect by gsm wireless interface with the first GSM modems, and described PSTN terminals in one terminal device are connect by analog line interface with the first analog modem, and the first terminal is set PC terminals in standby are connect by Ethernet interface with the first CPU processor, and the special line terminal in the first terminal equipment is logical E1 interfaces are crossed to connect with the first CPU processor;
Smart mobile phone in the second terminal equipment is connect by gsm wireless interface with the 2nd GSM modems, and described PSTN terminals in two terminal devices are connect by analog line interface with the second analog modem, and the second terminal is set PC terminals in standby are connect by Ethernet interface with the second CPU processor, and the special line terminal in the second terminal equipment is logical E1 interfaces are crossed to connect with the second CPU processor.
7. according to claim 6 be based on the encrypted converged communication device of quantum key, it is characterised in that:Described first CPU processor is connected with the first Ethernet interface, and second CPU processor is connected with the second Ethernet interface, and described first Ethernet interface and the second Ethernet interface are connected by Ethernet;First CPU processor is connected with the first E1 interfaces, Second CPU processor is connected with the 2nd E1 interfaces, and the first E1 interfaces and the 2nd E1 interfaces are connected by private line network.
8. according to any one of claims 1 to 7 be based on the encrypted converged communication device of quantum key, it is characterised in that: First CPU processor is connect by network interface, USB interface or serial ports with the first quantum key distribution equipment, and described second CPU processor is connect by network interface, USB interface or serial ports with the second quantum key distribution equipment.
9. according to claim 8 be based on the encrypted converged communication device of quantum key, it is characterised in that:Described first eventually Third quantum key distribution equipment is connected with by network interface, USB interface or serial communication in line terminal equipment in end equipment, In the second terminal equipment by network interface, USB interface or serial communication to be connected with the 4th quantum in line terminal equipment close Key discharge device, the third quantum key distribution equipment and the first quantum key distribution equipment quantum communicate to connect, and described the Four quantum key distribution equipment are communicated to connect with the second quantum key distribution equipment quantum, and described be equipped in line terminal equipment adds Deciphering module.
10. a kind of encipher-decipher method according to claim 9 based on the encrypted converged communication device of quantum key, special Sign is:Including between first terminal equipment and the first converged communication equipment encipher-decipher method, the first converged communication equipment and Between encipher-decipher method and the second converged communication equipment and second terminal equipment between second converged communication equipment plus solution Decryption method;
Encipher-decipher method between first terminal equipment and the first converged communication equipment includes:
(a)Between third quantum key distribution equipment and the first quantum key distribution equipment identical amount is generated by quantum communications Sub-key one;
(b)Quantum key one is obtained out of third quantum key distribution equipment in line terminal equipment in first terminal equipment, it should Encryption/decryption module in line terminal equipment is encrypted the clear data in it by quantum key one, obtains ciphertext number According to, in first terminal equipment at the first CPU that ciphertext data are sent in the first converged communication equipment by line terminal equipment Manage device;
(c)First CPU processor receives ciphertext data, the first CPU processor read volume out of first quantum key distribution equipment Quantum key one and ciphertext data are sent to the first encryption/decryption module by sub-key together, and the first encryption/decryption module is close by quantum Key a pair of ciphertext data are decrypted, the clear data after being decrypted;
Encipher-decipher method between first converged communication equipment and the second converged communication equipment includes:
(d)Between first quantum key distribution equipment and the second quantum key distribution equipment identical amount is generated by quantum communications Sub-key two;
(e)The first CPU processor in first converged communication equipment reads quantum key out of first quantum key distribution equipment Two and quantum key two is sent to the first encryption/decryption module, the first encryption/decryption module by quantum key two to clear data into Row encryption, obtains encrypted ciphertext data, encrypted ciphertext remote data is sent to the second fusion by the first CPU processor The second CPU processor in communication equipment;
(f)Second CPU processor receives ciphertext data, and quantum key two is read out of second quantum key distribution equipment, the Ciphertext data and quantum key two are sent to the second encryption/decryption module by two CPU processors, and the second encryption/decryption module passes through quantum Ciphertext data are decrypted in key two, the clear data after being decrypted;
Encipher-decipher method between second converged communication equipment and second terminal equipment includes:
(g)Between second quantum key distribution equipment and the 4th quantum key distribution equipment identical amount is generated by quantum communications Sub-key three;
(h)The second CPU processor in second converged communication equipment reads quantum key out of second quantum key distribution equipment Three and quantum key three is sent to the second encryption/decryption module, the second encryption/decryption module by quantum key three to clear data into Row encryption, obtains encrypted ciphertext data, encrypted ciphertext data are sent to second terminal equipment by the second CPU processor In in line terminal equipment;
(i)Quantum key three is obtained out of the 4th quantum key distribution equipment in line terminal equipment in second terminal equipment, it should Encryption/decryption module in line terminal equipment carries out the ciphertext data received in line terminal equipment by quantum key three Decryption, obtains clear data.
CN201810323573.6A 2018-04-12 2018-04-12 Based on the encrypted converged communication device of quantum key and its encipher-decipher method Withdrawn CN108462578A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810323573.6A CN108462578A (en) 2018-04-12 2018-04-12 Based on the encrypted converged communication device of quantum key and its encipher-decipher method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810323573.6A CN108462578A (en) 2018-04-12 2018-04-12 Based on the encrypted converged communication device of quantum key and its encipher-decipher method

Publications (1)

Publication Number Publication Date
CN108462578A true CN108462578A (en) 2018-08-28

Family

ID=63235298

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810323573.6A Withdrawn CN108462578A (en) 2018-04-12 2018-04-12 Based on the encrypted converged communication device of quantum key and its encipher-decipher method

Country Status (1)

Country Link
CN (1) CN108462578A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109150527A (en) * 2018-11-02 2019-01-04 国家电网有限公司 A kind of switched telephone network quantum cryptography system and encryption communication method
CN113098872A (en) * 2021-04-02 2021-07-09 山东量子科学技术研究院有限公司 IP telephone and mobile terminal encryption communication system and method based on quantum network and convergence gateway

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103051444A (en) * 2012-12-31 2013-04-17 安徽问天量子科技股份有限公司 Quantum security digital terminal applied to PSTN (Public Switched Telephone Network)
CN104158589A (en) * 2014-07-16 2014-11-19 山东大学 Wireless-fiber fused networking multi-service bearing system and application thereof
CN105847001A (en) * 2016-05-27 2016-08-10 安徽问天量子科技股份有限公司 Device, system and method for digital microwave communication based on quantum encryption
CN207947789U (en) * 2018-04-12 2018-10-09 安徽问天量子科技股份有限公司 Based on the encrypted converged communication device of quantum key

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103051444A (en) * 2012-12-31 2013-04-17 安徽问天量子科技股份有限公司 Quantum security digital terminal applied to PSTN (Public Switched Telephone Network)
CN104158589A (en) * 2014-07-16 2014-11-19 山东大学 Wireless-fiber fused networking multi-service bearing system and application thereof
CN105847001A (en) * 2016-05-27 2016-08-10 安徽问天量子科技股份有限公司 Device, system and method for digital microwave communication based on quantum encryption
CN207947789U (en) * 2018-04-12 2018-10-09 安徽问天量子科技股份有限公司 Based on the encrypted converged communication device of quantum key

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109150527A (en) * 2018-11-02 2019-01-04 国家电网有限公司 A kind of switched telephone network quantum cryptography system and encryption communication method
CN109150527B (en) * 2018-11-02 2021-05-28 国家电网有限公司 Quantum encryption system and encryption communication method for telephone exchange network
CN113098872A (en) * 2021-04-02 2021-07-09 山东量子科学技术研究院有限公司 IP telephone and mobile terminal encryption communication system and method based on quantum network and convergence gateway

Similar Documents

Publication Publication Date Title
US6556835B1 (en) Implementation of multicast messaging in a mobile telecommunications network
CN107437995A (en) Satellite-based wide area quantum communication network system and communication means
FI20001567A (en) Providing data encryption on a wireless communications system
FI991283A0 (en) Providing authentication and encryption in a mobile communication system
CN104333455A (en) Secrete communication system and method for smart phone
MX9400230A (en) IMPROVEMENTS IN WIRELESS DIGITAL SYSTEM OF PERSONAL COMMUNICATIONS THAT HAVE BIDIRECTIONAL CALLS OF VOICE / DATA / IMAGE AND DELIVERY BETWEEN CELLS PROVIDED BY LOGIC RESIDENT IN PORTABLE MICROPHONE PHONE TERMINALS, CENTRALS OF RADIO CELL PHONES
CN105792190B (en) Data encryption, decryption and transmission method in communication system
CN101981892A (en) Systems and methods for group key distribution and management for wireless communications systems
CN101420303A (en) Communication method for audio data and apparatus thereof
CN207947789U (en) Based on the encrypted converged communication device of quantum key
CN108462578A (en) Based on the encrypted converged communication device of quantum key and its encipher-decipher method
CN105847001A (en) Device, system and method for digital microwave communication based on quantum encryption
CN109842442B (en) Quantum key service method taking airport as regional center
EP1292166B1 (en) Mobile communication system
CN114980081A (en) Pairing system and pairing method for interphone
CN108966217A (en) A kind of secret communication method, mobile terminal and secrecy gateway
CN109450627A (en) Mobile equipment communication network integrating quantum communication and wireless communication and communication method thereof
CN212343809U (en) Edge type cellular Internet of things private network system
CN101420689A (en) Mobile terminal and method for implementing encoding and decoding process of audio code stream
CN114499853B (en) Power distribution station video transmission communication system and method based on 5G and quantum encryption
KR100541758B1 (en) Method of receiving renewed billing information with packet type in WLL terminal
CN115915119A (en) Implementation method for Beidou quantum encrypted communication
CN100388659C (en) Equipment, system and method for implementing encryption communication between heterogeneity network
CN103427985B (en) A kind of method that data encryption key is distributed to telecommunication terminal
RU2684568C1 (en) Small-size unattended data transmission equipment

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WW01 Invention patent application withdrawn after publication

Application publication date: 20180828

WW01 Invention patent application withdrawn after publication