CN108809631A - A kind of quantum key service management system and method - Google Patents

A kind of quantum key service management system and method Download PDF

Info

Publication number
CN108809631A
CN108809631A CN201710294790.2A CN201710294790A CN108809631A CN 108809631 A CN108809631 A CN 108809631A CN 201710294790 A CN201710294790 A CN 201710294790A CN 108809631 A CN108809631 A CN 108809631A
Authority
CN
China
Prior art keywords
user
quantum
service
quantum key
type
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201710294790.2A
Other languages
Chinese (zh)
Other versions
CN108809631B (en
Inventor
陈洁容
翟广华
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Guangdong State Shield Quantum Technology Co Ltd
Original Assignee
Guangdong State Shield Quantum Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Guangdong State Shield Quantum Technology Co Ltd filed Critical Guangdong State Shield Quantum Technology Co Ltd
Priority to CN201710294790.2A priority Critical patent/CN108809631B/en
Publication of CN108809631A publication Critical patent/CN108809631A/en
Application granted granted Critical
Publication of CN108809631B publication Critical patent/CN108809631B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0852Quantum cryptography
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/105Multiple levels of security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general

Abstract

An embodiment of the present invention provides quantum key service management system and methods, quantum network Access Management, obtain the grade of type of service described in the quantum Service events request, the user gradation of user is determined according to the mark of user, obtain the quantum key rate and quantum key flow of the quantum network equipment that user is accessed, according to quantum key rate, quantum key flow, the user gradation of user, type of service grade determines quantum service control information, and quantum service control information is sent to the quantum network equipment that user is accessed.When quantum key rate, quantum key flow, the user gradation of user, when type of service grade difference, it can determine different quantum service control informations, the quantum service control information can control quantum network equipment and provide the user with the quantum key service of different communication security grades, and then meet the demand of the quantum key service under different grades of user and different business scene to different communication safe class.

Description

A kind of quantum key service management system and method
Technical field
The present invention relates to fields of communication technology, more particularly to a kind of quantum key service management system and method.
Background technology
With the development of Internet technology and the communication technology, the network transmission of data can be realized by internet, in turn Improve the timeliness of various businesses response.When being transmitted in internet in order to avoid data, is intercepted and captured or is distorted by illegal equipment, It needs that the data of transmission are encrypted.
Demand due to different types of user to communication security grade is different, such as:Government, army class user is to communication Safe class it is more demanding, requirement of the personal user to communication security grade is relatively low;It is different again or even if the same user Demand under business scenario to communication security grade is different, such as:Personal user is under Internet bank's transferred account service scene, to logical Believe the more demanding of safe class, for personal user under instant session service scene, the requirement to communication security grade is relatively low.
Invention content
Present invention solves the technical problem that being to provide a kind of quantum key service management system and method, so as to root According to different user gradations and different type of service grades, different quantum service control informations is generated, is realized different The quantum key service of communication security grade.
For this purpose, the technical solution that the present invention solves technical problem is:
A kind of quantum key service management system, the system comprises:
Quantum network Access Management, the quantum network equipment that the mark for storing user is accessed with the user Correspondence;
Quantum type of service management module, the mark for storing the user and the type of service customized in the user Correspondence;
Service contract management module, the corresponding pass of mark and the contract that the user is signed for storing the user System, the contract that the user is signed includes the user gradation of the user;
Quantum service logic management module, the quantum clothes sent for receiving the quantum network equipment that the user is accessed Business event request obtains the grade of the type of service in the quantum Service events request, is asked according to the quantum Service events The mark of the user in asking determines the user gradation of the user, obtains the quantum network equipment that the user is accessed Quantum key rate and quantum key flow, according to the quantum key rate, the quantum key flow, the use of the user Family grade, the type of service grade determine quantum service control information, the quantum service control information are sent to described The quantum network equipment that user is accessed.
In one example, the system also includes:
Customer incident management module, the quantum network equipment that the mark for storing the user is accessed with the user The correspondence of the quantum Service events request of transmission.
In one example, the system also includes:
User service log management module, the mark for storing the user are corresponding with the user service daily record Relationship, the user service daily record include that the quantum service logic management module is true according to quantum Service events request institute The grade of the fixed type of service, the user gradation of the user, the quantum key rate, the quantum key flow with And the quantum service control information.
In one example, the system also includes:
User service reports management module, is sent for generating user service report according to the quantum service control information To the user.
In one example,
The type of service includes encryption, decryption, authentication or signature.
In one example,
The system is connected with quantum service network by services management interface;
The system obtains what the user was accessed by the services management interface from the quantum service network The quantum key rate and quantum key flow of quantum network equipment.
In one example,
The system is connected with quantum business management system by service management interface;
The system is received customer attribute information and is updated by the service management interface, the user property letter Breath includes quantum network equipment that the user is accessed, the type of service customized in the user, what the user was signed Any one or more in contract.
A kind of quantum key service management, the method includes:
The quantum Service events request that the quantum network equipment that user is accessed is sent is received, the quantum Service events are asked Seek the grade of mark and type of service including the user;
The grade for obtaining type of service described in the quantum Service events request, institute is determined according to the mark of the user The user gradation for stating user determines the quantum network equipment that the user is accessed, described in acquisition according to the mark of the user The quantum key rate and quantum key flow for the quantum network equipment that user is accessed;
According to the quantum key rate, the quantum key flow, the user gradation of the user, the type of service Grade determines quantum service control information, and the quantum service control information is sent to the quantum network that the user is accessed Equipment.
In one example, the method further includes:
User service report, which is generated, according to the quantum service control information is sent to the user.
In one example, the method further includes:
It receives customer attribute information to be updated, the customer attribute information includes the quantum network that the user is accessed Equipment, the type of service customized in the user, any one or more in the contract that the user is signed.
According to the above-mentioned technical solution, the method have the advantages that:
An embodiment of the present invention provides a kind of quantum key service management system and methods, including:Quantum network access tube Module is managed, the correspondence for the quantum network equipment that the mark for storing user is accessed with user;Quantum type of service pipe Manage module, the correspondence of the type of service customized in mark and user for storing user;Service contract management module is used In the correspondence for the contract that the mark of storage user is signed with user, the contract that user is signed includes the user etc. of user Grade;Quantum service logic management module is asked for receiving the quantum Service events that the quantum network equipment that user is accessed is sent It asks, obtains the grade of type of service described in the quantum Service events request, the user of user is determined according to the mark of user Grade obtains the quantum key rate and quantum key flow of the quantum network equipment that user is accessed, according to quantum key speed Rate, quantum key flow, the user gradation of user, type of service grade determine quantum service control information, and quantum service is controlled Information processed is sent to the quantum network equipment that user is accessed.As quantum key rate, quantum key flow, the user etc. of user Grade when type of service grade difference, can determine different quantum service control informations, which can control Quantum network equipment processed provides the user with the quantum key service of different communication security grades, and then meets different grades of use To the demand of the quantum key service of different communication safe class under family and different business scene.
Description of the drawings
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, to embodiment or will show below There is attached drawing needed in technology description to be briefly described, it should be apparent that, the accompanying drawings in the following description is only this Some embodiments of invention for those of ordinary skill in the art without creative efforts, can be with Obtain other attached drawings according to these attached drawings.
Fig. 1 is one exemplary construction schematic diagram of quantum key service management system provided in an embodiment of the present invention;
Fig. 2 is another exemplary construction schematic diagram of quantum key service management system provided in an embodiment of the present invention;
Fig. 3 is quantum key service management system yet another embodiment structural schematic diagram provided in an embodiment of the present invention;
Fig. 4 is quantum key service management flow chart provided in an embodiment of the present invention;
Fig. 5 is quantum key service management scene sequence diagram provided in an embodiment of the present invention.
Specific implementation mode
Different user grade is given in order to provide, different business scene provides the quantum key clothes of different communication security grades The implementation of business, an embodiment of the present invention provides a kind of quantum key service management system and methods, below in conjunction with specification Preferred embodiment of the present invention will be described for attached drawing, it should be understood that preferred embodiment described herein be merely to illustrate and It explains the present invention, is not intended to limit the present invention.And in the absence of conflict, in the embodiment and embodiment in the application Feature can be combined with each other.
In practical applications, the demand due to different types of user to communication security grade is different, even if same type User, the demand under different business scene to communication security grade is also different.It is understood that communication security grade is got over The quantity of height, the quantum key needed for quantum key service provided also can be more.In order to avoid the waste to quantum key, Need the quantum key service to different types of user and different business scene offer different communication safe class.Below Embodiment provided by the invention is described in detail.
Fig. 1 is quantum key service management system structural schematic diagram provided in an embodiment of the present invention, including:
Quantum network Access Management 101, the quantum network equipment that the mark for storing user is accessed with user Correspondence.
Quantum key service enterprise can provide a kind of quantum network equipment that user can access, can also provide more The quantum network equipment that kind user can access.In practical applications, which includes quantum key distribution equipment, Quantum key management equipment, quantum security server and quantum key storage terminal etc. are a variety of.
When enterprise is capable of providing the quantum network equipment that a variety of users can access, user can according to actual needs, Select the quantum network equipment to be accessed.The quantum network equipment that user is accessed can give user according to the request of user Quantum key service is provided.
After user chooses the quantum network equipment to be accessed, which can store The mark of the user, the correspondence between the quantum network equipment accessed with the user.Therefore, quantum network access-in management Module 101 at least stores the correspondence between the network equipment accessed there are one user and the user.Under normal circumstances, it measures Sub-network Access Management 101 is stored with the corresponding pass between the network equipment that multiple users and each user are accessed System.
Quantum type of service management module 102, pair of the type of service customized in mark and user for storing user It should be related to.
Quantum key service enterprise can also provide multiple business type, each type of service corresponds to a kind of quantum key Service.Such as:Encryption, provides the service that data are encrypted using quantum key;Decryption, is provided using quantum key logarithm According to the service being decrypted;Authentication provides the function that authentication is carried out using quantum key;Signature is provided using amount Sub-key realizes the function of digital signature.
User can according to actual needs, to the type of service needed for the customization of quantum key service enterprise.For example, user can Only to customize the quantum key service of encryption and decryption, user can only customize the quantum key service of authentication, Yong Huye Can only custom signatures quantum key service, user can also customize all business being capable of providing of quantum key service enterprise Type.
After the good required type of service of user's customization in advance, quantum type of service management module 102 is for storing the user Mark, the correspondence with the type of service customized in the user.Therefore, quantum type of service management module 102 is at least deposited There are one the correspondences of user and the type of service customized in the user for storage.Under normal circumstances, quantum type of service manages mould Block 102 is stored with the correspondence of the type of service customized in multiple users and each user.Quantum key service enterprise is only The quantum key service that the customized type of service can be provided the user with, cannot provide the type of service of user's un-customized Quantum key service.It illustrates:If a user has only customized the quantum key service of encryption and decryption, the quantum is close Key service enterprise cannot give the user quantum key service for providing signature.
Same type of service, under different business scenarios, the type of service grade of the type of service is different, type of service Higher grade, and the communication security higher grade of required quantum key service;Type of service lower grade, required quantum key The communication security lower grade of service.Such as:When type of service is encryption, when business scenario is bank transfer, required industry Service type is higher ranked, needs to configure the high quantum key service of communication security grade;When business scenario logs in for mailbox, institute The type of service grade needed is relatively low, needs to configure the low quantum key service of communication security grade.
Service contract management module 103, the correspondence for the contract that the mark for storing user is signed with user, is used The contract that family is signed includes the user gradation of user.
Quantum service logic management module 104, the quantum clothes sent for receiving the quantum network equipment that user is accessed Business event request obtains the grade of the type of service in the quantum Service events request, in being asked according to quantum Service events The mark of user determine the user gradation of user, obtain the quantum key rate and amount of quantum network equipment that user is accessed Sub-key flow, according to quantum key rate, quantum key flow, the user gradation of user, type of service grade determines quantum Quantum service control information is sent to the quantum network equipment that user is accessed by service control information.
When user needs to provide quantum key service, the quantum network equipment that user is accessed to the user sends business Request.After the quantum network equipment receives the service request of user's transmission, determine that user is requested according to the service request The grade of type of service, production quantity sub-services event request, quantum Service events request include the mark and the industry of user The quantum Service events generated request is sent to the quantum service in quantum key service management system by the grade of service type Logic management module 104.
Quantum service logic management module 104, after receiving the request of quantum Service events, first according to the quantum Service events The mark of user in request determines all types of service customized in the user, really from quantum type of service management module 102 Whether the fixed user has customized requested type of service in quantum Service events request;If user has customized the quantum service Requested type of service in event request then handles quantum Service events request;If user's un-customized quantum services thing Requested type of service in part request is then refused to handle quantum Service events request.
It illustrates:Quantum key service management system receives the quantum that the quantum network equipment that user is accessed is sent Service events are asked, and the type of service in the request of quantum Service events is encryption, obtain the use in quantum Service events request The mark at family determines the type of service customized in the user, if the customized industry from quantum type of service management module 102 Service type includes encryption, then quantum key service management system handles quantum Service events request;If customized in the user Type of service does not include encryption, then quantum key service management system refusal handles quantum Service events request.
Quantum service logic management module 104 determines that user has customized requested business in quantum Service events request After type, on the one hand, obtain the grade of type of service;On the other hand, the quantum for the quantum network equipment that user is accessed is obtained Secret-key rate and quantum key flow;In another aspect, from service contract management module 103, which is obtained according to the mark of user The user gradation at family.
Quantum service logic management module 104, can be according to quantum key rate, quantum key flow, the user etc. of user Grade, type of service grade determine quantum service control information, when any one above-mentioned parameter change, all may result in quantum clothes The difference of business control information, which includes quantum key service strategy, the quantum key service strategy Grade that the quantum key service that quantum network equipment can provide the user with can be characterized can be characterized and be provided the user with The communication security grade of quantum key service.
Below to determining that the Scene case of quantum service control information is described in detail.
Quantum key rate, quantum key flow is normal, and when user gradation is the same, type of service higher grade, provides The communication security higher grade of quantum key service;Type of service lower grade, the communication security of the quantum key service provided Lower grade.
It illustrates:Quantum key rate, quantum key flow is normal, when user gradation is the same, if the industry of user's request Service type is bank transfer, and the grade of service of bank transfer is very high, then needs using the high quantum key clothes of communication security grade Business, for example, using the quantum key service strategy of one-time pad;It is logged in if the type of service of user's request is mailbox, mailbox is stepped on The grade of service of record is relatively low, then needs to use the junior quantum key service of communication security, for example, only with a quantum The encrypted quantum key service strategy of key.
Quantum key rate, quantum key flow is normal, and when type of service is consistent, user gradation is higher, the quantum provided The communication security higher grade of cipher key service;User gradation is lower, and the communication security lower grade of the quantum key service provided.
It illustrates:Quantum key rate, quantum key flow is normal, when type of service is consistent, is used if user is government The user gradation at family, user is very high, then needs using the high quantum key service of communication security grade, for example, using one time one Close quantum key service strategy;If user is personal user, the user gradation of user is relatively low, then needs using communication security etc. The lower quantum key service of grade, for example, only with the encrypted quantum key service strategy of a quantum key.
When type of service is consistent, when quantum key rate and relatively low quantum key flow, the user that first gives user gradation high Quantum key service is provided, then quantum key service is provided to the low user of user gradation, i.e., is determined and is provided according to user gradation The sequence of quantum key service.
For example, when quantum key rate and relatively low quantum key flow, indicate what quantum network equipment can be provided Quantum key quantity is reduced.It is preferential to ensure that, to government, the users such as bank provide quantum key service;Again to personal user's offer amount Sub-key service.
When user gradation is consistent, when quantum key rate and relatively low quantum key flow, the type of service of first giving grade high Quantum key service is provided, then quantum key service is provided to the low type of service of grade.
For example, when quantum key rate and relatively low quantum key flow, indicate what quantum network equipment can be provided Quantum key quantity is reduced.It is preferential to ensure that the types of service such as bank transfer provide quantum key service;Again to industry such as mailbox logins Service type provides quantum key service.
It is understood that when quantum key rate and normal quantum key flow, quantum network equipment institute energy is indicated The quantum key of offer is sufficient, at this point, the grade of user class height or type of service is high, it is high that communication security grade may be used Quantum key service, as far as possible improve quantum key service safety;When quantum key rate and quantum key flow When relatively low, indicate that the quantum key that quantum network equipment can be provided is insufficient, at this point, being preferably user class height or service class The quantum Service events request that the grade of type is high provides quantum key service, that is, realizes the high Priority Service of user class, service class The quantum key service strategy of the high Priority Service of grade of type.
Certainly, the quantum service control information that can be provided in the embodiment of the present invention is not limited only to the field described in the above Scape example can be specifically arranged according to actual needs, as long as can be according to quantum key rate, quantum key flow, user User gradation, type of service grade, which is realized, determines quantum service control information, and which is not described herein again.
In one example, as shown in Fig. 2, the system also includes:
Customer incident management module 201, the quantum network that the mark for storing the user is accessed with the user The correspondence for the quantum Service events request that equipment is sent.
It is asked by the quantum Service events that the quantum network equipment that the user is accessed is sent to record each user, One customer incident management module is set, and mark and the user of customer incident management module storage user pass through the amount that is accessed The correspondence for the quantum Service events request that sub-network equipment is sent.So as to record the quantum clothes transmitted by each user Business event request, realization are managed the quantum Service events of each user.
In one example, as shown in Fig. 2, the system also includes:
User service log management module 202, the mark for storing the user, pair with the user service daily record It should be related to, the user service daily record includes that the quantum service logic management module 104 is asked according to the quantum Service events The grade of the type of service, the user gradation of the user, the quantum key rate, the quantum key determined by asking Flow and the quantum service control information.
Quantum key service management system takes user by the quantum that the quantum network equipment that the user is accessed is sent Business event request is handled, and the grade of type of service, the user gradation of user, quantum key rate, quantum key are obtained Flow and quantum service control information.The quantum Service events of user are asked in order to record quantum key service management system The processing procedure and handling result asked request to generate a user service daily record to each quantum Service events.And user service Log management module 202 is then the correspondence for recording user identifier and the user service daily record of user.
The user service daily record not only includes the grade of type of service, the user gradation of user, quantum key rate, quantum The information such as the handling results such as key flow and quantum service control information can also be held including the above results in order to obtain The contents such as capable operation realize the management to user service daily record.
In one example, as shown in Fig. 2, the system also includes:
User service reports management module 203, for generating user service report according to the quantum service control information It is sent to the user.
After 104 production quantity sub-services of quantum service logic management module control information, in order in time by quantum Service controll Quantum service strategy employed in information is informed to user, can generate a user service according to quantum service control information Report, and user service report is sent to user.May include in quantum service control information in user service report All the elements, can also only include quantum service control information in quantum service strategy.Such as:User service report management Module 203, the content that the user service sent to user is reported is that the business that user is handled by the way of one-time pad is asked It asks.
In practical application, it is sent to the user service report of user, is the quantum key service management system according to use What the quantum service control information that family generates generated, it can inform the information content of the quantum key service provided the user with, just Understand enjoyed quantum key service immediately in user.
In one example, as shown in figure 3,
The system is connected with quantum service network 301 by services management interface;
By the services management interface, from the quantum service network 301 obtain the user is connect the system The quantum key rate and quantum key flow of the quantum network equipment entered.
Quantum key service management system is connected by services management interface with quantum service network 301.Quantum service network Network 301 includes multiple quantum network equipment, and each user has the quantum network equipment that the user is accessed.Quantum key takes Management system of being engaged in can obtain the quantum network that user is accessed and set by services management interface, from quantum service network 301 Standby quantum key rate and quantum key flow.I.e. quantum key service management system passes through clothes with quantum service network 301 Business management interface carries out data interaction.
In one example, as shown in figure 3,
The system is connected with quantum business management system 302 by service management interface;
The system is received customer attribute information and is updated by the service management interface, the user property letter Breath includes quantum network equipment that the user is accessed, the type of service customized in the user, what the user was signed Any one or more in contract.
Quantum key service management system is connected by service management interface with quantum business management system 302.Quantum industry Management system 302 of being engaged in manages the newly-increased and modification of customer attribute information.User's throughput subservice manages system 302 and updates user Attribute information, and customer attribute information is sent to quantum key service management system, quantum key by service management interface Service management system also synchronizes update to customer attribute information.
Under a kind of scene, after the quantum network equipment accessed of a user changes, quantum business management system The new quantum network equipment that the mark of user and user are accessed is sent to quantum key service management system by 302, amount Quantum network Access Management 101 in sub-key service management system finds the user's according to the mark of the user The old quantum network equipment that the corresponding user of mark is accessed, updates the old quantum using the new quantum network equipment The network equipment.Therefore, in quantum network Access Management 101, the mark of user is stored and new amount that user is accessed The correspondence of sub-network equipment realizes the update to quantum network Access Management 101.
Under another scene, after the type of service customized in a user changes, quantum business management system 302 will The mark of user and the new type of service customized in user are sent to quantum key service management system, quantum key service Quantum type of service management module 102 in management system, according to the mark of the user, finds corresponding to the mark of the user The user customized in old type of service, update the old type of service using the new type of service.Therefore, quantum industry In service type management module 102, the correspondence of the mark of user and the new type of service customized in user is stored, is realized Update to quantum type of service management module 102.
Under another scene, after the user gradation of a user changes, quantum business management system 302 is by user's The new user gradation of mark and user are sent to quantum key service management system, in quantum key service management system Service contract management module 103 finds the old use of the user corresponding to the mark of the user according to the mark of the user Family grade updates the old user gradation using the new user gradation.Therefore, it in service contract management module 103, stores The correspondence of the mark of user and the new user gradation of user realizes the update to service contract management module 103.
It, can be in each phase if not finding the old customer attribute information of the user other than above-mentioned three kinds of scenes Increase the mark of the user and the correspondence of customer attribute information in the module answered newly.For example, in quantum network access-in management In module 101, the correspondence for the quantum network equipment that the mark that Adds User is accessed with user, in quantum type of service pipe It manages in module 102, the correspondence of the type of service customized in the mark to Add User and user;In service contract management module In 103, the correspondence for the contract that the mark that Adds User is signed with user.
Fig. 4 is quantum key service management flow chart provided in an embodiment of the present invention, including:
401:The quantum Service events request that the quantum network equipment that user is accessed is sent is received, the quantum services thing Part request includes the grade of the mark and type of service of the user.
402:The grade of type of service described in the quantum Service events request is obtained, the mark according to the user is true The user gradation of the fixed user determines the quantum network equipment that the user is accessed according to the mark of the user, obtains The quantum key rate and quantum key flow for the quantum network equipment that the user is accessed.
403:According to the quantum key rate, the quantum key flow, the user gradation of the user, the business Type classification determines quantum service control information, and the quantum service control information is sent to the quantum that the user is accessed The network equipment.
In one example, the method further includes:
User service report, which is generated, according to the quantum service control information is sent to the user.
In one example, the method further includes:
It receives customer attribute information to be updated, the customer attribute information includes the quantum network that the user is accessed Equipment, the type of service customized in the user, any one or more in the contract that the user is signed.
Quantum key service management shown in Fig. 4 is and the method corresponding to system shown in FIG. 1, specific implementation side Formula is similar with system shown in FIG. 1, and with reference to the description of system shown in FIG. 1, which is not described herein again.
In order to be better illustrated to technical solution provided by the present invention, Fig. 5 is to use skill provided by the present invention The scene sequence diagram that art scheme is realized, the scene by taking cryptographic services as an example, including:
501:The quantum network equipment that user is accessed to user sends cryptographic service request.
502:Quantum network equipment is according to the cryptographic service request production quantity sub-services event request, by quantum Service events Request is sent to quantum key service management system.
503:Quantum key service management system obtains the grade of the type of service in the quantum Service events request, root The mark of the user in being asked according to the quantum Service events determines the user gradation of the user, obtains the user institute The quantum key rate and quantum key flow of the quantum network equipment of access, according to the quantum key rate, the quantum Key flow, the user gradation of the user, the type of service grade determine quantum service control information;Store the mark of user Know the correspondence for the quantum Service events request that the quantum network equipment accessed with user is sent;Generate user service day Will stores the correspondence of the mark and user service daily record of user;User service report is generated according to quantum service control information It accuses.
User service daily record includes that quantum service logic management module asks identified business according to quantum Service events The grade of type, the user gradation of user, quantum key rate, quantum key flow and quantum service control information.
504:Quantum service control information is sent to the quantum network that user is accessed by quantum key service management system Equipment.
505:Quantum network equipment provides a user quantum cryptography service according to quantum service control information.
506:User service report is sent to user by quantum key service management system.
Scene case shown in fig. 5 be with the example corresponding to system shown in Fig. 2, shown in specific implementation and Fig. 2 System it is similar, with reference to the description of system shown in Fig. 2, which is not described herein again.
What needs to be explained here is that in the embodiment of the present invention, user refers to user terminal under normal circumstances.
The above is only a preferred embodiment of the present invention, it is noted that for the ordinary skill people of the art For member, without departing from the principle of the present invention, it can also make several improvements and retouch, these improvements and modifications are also answered It is considered as protection scope of the present invention.

Claims (10)

1. a kind of quantum key service management system, which is characterized in that the system comprises:
Quantum network Access Management, pair for the quantum network equipment that the mark for storing user is accessed with the user It should be related to;
Quantum type of service management module, pair of mark and the type of service customized in the user for storing the user It should be related to;
Service contract management module, the correspondence for the contract that the mark for storing the user is signed with the user, The contract that the user is signed includes the user gradation of the user;
Quantum service logic management module services thing for receiving the quantum that the quantum network equipment that the user is accessed is sent Part is asked, and the grade of the type of service in the quantum Service events request is obtained, in being asked according to the quantum Service events The mark of the user determine the user gradation of the user, obtain the quantum for the quantum network equipment that the user is accessed Secret-key rate and quantum key flow, according to the quantum key rate, the quantum key flow, the user etc. of the user Grade, the type of service grade determine quantum service control information, the quantum service control information are sent to the user The quantum network equipment accessed.
2. system according to claim 1, which is characterized in that the system also includes:
Customer incident management module, the mark for storing the user are sent with the quantum network equipment that the user is accessed Quantum Service events request correspondence.
3. system according to claim 1, which is characterized in that the system also includes:
User service log management module, the mark for storing the user, the correspondence with the user service daily record, The user service daily record includes the quantum service logic management module according to determined by quantum Service events request The grade of the type of service, the user gradation of the user, the quantum key rate, the quantum key flow and institute State quantum service control information.
4. system according to claim 1, which is characterized in that the system also includes:
User service reports management module, and institute is sent to for generating user service report according to the quantum service control information State user.
5. system according to any one of claims 1-4, which is characterized in that
The type of service includes encryption, decryption, authentication or signature.
6. system according to any one of claims 1-4, which is characterized in that
The system is connected with quantum service network by services management interface;
The system obtains the quantum that the user is accessed by the services management interface from the quantum service network The quantum key rate and quantum key flow of the network equipment.
7. system according to any one of claims 1-4, which is characterized in that
The system is connected with quantum business management system by service management interface;
The system is received customer attribute information and is updated by the service management interface, the customer attribute information packet Include the quantum network equipment that the user is accessed, the type of service customized in the user, the contract that the user is signed In any one or more.
8. a kind of quantum key service management, which is characterized in that the method includes:
Receive the quantum Service events request that the quantum network equipment that user is accessed is sent, the quantum Service events request bag Include the mark of the user and the grade of type of service;
The grade for obtaining type of service described in the quantum Service events request, the use is determined according to the mark of the user The user gradation at family determines the quantum network equipment that the user is accessed according to the mark of the user, obtains the user The quantum key rate and quantum key flow of the quantum network equipment accessed;
According to the quantum key rate, the quantum key flow, the user gradation of the user, the type of service grade Determine quantum service control information, the quantum service control information, which is sent to the quantum network that the user is accessed, to be set It is standby.
9. according to the method described in claim 8, it is characterized in that, the method further includes:
User service report, which is generated, according to the quantum service control information is sent to the user.
10. according to the method described in claim 8-9 any one, which is characterized in that the method further includes:
It receives customer attribute information to be updated, the customer attribute information includes that the quantum network that is accessed of the user is set It is standby, the type of service customized in the user, any one or more in the contract that the user is signed.
CN201710294790.2A 2017-04-28 2017-04-28 Quantum key service management system and method Active CN108809631B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710294790.2A CN108809631B (en) 2017-04-28 2017-04-28 Quantum key service management system and method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710294790.2A CN108809631B (en) 2017-04-28 2017-04-28 Quantum key service management system and method

Publications (2)

Publication Number Publication Date
CN108809631A true CN108809631A (en) 2018-11-13
CN108809631B CN108809631B (en) 2021-06-22

Family

ID=64069193

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710294790.2A Active CN108809631B (en) 2017-04-28 2017-04-28 Quantum key service management system and method

Country Status (1)

Country Link
CN (1) CN108809631B (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109543367A (en) * 2018-11-14 2019-03-29 苏州科达科技股份有限公司 Software authorization method, device and storage medium based on quantum cryptography
CN111431623A (en) * 2019-01-10 2020-07-17 国科量子通信网络有限公司 Satellite-ground integrated quantum communication network capable of realizing multiple performances and functions and configuration method thereof
CN111711517A (en) * 2020-07-23 2020-09-25 苏州大学 Quantum key distribution protection method and system based on service security level

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102625299A (en) * 2012-04-23 2012-08-01 北京市大富智慧云技术有限公司 Data transmission method, system and device
CN103840936A (en) * 2014-02-28 2014-06-04 山东量子科学技术研究院有限公司 Reliable encryption transmission system and method of quantum cryptography network
CN103916239A (en) * 2014-04-09 2014-07-09 长春大学 Quantum secret communication gateway system for financial security network
CN104486316A (en) * 2014-12-08 2015-04-01 国家电网公司 Quantum key classification providing method for improving electric power data transmission security

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102625299A (en) * 2012-04-23 2012-08-01 北京市大富智慧云技术有限公司 Data transmission method, system and device
CN103840936A (en) * 2014-02-28 2014-06-04 山东量子科学技术研究院有限公司 Reliable encryption transmission system and method of quantum cryptography network
CN103916239A (en) * 2014-04-09 2014-07-09 长春大学 Quantum secret communication gateway system for financial security network
CN104486316A (en) * 2014-12-08 2015-04-01 国家电网公司 Quantum key classification providing method for improving electric power data transmission security

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109543367A (en) * 2018-11-14 2019-03-29 苏州科达科技股份有限公司 Software authorization method, device and storage medium based on quantum cryptography
CN109543367B (en) * 2018-11-14 2020-11-10 苏州科达科技股份有限公司 Quantum encryption-based software authorization method and device and storage medium
CN111431623A (en) * 2019-01-10 2020-07-17 国科量子通信网络有限公司 Satellite-ground integrated quantum communication network capable of realizing multiple performances and functions and configuration method thereof
CN111711517A (en) * 2020-07-23 2020-09-25 苏州大学 Quantum key distribution protection method and system based on service security level

Also Published As

Publication number Publication date
CN108809631B (en) 2021-06-22

Similar Documents

Publication Publication Date Title
US10853517B2 (en) Method for handling privacy data
US9674156B2 (en) Event-triggered release through third party of pre-encrypted digital data from data owner to data assignee
US8799981B2 (en) Privacy protection system
CN109768987A (en) A kind of storage of data file security privacy and sharing method based on block chain
US7457848B2 (en) Over-network resource distribution system and mutual authentication system
US7657035B2 (en) Encryption communication method and system
CN109144961A (en) Authority sharing method and device
CN113508563A (en) Block chain based secure email system
CN106961451A (en) Method for authenticating, right discriminating system, fringe node and authentication server in CDN
US20200320178A1 (en) Digital rights management authorization token pairing
JP2005517348A (en) A secure electronic messaging system that requires a key search to derive a decryption key
US20080098227A1 (en) Method of enabling secure transfer of a package of information
CN104662839B (en) The link identification in multiple domains
CN101720071A (en) Short message two-stage encryption transmission and secure storage method based on safety SIM card
US20180115535A1 (en) Blind En/decryption for Multiple Clients Using a Single Key Pair
KR102015386B1 (en) Method for certifying the sending of electronic mail
CN115567210A (en) Method and system for realizing zero trust access by quantum key distribution
CN114662147B (en) Private information retrieval method and system suitable for large-scale database
CN108809631A (en) A kind of quantum key service management system and method
CN101953114A (en) System and method for multiparty billing of network services
JP4646691B2 (en) Encrypted communication system, secret key issuing device, and program
KR102413497B1 (en) Systems and methods for secure electronic data transmission
CN100583756C (en) Method for realizing safety communication between user equipment and network service application entity
Joseph et al. Protecting information stored inside the cloud with A new CCA-EBO protocol designed on hive technology
CN107547570A (en) A kind of data safety service platform and data safe transmission method

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant