CN108809631A - A kind of quantum key service management system and method - Google Patents
A kind of quantum key service management system and method Download PDFInfo
- Publication number
- CN108809631A CN108809631A CN201710294790.2A CN201710294790A CN108809631A CN 108809631 A CN108809631 A CN 108809631A CN 201710294790 A CN201710294790 A CN 201710294790A CN 108809631 A CN108809631 A CN 108809631A
- Authority
- CN
- China
- Prior art keywords
- user
- quantum
- service
- quantum key
- type
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0852—Quantum cryptography
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/105—Multiple levels of security
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/20—Network architectures or network communication protocols for network security for managing network security; network security policies in general
Abstract
An embodiment of the present invention provides quantum key service management system and methods, quantum network Access Management, obtain the grade of type of service described in the quantum Service events request, the user gradation of user is determined according to the mark of user, obtain the quantum key rate and quantum key flow of the quantum network equipment that user is accessed, according to quantum key rate, quantum key flow, the user gradation of user, type of service grade determines quantum service control information, and quantum service control information is sent to the quantum network equipment that user is accessed.When quantum key rate, quantum key flow, the user gradation of user, when type of service grade difference, it can determine different quantum service control informations, the quantum service control information can control quantum network equipment and provide the user with the quantum key service of different communication security grades, and then meet the demand of the quantum key service under different grades of user and different business scene to different communication safe class.
Description
Technical field
The present invention relates to fields of communication technology, more particularly to a kind of quantum key service management system and method.
Background technology
With the development of Internet technology and the communication technology, the network transmission of data can be realized by internet, in turn
Improve the timeliness of various businesses response.When being transmitted in internet in order to avoid data, is intercepted and captured or is distorted by illegal equipment,
It needs that the data of transmission are encrypted.
Demand due to different types of user to communication security grade is different, such as:Government, army class user is to communication
Safe class it is more demanding, requirement of the personal user to communication security grade is relatively low;It is different again or even if the same user
Demand under business scenario to communication security grade is different, such as:Personal user is under Internet bank's transferred account service scene, to logical
Believe the more demanding of safe class, for personal user under instant session service scene, the requirement to communication security grade is relatively low.
Invention content
Present invention solves the technical problem that being to provide a kind of quantum key service management system and method, so as to root
According to different user gradations and different type of service grades, different quantum service control informations is generated, is realized different
The quantum key service of communication security grade.
For this purpose, the technical solution that the present invention solves technical problem is:
A kind of quantum key service management system, the system comprises:
Quantum network Access Management, the quantum network equipment that the mark for storing user is accessed with the user
Correspondence;
Quantum type of service management module, the mark for storing the user and the type of service customized in the user
Correspondence;
Service contract management module, the corresponding pass of mark and the contract that the user is signed for storing the user
System, the contract that the user is signed includes the user gradation of the user;
Quantum service logic management module, the quantum clothes sent for receiving the quantum network equipment that the user is accessed
Business event request obtains the grade of the type of service in the quantum Service events request, is asked according to the quantum Service events
The mark of the user in asking determines the user gradation of the user, obtains the quantum network equipment that the user is accessed
Quantum key rate and quantum key flow, according to the quantum key rate, the quantum key flow, the use of the user
Family grade, the type of service grade determine quantum service control information, the quantum service control information are sent to described
The quantum network equipment that user is accessed.
In one example, the system also includes:
Customer incident management module, the quantum network equipment that the mark for storing the user is accessed with the user
The correspondence of the quantum Service events request of transmission.
In one example, the system also includes:
User service log management module, the mark for storing the user are corresponding with the user service daily record
Relationship, the user service daily record include that the quantum service logic management module is true according to quantum Service events request institute
The grade of the fixed type of service, the user gradation of the user, the quantum key rate, the quantum key flow with
And the quantum service control information.
In one example, the system also includes:
User service reports management module, is sent for generating user service report according to the quantum service control information
To the user.
In one example,
The type of service includes encryption, decryption, authentication or signature.
In one example,
The system is connected with quantum service network by services management interface;
The system obtains what the user was accessed by the services management interface from the quantum service network
The quantum key rate and quantum key flow of quantum network equipment.
In one example,
The system is connected with quantum business management system by service management interface;
The system is received customer attribute information and is updated by the service management interface, the user property letter
Breath includes quantum network equipment that the user is accessed, the type of service customized in the user, what the user was signed
Any one or more in contract.
A kind of quantum key service management, the method includes:
The quantum Service events request that the quantum network equipment that user is accessed is sent is received, the quantum Service events are asked
Seek the grade of mark and type of service including the user;
The grade for obtaining type of service described in the quantum Service events request, institute is determined according to the mark of the user
The user gradation for stating user determines the quantum network equipment that the user is accessed, described in acquisition according to the mark of the user
The quantum key rate and quantum key flow for the quantum network equipment that user is accessed;
According to the quantum key rate, the quantum key flow, the user gradation of the user, the type of service
Grade determines quantum service control information, and the quantum service control information is sent to the quantum network that the user is accessed
Equipment.
In one example, the method further includes:
User service report, which is generated, according to the quantum service control information is sent to the user.
In one example, the method further includes:
It receives customer attribute information to be updated, the customer attribute information includes the quantum network that the user is accessed
Equipment, the type of service customized in the user, any one or more in the contract that the user is signed.
According to the above-mentioned technical solution, the method have the advantages that:
An embodiment of the present invention provides a kind of quantum key service management system and methods, including:Quantum network access tube
Module is managed, the correspondence for the quantum network equipment that the mark for storing user is accessed with user;Quantum type of service pipe
Manage module, the correspondence of the type of service customized in mark and user for storing user;Service contract management module is used
In the correspondence for the contract that the mark of storage user is signed with user, the contract that user is signed includes the user etc. of user
Grade;Quantum service logic management module is asked for receiving the quantum Service events that the quantum network equipment that user is accessed is sent
It asks, obtains the grade of type of service described in the quantum Service events request, the user of user is determined according to the mark of user
Grade obtains the quantum key rate and quantum key flow of the quantum network equipment that user is accessed, according to quantum key speed
Rate, quantum key flow, the user gradation of user, type of service grade determine quantum service control information, and quantum service is controlled
Information processed is sent to the quantum network equipment that user is accessed.As quantum key rate, quantum key flow, the user etc. of user
Grade when type of service grade difference, can determine different quantum service control informations, which can control
Quantum network equipment processed provides the user with the quantum key service of different communication security grades, and then meets different grades of use
To the demand of the quantum key service of different communication safe class under family and different business scene.
Description of the drawings
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, to embodiment or will show below
There is attached drawing needed in technology description to be briefly described, it should be apparent that, the accompanying drawings in the following description is only this
Some embodiments of invention for those of ordinary skill in the art without creative efforts, can be with
Obtain other attached drawings according to these attached drawings.
Fig. 1 is one exemplary construction schematic diagram of quantum key service management system provided in an embodiment of the present invention;
Fig. 2 is another exemplary construction schematic diagram of quantum key service management system provided in an embodiment of the present invention;
Fig. 3 is quantum key service management system yet another embodiment structural schematic diagram provided in an embodiment of the present invention;
Fig. 4 is quantum key service management flow chart provided in an embodiment of the present invention;
Fig. 5 is quantum key service management scene sequence diagram provided in an embodiment of the present invention.
Specific implementation mode
Different user grade is given in order to provide, different business scene provides the quantum key clothes of different communication security grades
The implementation of business, an embodiment of the present invention provides a kind of quantum key service management system and methods, below in conjunction with specification
Preferred embodiment of the present invention will be described for attached drawing, it should be understood that preferred embodiment described herein be merely to illustrate and
It explains the present invention, is not intended to limit the present invention.And in the absence of conflict, in the embodiment and embodiment in the application
Feature can be combined with each other.
In practical applications, the demand due to different types of user to communication security grade is different, even if same type
User, the demand under different business scene to communication security grade is also different.It is understood that communication security grade is got over
The quantity of height, the quantum key needed for quantum key service provided also can be more.In order to avoid the waste to quantum key,
Need the quantum key service to different types of user and different business scene offer different communication safe class.Below
Embodiment provided by the invention is described in detail.
Fig. 1 is quantum key service management system structural schematic diagram provided in an embodiment of the present invention, including:
Quantum network Access Management 101, the quantum network equipment that the mark for storing user is accessed with user
Correspondence.
Quantum key service enterprise can provide a kind of quantum network equipment that user can access, can also provide more
The quantum network equipment that kind user can access.In practical applications, which includes quantum key distribution equipment,
Quantum key management equipment, quantum security server and quantum key storage terminal etc. are a variety of.
When enterprise is capable of providing the quantum network equipment that a variety of users can access, user can according to actual needs,
Select the quantum network equipment to be accessed.The quantum network equipment that user is accessed can give user according to the request of user
Quantum key service is provided.
After user chooses the quantum network equipment to be accessed, which can store
The mark of the user, the correspondence between the quantum network equipment accessed with the user.Therefore, quantum network access-in management
Module 101 at least stores the correspondence between the network equipment accessed there are one user and the user.Under normal circumstances, it measures
Sub-network Access Management 101 is stored with the corresponding pass between the network equipment that multiple users and each user are accessed
System.
Quantum type of service management module 102, pair of the type of service customized in mark and user for storing user
It should be related to.
Quantum key service enterprise can also provide multiple business type, each type of service corresponds to a kind of quantum key
Service.Such as:Encryption, provides the service that data are encrypted using quantum key;Decryption, is provided using quantum key logarithm
According to the service being decrypted;Authentication provides the function that authentication is carried out using quantum key;Signature is provided using amount
Sub-key realizes the function of digital signature.
User can according to actual needs, to the type of service needed for the customization of quantum key service enterprise.For example, user can
Only to customize the quantum key service of encryption and decryption, user can only customize the quantum key service of authentication, Yong Huye
Can only custom signatures quantum key service, user can also customize all business being capable of providing of quantum key service enterprise
Type.
After the good required type of service of user's customization in advance, quantum type of service management module 102 is for storing the user
Mark, the correspondence with the type of service customized in the user.Therefore, quantum type of service management module 102 is at least deposited
There are one the correspondences of user and the type of service customized in the user for storage.Under normal circumstances, quantum type of service manages mould
Block 102 is stored with the correspondence of the type of service customized in multiple users and each user.Quantum key service enterprise is only
The quantum key service that the customized type of service can be provided the user with, cannot provide the type of service of user's un-customized
Quantum key service.It illustrates:If a user has only customized the quantum key service of encryption and decryption, the quantum is close
Key service enterprise cannot give the user quantum key service for providing signature.
Same type of service, under different business scenarios, the type of service grade of the type of service is different, type of service
Higher grade, and the communication security higher grade of required quantum key service;Type of service lower grade, required quantum key
The communication security lower grade of service.Such as:When type of service is encryption, when business scenario is bank transfer, required industry
Service type is higher ranked, needs to configure the high quantum key service of communication security grade;When business scenario logs in for mailbox, institute
The type of service grade needed is relatively low, needs to configure the low quantum key service of communication security grade.
Service contract management module 103, the correspondence for the contract that the mark for storing user is signed with user, is used
The contract that family is signed includes the user gradation of user.
Quantum service logic management module 104, the quantum clothes sent for receiving the quantum network equipment that user is accessed
Business event request obtains the grade of the type of service in the quantum Service events request, in being asked according to quantum Service events
The mark of user determine the user gradation of user, obtain the quantum key rate and amount of quantum network equipment that user is accessed
Sub-key flow, according to quantum key rate, quantum key flow, the user gradation of user, type of service grade determines quantum
Quantum service control information is sent to the quantum network equipment that user is accessed by service control information.
When user needs to provide quantum key service, the quantum network equipment that user is accessed to the user sends business
Request.After the quantum network equipment receives the service request of user's transmission, determine that user is requested according to the service request
The grade of type of service, production quantity sub-services event request, quantum Service events request include the mark and the industry of user
The quantum Service events generated request is sent to the quantum service in quantum key service management system by the grade of service type
Logic management module 104.
Quantum service logic management module 104, after receiving the request of quantum Service events, first according to the quantum Service events
The mark of user in request determines all types of service customized in the user, really from quantum type of service management module 102
Whether the fixed user has customized requested type of service in quantum Service events request;If user has customized the quantum service
Requested type of service in event request then handles quantum Service events request;If user's un-customized quantum services thing
Requested type of service in part request is then refused to handle quantum Service events request.
It illustrates:Quantum key service management system receives the quantum that the quantum network equipment that user is accessed is sent
Service events are asked, and the type of service in the request of quantum Service events is encryption, obtain the use in quantum Service events request
The mark at family determines the type of service customized in the user, if the customized industry from quantum type of service management module 102
Service type includes encryption, then quantum key service management system handles quantum Service events request;If customized in the user
Type of service does not include encryption, then quantum key service management system refusal handles quantum Service events request.
Quantum service logic management module 104 determines that user has customized requested business in quantum Service events request
After type, on the one hand, obtain the grade of type of service;On the other hand, the quantum for the quantum network equipment that user is accessed is obtained
Secret-key rate and quantum key flow;In another aspect, from service contract management module 103, which is obtained according to the mark of user
The user gradation at family.
Quantum service logic management module 104, can be according to quantum key rate, quantum key flow, the user etc. of user
Grade, type of service grade determine quantum service control information, when any one above-mentioned parameter change, all may result in quantum clothes
The difference of business control information, which includes quantum key service strategy, the quantum key service strategy
Grade that the quantum key service that quantum network equipment can provide the user with can be characterized can be characterized and be provided the user with
The communication security grade of quantum key service.
Below to determining that the Scene case of quantum service control information is described in detail.
Quantum key rate, quantum key flow is normal, and when user gradation is the same, type of service higher grade, provides
The communication security higher grade of quantum key service;Type of service lower grade, the communication security of the quantum key service provided
Lower grade.
It illustrates:Quantum key rate, quantum key flow is normal, when user gradation is the same, if the industry of user's request
Service type is bank transfer, and the grade of service of bank transfer is very high, then needs using the high quantum key clothes of communication security grade
Business, for example, using the quantum key service strategy of one-time pad;It is logged in if the type of service of user's request is mailbox, mailbox is stepped on
The grade of service of record is relatively low, then needs to use the junior quantum key service of communication security, for example, only with a quantum
The encrypted quantum key service strategy of key.
Quantum key rate, quantum key flow is normal, and when type of service is consistent, user gradation is higher, the quantum provided
The communication security higher grade of cipher key service;User gradation is lower, and the communication security lower grade of the quantum key service provided.
It illustrates:Quantum key rate, quantum key flow is normal, when type of service is consistent, is used if user is government
The user gradation at family, user is very high, then needs using the high quantum key service of communication security grade, for example, using one time one
Close quantum key service strategy;If user is personal user, the user gradation of user is relatively low, then needs using communication security etc.
The lower quantum key service of grade, for example, only with the encrypted quantum key service strategy of a quantum key.
When type of service is consistent, when quantum key rate and relatively low quantum key flow, the user that first gives user gradation high
Quantum key service is provided, then quantum key service is provided to the low user of user gradation, i.e., is determined and is provided according to user gradation
The sequence of quantum key service.
For example, when quantum key rate and relatively low quantum key flow, indicate what quantum network equipment can be provided
Quantum key quantity is reduced.It is preferential to ensure that, to government, the users such as bank provide quantum key service;Again to personal user's offer amount
Sub-key service.
When user gradation is consistent, when quantum key rate and relatively low quantum key flow, the type of service of first giving grade high
Quantum key service is provided, then quantum key service is provided to the low type of service of grade.
For example, when quantum key rate and relatively low quantum key flow, indicate what quantum network equipment can be provided
Quantum key quantity is reduced.It is preferential to ensure that the types of service such as bank transfer provide quantum key service;Again to industry such as mailbox logins
Service type provides quantum key service.
It is understood that when quantum key rate and normal quantum key flow, quantum network equipment institute energy is indicated
The quantum key of offer is sufficient, at this point, the grade of user class height or type of service is high, it is high that communication security grade may be used
Quantum key service, as far as possible improve quantum key service safety;When quantum key rate and quantum key flow
When relatively low, indicate that the quantum key that quantum network equipment can be provided is insufficient, at this point, being preferably user class height or service class
The quantum Service events request that the grade of type is high provides quantum key service, that is, realizes the high Priority Service of user class, service class
The quantum key service strategy of the high Priority Service of grade of type.
Certainly, the quantum service control information that can be provided in the embodiment of the present invention is not limited only to the field described in the above
Scape example can be specifically arranged according to actual needs, as long as can be according to quantum key rate, quantum key flow, user
User gradation, type of service grade, which is realized, determines quantum service control information, and which is not described herein again.
In one example, as shown in Fig. 2, the system also includes:
Customer incident management module 201, the quantum network that the mark for storing the user is accessed with the user
The correspondence for the quantum Service events request that equipment is sent.
It is asked by the quantum Service events that the quantum network equipment that the user is accessed is sent to record each user,
One customer incident management module is set, and mark and the user of customer incident management module storage user pass through the amount that is accessed
The correspondence for the quantum Service events request that sub-network equipment is sent.So as to record the quantum clothes transmitted by each user
Business event request, realization are managed the quantum Service events of each user.
In one example, as shown in Fig. 2, the system also includes:
User service log management module 202, the mark for storing the user, pair with the user service daily record
It should be related to, the user service daily record includes that the quantum service logic management module 104 is asked according to the quantum Service events
The grade of the type of service, the user gradation of the user, the quantum key rate, the quantum key determined by asking
Flow and the quantum service control information.
Quantum key service management system takes user by the quantum that the quantum network equipment that the user is accessed is sent
Business event request is handled, and the grade of type of service, the user gradation of user, quantum key rate, quantum key are obtained
Flow and quantum service control information.The quantum Service events of user are asked in order to record quantum key service management system
The processing procedure and handling result asked request to generate a user service daily record to each quantum Service events.And user service
Log management module 202 is then the correspondence for recording user identifier and the user service daily record of user.
The user service daily record not only includes the grade of type of service, the user gradation of user, quantum key rate, quantum
The information such as the handling results such as key flow and quantum service control information can also be held including the above results in order to obtain
The contents such as capable operation realize the management to user service daily record.
In one example, as shown in Fig. 2, the system also includes:
User service reports management module 203, for generating user service report according to the quantum service control information
It is sent to the user.
After 104 production quantity sub-services of quantum service logic management module control information, in order in time by quantum Service controll
Quantum service strategy employed in information is informed to user, can generate a user service according to quantum service control information
Report, and user service report is sent to user.May include in quantum service control information in user service report
All the elements, can also only include quantum service control information in quantum service strategy.Such as:User service report management
Module 203, the content that the user service sent to user is reported is that the business that user is handled by the way of one-time pad is asked
It asks.
In practical application, it is sent to the user service report of user, is the quantum key service management system according to use
What the quantum service control information that family generates generated, it can inform the information content of the quantum key service provided the user with, just
Understand enjoyed quantum key service immediately in user.
In one example, as shown in figure 3,
The system is connected with quantum service network 301 by services management interface;
By the services management interface, from the quantum service network 301 obtain the user is connect the system
The quantum key rate and quantum key flow of the quantum network equipment entered.
Quantum key service management system is connected by services management interface with quantum service network 301.Quantum service network
Network 301 includes multiple quantum network equipment, and each user has the quantum network equipment that the user is accessed.Quantum key takes
Management system of being engaged in can obtain the quantum network that user is accessed and set by services management interface, from quantum service network 301
Standby quantum key rate and quantum key flow.I.e. quantum key service management system passes through clothes with quantum service network 301
Business management interface carries out data interaction.
In one example, as shown in figure 3,
The system is connected with quantum business management system 302 by service management interface;
The system is received customer attribute information and is updated by the service management interface, the user property letter
Breath includes quantum network equipment that the user is accessed, the type of service customized in the user, what the user was signed
Any one or more in contract.
Quantum key service management system is connected by service management interface with quantum business management system 302.Quantum industry
Management system 302 of being engaged in manages the newly-increased and modification of customer attribute information.User's throughput subservice manages system 302 and updates user
Attribute information, and customer attribute information is sent to quantum key service management system, quantum key by service management interface
Service management system also synchronizes update to customer attribute information.
Under a kind of scene, after the quantum network equipment accessed of a user changes, quantum business management system
The new quantum network equipment that the mark of user and user are accessed is sent to quantum key service management system by 302, amount
Quantum network Access Management 101 in sub-key service management system finds the user's according to the mark of the user
The old quantum network equipment that the corresponding user of mark is accessed, updates the old quantum using the new quantum network equipment
The network equipment.Therefore, in quantum network Access Management 101, the mark of user is stored and new amount that user is accessed
The correspondence of sub-network equipment realizes the update to quantum network Access Management 101.
Under another scene, after the type of service customized in a user changes, quantum business management system 302 will
The mark of user and the new type of service customized in user are sent to quantum key service management system, quantum key service
Quantum type of service management module 102 in management system, according to the mark of the user, finds corresponding to the mark of the user
The user customized in old type of service, update the old type of service using the new type of service.Therefore, quantum industry
In service type management module 102, the correspondence of the mark of user and the new type of service customized in user is stored, is realized
Update to quantum type of service management module 102.
Under another scene, after the user gradation of a user changes, quantum business management system 302 is by user's
The new user gradation of mark and user are sent to quantum key service management system, in quantum key service management system
Service contract management module 103 finds the old use of the user corresponding to the mark of the user according to the mark of the user
Family grade updates the old user gradation using the new user gradation.Therefore, it in service contract management module 103, stores
The correspondence of the mark of user and the new user gradation of user realizes the update to service contract management module 103.
It, can be in each phase if not finding the old customer attribute information of the user other than above-mentioned three kinds of scenes
Increase the mark of the user and the correspondence of customer attribute information in the module answered newly.For example, in quantum network access-in management
In module 101, the correspondence for the quantum network equipment that the mark that Adds User is accessed with user, in quantum type of service pipe
It manages in module 102, the correspondence of the type of service customized in the mark to Add User and user;In service contract management module
In 103, the correspondence for the contract that the mark that Adds User is signed with user.
Fig. 4 is quantum key service management flow chart provided in an embodiment of the present invention, including:
401:The quantum Service events request that the quantum network equipment that user is accessed is sent is received, the quantum services thing
Part request includes the grade of the mark and type of service of the user.
402:The grade of type of service described in the quantum Service events request is obtained, the mark according to the user is true
The user gradation of the fixed user determines the quantum network equipment that the user is accessed according to the mark of the user, obtains
The quantum key rate and quantum key flow for the quantum network equipment that the user is accessed.
403:According to the quantum key rate, the quantum key flow, the user gradation of the user, the business
Type classification determines quantum service control information, and the quantum service control information is sent to the quantum that the user is accessed
The network equipment.
In one example, the method further includes:
User service report, which is generated, according to the quantum service control information is sent to the user.
In one example, the method further includes:
It receives customer attribute information to be updated, the customer attribute information includes the quantum network that the user is accessed
Equipment, the type of service customized in the user, any one or more in the contract that the user is signed.
Quantum key service management shown in Fig. 4 is and the method corresponding to system shown in FIG. 1, specific implementation side
Formula is similar with system shown in FIG. 1, and with reference to the description of system shown in FIG. 1, which is not described herein again.
In order to be better illustrated to technical solution provided by the present invention, Fig. 5 is to use skill provided by the present invention
The scene sequence diagram that art scheme is realized, the scene by taking cryptographic services as an example, including:
501:The quantum network equipment that user is accessed to user sends cryptographic service request.
502:Quantum network equipment is according to the cryptographic service request production quantity sub-services event request, by quantum Service events
Request is sent to quantum key service management system.
503:Quantum key service management system obtains the grade of the type of service in the quantum Service events request, root
The mark of the user in being asked according to the quantum Service events determines the user gradation of the user, obtains the user institute
The quantum key rate and quantum key flow of the quantum network equipment of access, according to the quantum key rate, the quantum
Key flow, the user gradation of the user, the type of service grade determine quantum service control information;Store the mark of user
Know the correspondence for the quantum Service events request that the quantum network equipment accessed with user is sent;Generate user service day
Will stores the correspondence of the mark and user service daily record of user;User service report is generated according to quantum service control information
It accuses.
User service daily record includes that quantum service logic management module asks identified business according to quantum Service events
The grade of type, the user gradation of user, quantum key rate, quantum key flow and quantum service control information.
504:Quantum service control information is sent to the quantum network that user is accessed by quantum key service management system
Equipment.
505:Quantum network equipment provides a user quantum cryptography service according to quantum service control information.
506:User service report is sent to user by quantum key service management system.
Scene case shown in fig. 5 be with the example corresponding to system shown in Fig. 2, shown in specific implementation and Fig. 2
System it is similar, with reference to the description of system shown in Fig. 2, which is not described herein again.
What needs to be explained here is that in the embodiment of the present invention, user refers to user terminal under normal circumstances.
The above is only a preferred embodiment of the present invention, it is noted that for the ordinary skill people of the art
For member, without departing from the principle of the present invention, it can also make several improvements and retouch, these improvements and modifications are also answered
It is considered as protection scope of the present invention.
Claims (10)
1. a kind of quantum key service management system, which is characterized in that the system comprises:
Quantum network Access Management, pair for the quantum network equipment that the mark for storing user is accessed with the user
It should be related to;
Quantum type of service management module, pair of mark and the type of service customized in the user for storing the user
It should be related to;
Service contract management module, the correspondence for the contract that the mark for storing the user is signed with the user,
The contract that the user is signed includes the user gradation of the user;
Quantum service logic management module services thing for receiving the quantum that the quantum network equipment that the user is accessed is sent
Part is asked, and the grade of the type of service in the quantum Service events request is obtained, in being asked according to the quantum Service events
The mark of the user determine the user gradation of the user, obtain the quantum for the quantum network equipment that the user is accessed
Secret-key rate and quantum key flow, according to the quantum key rate, the quantum key flow, the user etc. of the user
Grade, the type of service grade determine quantum service control information, the quantum service control information are sent to the user
The quantum network equipment accessed.
2. system according to claim 1, which is characterized in that the system also includes:
Customer incident management module, the mark for storing the user are sent with the quantum network equipment that the user is accessed
Quantum Service events request correspondence.
3. system according to claim 1, which is characterized in that the system also includes:
User service log management module, the mark for storing the user, the correspondence with the user service daily record,
The user service daily record includes the quantum service logic management module according to determined by quantum Service events request
The grade of the type of service, the user gradation of the user, the quantum key rate, the quantum key flow and institute
State quantum service control information.
4. system according to claim 1, which is characterized in that the system also includes:
User service reports management module, and institute is sent to for generating user service report according to the quantum service control information
State user.
5. system according to any one of claims 1-4, which is characterized in that
The type of service includes encryption, decryption, authentication or signature.
6. system according to any one of claims 1-4, which is characterized in that
The system is connected with quantum service network by services management interface;
The system obtains the quantum that the user is accessed by the services management interface from the quantum service network
The quantum key rate and quantum key flow of the network equipment.
7. system according to any one of claims 1-4, which is characterized in that
The system is connected with quantum business management system by service management interface;
The system is received customer attribute information and is updated by the service management interface, the customer attribute information packet
Include the quantum network equipment that the user is accessed, the type of service customized in the user, the contract that the user is signed
In any one or more.
8. a kind of quantum key service management, which is characterized in that the method includes:
Receive the quantum Service events request that the quantum network equipment that user is accessed is sent, the quantum Service events request bag
Include the mark of the user and the grade of type of service;
The grade for obtaining type of service described in the quantum Service events request, the use is determined according to the mark of the user
The user gradation at family determines the quantum network equipment that the user is accessed according to the mark of the user, obtains the user
The quantum key rate and quantum key flow of the quantum network equipment accessed;
According to the quantum key rate, the quantum key flow, the user gradation of the user, the type of service grade
Determine quantum service control information, the quantum service control information, which is sent to the quantum network that the user is accessed, to be set
It is standby.
9. according to the method described in claim 8, it is characterized in that, the method further includes:
User service report, which is generated, according to the quantum service control information is sent to the user.
10. according to the method described in claim 8-9 any one, which is characterized in that the method further includes:
It receives customer attribute information to be updated, the customer attribute information includes that the quantum network that is accessed of the user is set
It is standby, the type of service customized in the user, any one or more in the contract that the user is signed.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710294790.2A CN108809631B (en) | 2017-04-28 | 2017-04-28 | Quantum key service management system and method |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710294790.2A CN108809631B (en) | 2017-04-28 | 2017-04-28 | Quantum key service management system and method |
Publications (2)
Publication Number | Publication Date |
---|---|
CN108809631A true CN108809631A (en) | 2018-11-13 |
CN108809631B CN108809631B (en) | 2021-06-22 |
Family
ID=64069193
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710294790.2A Active CN108809631B (en) | 2017-04-28 | 2017-04-28 | Quantum key service management system and method |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN108809631B (en) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109543367A (en) * | 2018-11-14 | 2019-03-29 | 苏州科达科技股份有限公司 | Software authorization method, device and storage medium based on quantum cryptography |
CN111431623A (en) * | 2019-01-10 | 2020-07-17 | 国科量子通信网络有限公司 | Satellite-ground integrated quantum communication network capable of realizing multiple performances and functions and configuration method thereof |
CN111711517A (en) * | 2020-07-23 | 2020-09-25 | 苏州大学 | Quantum key distribution protection method and system based on service security level |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102625299A (en) * | 2012-04-23 | 2012-08-01 | 北京市大富智慧云技术有限公司 | Data transmission method, system and device |
CN103840936A (en) * | 2014-02-28 | 2014-06-04 | 山东量子科学技术研究院有限公司 | Reliable encryption transmission system and method of quantum cryptography network |
CN103916239A (en) * | 2014-04-09 | 2014-07-09 | 长春大学 | Quantum secret communication gateway system for financial security network |
CN104486316A (en) * | 2014-12-08 | 2015-04-01 | 国家电网公司 | Quantum key classification providing method for improving electric power data transmission security |
-
2017
- 2017-04-28 CN CN201710294790.2A patent/CN108809631B/en active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102625299A (en) * | 2012-04-23 | 2012-08-01 | 北京市大富智慧云技术有限公司 | Data transmission method, system and device |
CN103840936A (en) * | 2014-02-28 | 2014-06-04 | 山东量子科学技术研究院有限公司 | Reliable encryption transmission system and method of quantum cryptography network |
CN103916239A (en) * | 2014-04-09 | 2014-07-09 | 长春大学 | Quantum secret communication gateway system for financial security network |
CN104486316A (en) * | 2014-12-08 | 2015-04-01 | 国家电网公司 | Quantum key classification providing method for improving electric power data transmission security |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109543367A (en) * | 2018-11-14 | 2019-03-29 | 苏州科达科技股份有限公司 | Software authorization method, device and storage medium based on quantum cryptography |
CN109543367B (en) * | 2018-11-14 | 2020-11-10 | 苏州科达科技股份有限公司 | Quantum encryption-based software authorization method and device and storage medium |
CN111431623A (en) * | 2019-01-10 | 2020-07-17 | 国科量子通信网络有限公司 | Satellite-ground integrated quantum communication network capable of realizing multiple performances and functions and configuration method thereof |
CN111711517A (en) * | 2020-07-23 | 2020-09-25 | 苏州大学 | Quantum key distribution protection method and system based on service security level |
Also Published As
Publication number | Publication date |
---|---|
CN108809631B (en) | 2021-06-22 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10853517B2 (en) | Method for handling privacy data | |
US9674156B2 (en) | Event-triggered release through third party of pre-encrypted digital data from data owner to data assignee | |
US8799981B2 (en) | Privacy protection system | |
CN109768987A (en) | A kind of storage of data file security privacy and sharing method based on block chain | |
US7457848B2 (en) | Over-network resource distribution system and mutual authentication system | |
US7657035B2 (en) | Encryption communication method and system | |
CN109144961A (en) | Authority sharing method and device | |
CN113508563A (en) | Block chain based secure email system | |
CN106961451A (en) | Method for authenticating, right discriminating system, fringe node and authentication server in CDN | |
US20200320178A1 (en) | Digital rights management authorization token pairing | |
JP2005517348A (en) | A secure electronic messaging system that requires a key search to derive a decryption key | |
US20080098227A1 (en) | Method of enabling secure transfer of a package of information | |
CN104662839B (en) | The link identification in multiple domains | |
CN101720071A (en) | Short message two-stage encryption transmission and secure storage method based on safety SIM card | |
US20180115535A1 (en) | Blind En/decryption for Multiple Clients Using a Single Key Pair | |
KR102015386B1 (en) | Method for certifying the sending of electronic mail | |
CN115567210A (en) | Method and system for realizing zero trust access by quantum key distribution | |
CN114662147B (en) | Private information retrieval method and system suitable for large-scale database | |
CN108809631A (en) | A kind of quantum key service management system and method | |
CN101953114A (en) | System and method for multiparty billing of network services | |
JP4646691B2 (en) | Encrypted communication system, secret key issuing device, and program | |
KR102413497B1 (en) | Systems and methods for secure electronic data transmission | |
CN100583756C (en) | Method for realizing safety communication between user equipment and network service application entity | |
Joseph et al. | Protecting information stored inside the cloud with A new CCA-EBO protocol designed on hive technology | |
CN107547570A (en) | A kind of data safety service platform and data safe transmission method |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |