CN108880780B - Secret key safe distribution system and method based on chaotic synchronization public channel characteristics - Google Patents

Secret key safe distribution system and method based on chaotic synchronization public channel characteristics Download PDF

Info

Publication number
CN108880780B
CN108880780B CN201810499910.7A CN201810499910A CN108880780B CN 108880780 B CN108880780 B CN 108880780B CN 201810499910 A CN201810499910 A CN 201810499910A CN 108880780 B CN108880780 B CN 108880780B
Authority
CN
China
Prior art keywords
party
key
communication party
private key
register
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201810499910.7A
Other languages
Chinese (zh)
Other versions
CN108880780A (en
Inventor
王安帮
高华
王龙生
赵彤
郭园园
贾志伟
王云才
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Taiyuan University of Technology
Original Assignee
Taiyuan University of Technology
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Taiyuan University of Technology filed Critical Taiyuan University of Technology
Priority to CN201810499910.7A priority Critical patent/CN108880780B/en
Publication of CN108880780A publication Critical patent/CN108880780A/en
Application granted granted Critical
Publication of CN108880780B publication Critical patent/CN108880780B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/001Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using chaotic signals
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0869Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Optical Communication System (AREA)

Abstract

The invention belongs to the technical field of secret key distribution in secret communication, and relates to a safe and high-speed secret key distribution scheme, in particular to a safe and high-speed secret key distribution system and a method based on chaotic synchronization public channel characteristics, wherein the system comprises a broadband random light source, a total optical fiber coupler, a public channel, an ultrashort pulse mode-locked laser, an Alice communication party and a Bob communication party, wherein the Alice communication party comprises a first optical feedback chaotic semiconductor laser, a first optical fiber coupler, a first optical switch, a first private key module, a first register and a first secret key screener; the Bob communication party comprises a second optical feedback chaotic semiconductor laser, a second optical fiber coupler, a second optical switch, a second private key module, a second register and a second key screener; the invention has reasonable structure and ingenious design, effectively ensures the security of key distribution, and fully utilizes the bandwidth advantage of the chaotic light signal, thereby greatly improving the key distribution rate and being suitable for secret communication.

Description

Secret key safe distribution system and method based on chaotic synchronization public channel characteristics
Technical Field
The invention belongs to the technical field of secret key distribution in secret communication, and relates to a safe and high-speed secret key distribution scheme, in particular to a secret key safe distribution system and method based on chaotic synchronization public channel characteristics.
Background
Secret communication is an important condition for national security and social stability. Currently, the research focus of modern information security technology mainly focuses on the aspect of information encryption technology. The one-time pad proposed by Shannon (Shannon) is an encryption scheme which cannot be broken. This scheme indicates that if the key used to encrypt the plaintext is not shorter in length than the plaintext, is sufficiently random, and is used only once, then the communication is absolutely secure. To achieve such an absolutely secure secret communication, it is necessary to generate a large number of random keys while distributing their secrets to legitimate parties. Significant advances have been made in the generation of high-speed random keys, such as random keys in the Gbit/s range that can be generated using a physical entropy source, chaotic laser (Nature Photonics, Vol. 2, number 12, pp. 728, 732, 2008; Optics Express, Vol. 18, number 19, pp. 20360, 20368, 2010; IEEE Photonics Journal, Vol. 9, number 2, pp. 7201412-1-7201412-13, 2017). The fast random key generation technology is expected to solve the problem that secure and high-speed key distribution becomes the last technical obstacle to realizing absolute secure and secret communication.
Existing key distribution schemes are mainly divided into algorithm-based key distribution and physical layer-based key distribution.
The key distribution based on the algorithm mainly depends on the complexity of the algorithm for carrying out key distribution, and although the key distribution method has a sufficiently high distribution rate (Gbit/s), the security of the key distribution is seriously threatened along with the improvement of the processing speed of a computer and the upgrade and optimization of the algorithm. For example, the DES algorithm was broken by the supercomputer of RSA, Inc. in 1999; in 2015, the RSA algorithm was broken by the Xiuler algorithm; the AES-256 algorithm was broken by a collision attack in 2017.
The mechanism for secure key distribution based on the physical layer specifically comprises quantum key distribution and classical key distribution.
Quantum Key Distribution (QKD) is an absolutely secure key distribution method, where key information is encoded by quantum states, and any eavesdropping will interfere with the key and be discovered by both parties. But is limited by single photon loss, the relay is needed every hundred kilometers, the key negotiation rate is low, and the fastest rate distributed in the free space is 20-400bit/s (Nature photonics, vol. 11, pp. 509-.
The classical key distribution scheme mainly comprises key distribution based on short-time reciprocity of a public channel, key distribution based on an ultra-long fiber laser, key distribution based on chaotic synchronization and the like.
1. Realizing key distribution based on public channel characteristics: firstly, the characteristic that the change of the short-time reciprocity of a public noise channel has autonomous randomness is utilized, and the change is used as a physical random signal source. Then, according to the short-time reciprocity of the channel, the legal user measures the short-time consistent noise channel characteristics through the pilot signal. And the key distribution is realized by exchanging the channel characteristics into related keys through negotiation. At present, the reported key distribution rate is only 160 bits/s (Optics Express, vol. 21, number 20, pp. 23756-.
2. Key distribution based on an ultra-long fiber laser: the optical fiber communication path is considered as an oscillation cavity of the laser, reflectors with different central wavelengths are randomly selected as private keys at the front terminal and the rear terminal of the optical fiber, and then the selection condition of the reflectors is used as a secret key for distribution. Whereas the key distribution rate is only 100 bits/s (Laser & Photonics Reviews, vol. 8, number 3, pp.436-442, 2014), there is also a report that eavesdroppers can steal generated keys using "spectral measurement attacks" and thus the security of the key distribution scheme is questioned (physics. Applied physics, 1708.05230, 2017).
3. A key distribution scheme based on chaotic synchronization: under external driving, the receiver and the transmitter with close parameters can output the same chaotic waveform, namely chaotic synchronization is realized. The two parties use the private key to carry out independent random keying on the transceiver, and then the synchronous chaotic waveforms corresponding to the same private key are selected through private key exchange to generate the key, so that consistent key distribution is realized. In 2013, a project group of university of qi yu in japan Uchida realizes a key distribution rate of 64kbit/s (Optics Express, vol. 21, number 15, pp. 17869-. Recently, Uchida teaches that the topic group raises the key distribution rate to 184kbit/s (Optical Express, vol. 25, number 21, pp. 26029) and 26044, 2017 through chaotic synchronization of photonic integrated chips. However, limited by the chaotic synchronization recovery time, the distribution rate of this key distribution scheme is difficult to continue to increase.
In summary, the key distribution based on the algorithm has a problem of poor security, and the existing key distribution schemes based on the physical layer have a problem of low speed, so that it is necessary to invent a secure and high-speed key distribution technology.
Disclosure of Invention
The invention provides a key safety distribution scheme based on chaotic synchronization public channel characteristics, aiming at solving the problems of poor safety and low key distribution rate in the existing key distribution technology.
The technical scheme for solving the technical problem is as follows:
a secret key safety distribution system based on chaotic synchronization public channel characteristics comprises a broadband random light source, a total optical fiber coupler, a public channel, an ultra-short pulse mode-locked laser, an Alice communication party and a Bob communication party, wherein the Alice communication party comprises a first optical feedback chaotic semiconductor laser, a first optical fiber coupler, a first optical switch, a first private key module, a first register and a first secret key screener, the tail end of the first optical feedback chaotic semiconductor laser is connected to the head end of the first optical fiber coupler, the lower tail end of the first optical fiber coupler is connected to the head end of the first optical switch through a first optical isolator, one tail end of the first optical switch is connected to the head end of the first optical switch sequentially through a first A-party photoelectric detector, a first A-party analog-to-digital converter, a first A-party delay line group and a first A-party XOR processor, and the other tail end of the first optical switch is connected to the head end of the first register sequentially through a second A-party photoelectric detector, a first A-party analog, The second A-square analog-digital converter, the second A-square delay line group and the second A-square XOR processor are connected to the head end of a first register, the tail end of the first register is connected to the head end of a first key screener, the tail end of the first private key module is respectively connected to the voltage control end of the first optical switch and the head end of the first register, the first A-square delay line group comprises an adapter of which the head end is connected to the tail end of the first A-square analog-digital converter, the tail end of the adapter is connected in parallel with two delay lines of different lengths of which the tail ends are connected to the head end of the first A-square XOR processor, and the second A-square delay line group is similar to the first A-square delay line group; the Bob communication side second optical feedback chaotic semiconductor laser, a second optical fiber coupler, a second optical switch, a second private key module, a second register and a second key screener, wherein the tail end of the second optical feedback chaotic semiconductor laser is connected to the head end of the second optical fiber coupler, the lower tail end of the second optical fiber coupler is connected to the head end of the second optical switch through a second optical isolator, one tail end of the second optical switch is connected to the head end of the second register through a first B-side photoelectric detector, a first B-side analog-to-digital converter, a first B-side delay line group and a first B-side XOR processor in sequence, the other tail end of the second optical switch is connected to the head end of the second register through a second B-side photoelectric detector, a second B-side analog-to-digital converter, a second B-side delay line group and a second B-side XOR processor in sequence, the tail end of the second register is connected to the head end of the second key screener, the tail end of the second private key module is respectively connected to the voltage control end of the second optical switch and the head end of the second register, the first B-square delay line group comprises an adapter of which the head end is connected to the tail end of the first B-square analog-digital converter, the tail end of the adapter is connected in parallel with two delay lines of different lengths of which the tail end is connected to the head end of the first B-square exclusive or processor, and the second B-square delay line group is the same as the first B-square delay line group; the tail end of the broadband random light source is connected to the head end of a main optical fiber coupler, and the two tail ends of the main optical fiber coupler are respectively connected to the upper tail ends of the first optical fiber coupler and the second optical fiber coupler; the common channel is arranged between the ends of the first register and the second register; the ultrashort pulse mode-locked laser controls the first optical switch, the second optical switch, the first register and the second register.
A key safety distribution method of a key safety distribution system based on chaos synchronization public channel characteristics comprises the following steps;
firstly, a laser signal output by a broadband random light source is equally divided into two paths by a main optical fiber coupler and sent to a first optical fiber coupler of an Alice communication party and a second optical fiber coupler of a Bob communication party, and then the laser signal enters a first optical feedback chaotic semiconductor laser through the first optical fiber coupler and enters a second optical feedback chaotic semiconductor laser through the second optical fiber coupler;
transmitting the chaotic laser signal output by the first optical feedback chaotic semiconductor laser to a first optical switch through a first optical fiber coupler and a first optical isolator, wherein the first optical switch is randomly selected to be connected to a first A-side photoelectric detector or a second A-side photoelectric detector under the control of a first private key module; similarly, in the first optical feedback chaotic semiconductor laser, a chaotic laser signal output by the second optical feedback chaotic semiconductor laser is transmitted to a second optical switch through a second optical fiber coupler and a second optical isolator, the second optical switch is randomly selected to be connected to a first B-side photoelectric detector or a second B-side photoelectric detector under the control of a second private key module, and the first optical switch and the second optical switch perform synchronous output action under the control of the ultrashort pulse mode-locked laser;
the chaotic laser signal is converted into an electric signal through a first A-party photoelectric detector, the electric signal is converted into a digital signal through a first A-party analog-to-digital converter, the digital signal enters a first A-party XOR processor through a first A-party delay line group, the digital signal is processed by the first A-party XOR processor to generate a random code, namely a naked key RA, similarly, the Bob communication party is RB, wherein both the Alice communication party and the Bob communication party have two selectable paths, and light transmission paths behind a second A-party photoelectric detector, a first B-party photoelectric detector and a second B-party photoelectric detector are similarly arranged on the first A-party photoelectric detector;
the Alice communication party transmits the bare key RA and the random code generated by the first private key module, namely the private key PA to the first register, and the Bob communication party transmits the bare key RB and the random code generated by the second private key module, namely the private key PB to the second register;
the first register and the second register output the private key and the bare key of the Alice communication party and the Bob communication party simultaneously under the control of the ultrashort pulse mode-locked laser;
sixthly, the private key PA of the Alice communication party and the private key PB of the Bob communication party are mutually exchanged through the public channel;
the first key screener compares a private key PA of an Alice communication party with a private key PB of a Bob communication party and finds out the position of the same code between the PA and the PB, and the first key screener finds out a code corresponding to the position of the same code between the PA and the PB of the bare key RA of the Alice communication party as a key output of the Alice communication party; and the second key screener compares the private key PB of the Bob communication party with the private key PA of the Alice communication party and finds out the position of the same code between the PB and the PA, and the second key screener finds out the code corresponding to the position of the bare key RB of the Bob communication party relative to the same code between the PB and the PA and outputs the code as the key of the Bob communication party. Through the method, the keys obtained by the Alice communication party and the Bob communication party are finally consistent.
Preferably, the ultrashort pulse mode-locked laser synchronously controls the first optical switch, the second optical switch, the first register and the second register when a rising edge of a pulse arrives.
The first private key module and the second private key module are random code generators capable of sending random 0/1 digital signal codes, the first private key module regulates and controls whether the first optical switch is selectively connected with a first A-side photoelectric detector or a second A-side photoelectric detector by sending random codes, the second private key module controls the second optical switch to select a first B-side photoelectric detector or a second B-side photoelectric detector by sending random codes, the ultrashort pulse mode-locked laser controls synchronous conduction of the first optical switch and the second optical switch when the pulse rising edge of the ultrashort pulse mode-locked laser arrives, and the first key screener and the second key screener synchronously output signals when the pulse mode-locked laser arrives at the rising edge of the ultrashort pulse mode-locked laser. The first key filter and the second key filter can compare private keys PB and PA of both communication parties, and then filter bare keys RA and RB of both communication parties, and the random codes after filtering are finally output keys.
The first A-side delay line group, the second A-side delay line group, the first B-side delay line group and the second B-side delay line group respectively comprise two delay lines with different lengths, time dislocation is formed when digital signals pass through the two delay lines with different lengths, the digital signals output by the two delay lines with different lengths enter an exclusive OR processor to be subjected to exclusive OR operation processing, the setting is to increase the security of finally generated keys, and an eavesdropper has no way to directly obtain the keys even if obtaining chaotic signals, and the eavesdropper cannot know the delay time of the signals, so that the security of key distribution is enhanced.
According to the invention, a broadband random light source is used as an initial laser signal, then the initial laser signal is respectively sent to the first optical feedback chaotic semiconductor laser and the second optical feedback chaotic semiconductor laser through the total optical fiber coupler, the first optical fiber coupler and the second optical fiber coupler to generate zero delay and synchronously establish consistent noise signal characteristics, and an eavesdropper can introduce new noise in the process of stealing the signal characteristics to cause measurement errors, so that the security of key distribution is ensured. Furthermore, in the invention, different sampling quantization schemes are utilized to extract the related random numbers from the consistent noise-like oscillation waves as the secret key, and an eavesdropper cannot obtain the random sequence corresponding to the chaotic signal, thereby enhancing the security of secret key distribution. The high-speed safe key distribution system and method based on the chaotic synchronization public channel characteristics, which are disclosed by the invention, utilize the private key module to carry out random keying on the optical switch on the one hand, and generate the bare key by utilizing different sampling quantization schemes on the other hand, so that the consistent key can be obtained by comparing and screening the same private key and the corresponding bare key, the limitation of chaotic synchronization recovery time is avoided, the bandwidth advantage of chaotic laser signals is fully utilized, and the key distribution rate is greatly improved.
Compared with the prior art, the invention has the beneficial effects that:
the device has the advantages of reasonable structure and ingenious design, effectively ensures the security of key distribution, and fully utilizes the bandwidth advantage of chaotic light signals, thereby greatly improving the key distribution rate and being suitable for secret communication.
Drawings
Fig. 1 is a schematic structural diagram of a high-speed secure key distribution system based on chaotic synchronization common channel characteristics according to the present invention.
In the figure: 1-broadband random light source; 2-total fiber coupler; 3a 1-first optical feedback chaotic semiconductor laser; 3a2 — first fiber coupler; 3b 1-second optical feedback chaotic semiconductor laser; 3b2 — a second fiber coupler; 4 a-a first optical isolator; 4 b-a second optical isolator; 5a1 — first private key module; 5a2 — first optical switch; 5b1 — a second private key module; 5b2 — second optical switch; 6-ultrashort pulse mode-locked laser; 7a1 — first a-party photodetector; 7a2 — a second a-party photodetector; 7B1 — first B-side photodetector; 7B2 — a second B-party photodetector; 8a1 — first cube analog/digital converter; 8a 2-a second cube analog/digital converter; 8B1 — first B-party analog-to-digital converter; 8B 2-a second B-party analog/digital converter; 9a 1-first set of a-party delay lines; 9a 2-second set of a-party delay lines; 9B 1-first set of B-party delay lines; 9B 2-second set of B-party delay lines; 10a1 — first party a xor processor; 10a 2-second party a xor processor; 10B 1-first party B xor processor; 10B 2-a second party-B xor processor; 11 a-a first register; 11 b-a second register; 12-common channel; 13 a-a first key screener; 13 b-second key screener.
Detailed Description
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the technical solutions of the present invention will be described in detail below. It is to be understood that the described embodiments are merely exemplary of the invention, and not restrictive of the full scope of the invention. All other embodiments, which can be derived by a person skilled in the art from the examples given herein without any inventive step, are within the scope of the present invention.
Referring to fig. 1, a high-speed key distribution system and method based on the chaos synchronization common channel feature according to the present invention will now be described.
A key safety distribution system based on chaotic synchronization public channel characteristics comprises a broadband random light source 1, a total optical fiber coupler 2, a public channel 12, an ultrashort pulse mode-locked laser 6, an Alice communication party and a Bob communication party, wherein the Alice communication party comprises a first optical feedback chaotic semiconductor laser 3a1, a first optical fiber coupler 3a2, a first optical switch 5a2, a first private key module 5a1, a first register 11a and a first key screener 13a, the tail end of the first optical feedback chaotic semiconductor laser 3a1 is connected to the head end of the first optical fiber coupler 3a2, the tail end of the lower part of the first optical fiber coupler 3a2 is connected to the head end of the first optical switch 5a2 through a first optical isolator 4a, one tail end of the first optical switch 5a2 sequentially passes through a first A-side photoelectric detector 7a1, a first A-side analog/digital converter 8a1, a1 and a first key screener 13a, A first a-party delay line group 9a1 and a first a-party xor processor 10a1 are connected to the head end of a first register 11a, the other end of the first optical switch 5a2 is connected to the head end of the first register 11a through a second a-party photodetector 7a2, a second a-party analog-to-digital converter 8a2, a second a-party delay line group 9a2 and a second a-party xor processor 10a2 in sequence, the end of the first register 11a is connected to the head end of a first key screener 13a, the ends of the first private key module 5a1 are connected to the voltage control end of the first optical switch 5a2 and the head end of the first register 11a, respectively, the first a-party delay line group 9a1 includes an adapter whose head end is connected to the tail end of the first a-party analog-to-digital converter 8a1, the ends of the adapter are connected in parallel to two delay lines of unequal lengths, the head end of which is connected to the first a-party xor processor 10a1, the second group of a-party delay lines 9a2 is similar to the first group of a-party delay lines 9a 1; the Bob communication side second optical feedback chaotic semiconductor laser 3B1, the second optical fiber coupler 3B2, the second optical switch 5B2, the second private key module 5B1, the second register 11B and the second key screener 13B, the tail end of the second optical feedback chaotic semiconductor laser 3B1 is connected to the head end of the second optical fiber coupler 3B2, the lower tail end of the second optical fiber coupler 3B2 is connected to the head end of the second optical switch 5B2 through the second optical isolator 4B, one tail end of the second optical switch 5B2 is connected to the head end of the second register 11B through the first B-side photodetector 7B1, the first B-side analog-to-digital converter 8B1, the first B-side delay line group 9B1 and the first B-side exclusive or processor 10B1 in sequence, and the other tail end of the second optical switch 5B2 is connected to the head end of the second register 11B through the second B-side photodetector 7B2, the second B-side analog-to the second B-side analog-digital converter 8B/digital converter 2B 3535, A second B-party delay line group 9B2 and a second B-party xor processor 10B2 are connected to the head end of a second register 11B, the tail end of the second register 11B is connected to the head end of a second key filter 13B, the tail end of the second private key module 5B1 is connected to the voltage control end of the second optical switch 5B2 and the head end of the second register 11B, respectively, the first B-party delay line group 9B1 includes an adapter whose head end is connected to the tail end of the first B-party analog/digital converter 8B1, the tail end of the adapter is connected in parallel with two delay lines of unequal length whose tail end is connected to the head end of the first B-party xor processor 10B1, and the second B-party delay line group 9B2 is similar to the first B-party delay line group 9B 1; the tail end of the broadband random light source 1 is connected to the head end of a main optical fiber coupler 2, and the two tail ends of the main optical fiber coupler 2 are respectively connected to the upper tail ends of a first optical fiber coupler 3a2 and a second optical fiber coupler 3b 2; said common channel 12 is arranged between the ends of said first register 11a and second register 11 b; the ultrashort pulse mode-locked laser 6 controls the first optical switch 5a2, the second optical switch 5a2, the first register 11a and the second register 11 b.
A key safety distribution method of a key safety distribution system based on chaos synchronization public channel characteristics comprises the following steps;
firstly, a laser signal output by a broadband random light source 1 is equally divided into two paths through a total optical fiber coupler 2 and sent to a first optical fiber coupler 3a2 of an Alice communication party and a second optical fiber coupler 3b2 of a Bob communication party, and then the laser signal enters a first optical feedback chaotic semiconductor laser 3a1 through a first optical fiber coupler 3a2 and enters a second optical feedback chaotic semiconductor laser 3b1 through a second optical fiber coupler 3b 2;
a chaotic laser signal output by the first optical feedback chaotic semiconductor laser 3a1 is transmitted to a first optical switch 5a2 through a first optical fiber coupler 3a2 and a first optical isolator 4a, and the first optical switch 5a2 is randomly selected to be connected to a first a-side photodetector 7a1 or a second a-side photodetector 7a2 under the control of a first private key module 5a 1; similarly, in the first optical feedback chaotic semiconductor laser 3a1, the chaotic laser signal output by the second optical feedback chaotic semiconductor laser 3B1 is transmitted to the second optical switch 5B2 through the second optical fiber coupler 3B2 and the second optical isolator 4B, the second optical switch 5B2 is randomly selected to be connected to the first B-side photodetector 7B1 or the second B-side photodetector 7B2 under the control of the second private key module 5B1, and the first optical switch 5a2 and the second optical switch 5B2 perform synchronous output action under the control of the ultrashort pulse mode-locked laser 6;
the chaotic laser signal is converted into an electric signal through a first A-party photoelectric detector 7a1, the electric signal is converted into a digital signal through a first A-party analog/digital converter 8a1, the digital signal enters a first A-party XOR processor 10a1 through a first A-party delay line group 9a1, the digital signal is processed by the first A-party XOR processor 10a1 to generate a random code, namely a bare key RA, similarly, the Bob communication party is RB, wherein the Alice communication party and the Bob communication party both have two selectable paths, and light transmission paths behind a second A-party photoelectric detector 7a2, a first B-party photoelectric detector 7B1 and a second B-party photoelectric detector 7B2 are similarly to the first A-party photoelectric detector 7a 1;
alice transmits the bare key RA and the random code generated by the first private key module 5a1, i.e. the private key PA, to the first register 11a, and Bob transmits the bare key RB and the random code generated by the second private key module 5b1, i.e. the private key PB, to the second register 11 b;
the first register 11a and the second register 11b output the private key and the bare key of the Alice communication party and the Bob communication party simultaneously under the control of the ultrashort pulse mode-locked laser 6;
sixthly, the private key PA of the Alice communication party and the private key PB of the Bob communication party are mutually exchanged through the public channel 12;
the first key screener 13a compares the private key PA of the Alice communication party with the private key PB of the Bob communication party, finds out the position of the same code between the PA and the PB, and the first key screener 13a finds out the code corresponding to the position of the bare key RA of the Alice communication party relative to the same code between the PA and the PB, and outputs the code as the secret key of the Alice communication party; the second key filter 13b compares the private key PB of the Bob communication party with the private key PA of the Alice communication party, and finds out the position where the same code exists between PB and PA, the second key filter 13b finds out the code corresponding to the position where the same code exists between PB and PA of the bare key RB of the Bob communication party, and outputs the code as the key of the Bob communication party, and the keys of the Alice communication party and the Bob communication party are finally consistent.
Further, as a key security distribution method of the key security distribution system based on the chaotic synchronization common channel characteristic, the ultrashort pulse mode-locked laser 6 synchronously controls the first optical switch 5a2, the second optical switch 5b2, the first register 11a and the second register 11b when a rising edge of a pulse arrives.
The first private key module 5a1 and the second private key module 5b1 are both random code generators capable of sending random 0/1 digital signal codes, the first private key module 5a1 controls the first optical switch 5a2 to selectively connect the first a-side photodetector 7a1 or the second a-side photodetector 7a2 by sending random codes, the second private key module 5B1 controls the second optical switch 5B2 to select the first B-party photodetector 7B1 or the second B-party photodetector 7B2 by sending a random code, the ultrashort pulse mode-locked laser 6 controls the synchronous conduction of the first optical switch 5a2 and the second optical switch 5b2 when the pulse rising edge of the ultrashort pulse mode-locked laser arrives, and the first key screener 13a and the second key screener 13b also synchronously output signals when the ultra-short pulse mode-locked laser 6 arrives at the rising edge thereof. The first key filter 13a and the second key filter 13b can compare private keys PB and PA of both communication parties through an FPGA (field programmable gate array), and then filter bare keys RA and RB of both communication parties, and the random code after filtering is a key that is finally output.
The first a-party delay line group 9a1, the second a-party delay line group 9a2, the first B-party delay line group 9B1 and the second B-party delay line group 9B2 all include two delay lines with different lengths, time misalignment is formed when digital signals pass through the two delay lines with different lengths, the two delay lines with different lengths output the digital signals and then enter an exclusive-or processor for exclusive-or operation processing, the setting is to increase the security of the finally generated key, and even if an eavesdropper obtains a chaotic signal, the eavesdropper cannot directly obtain the key, and because the eavesdropper cannot know the delay time of the signal, the security of key distribution is enhanced.
In the invention, a broadband random light source 1 is used as an initial laser signal, and then the initial laser signal is respectively sent to a first optical feedback chaotic semiconductor laser 3a1 and a second optical feedback chaotic semiconductor laser 3b1 through a total optical fiber coupler 2, the first optical fiber coupler 3a2 and a second optical fiber coupler 3b2 to generate zero delay synchronization and establish consistent noise signal characteristics, so that an eavesdropper can introduce new noise in the process of stealing the signal characteristics to cause measurement errors, thereby ensuring the security of key distribution. Furthermore, in the invention, different sampling quantization schemes are utilized to extract the related random numbers from the consistent noise-like oscillation waves as the secret key, and an eavesdropper cannot obtain the random sequence corresponding to the chaotic signal, thereby enhancing the security of secret key distribution. The high-speed safe key distribution system and method based on the chaotic synchronization public channel characteristics, which are disclosed by the invention, utilize the private key module to carry out random keying on the optical switch on the one hand, and generate the bare key by utilizing different sampling quantization schemes on the other hand, so that the consistent key can be obtained by comparing and screening the same private key and the corresponding bare key, the limitation of chaotic synchronization recovery time is avoided, the bandwidth advantage of chaotic laser signals is fully utilized, and the key distribution rate is greatly improved.
Other constructions and operations of the high-speed key distribution system and method based on the chaotic synchronization common channel characteristic according to the present invention are known to those skilled in the art and will not be described in detail herein. While embodiments of the present invention have been illustrated, those of ordinary skill in the art will understand that: various changes, modifications, substitutions and alterations can be made to the embodiments without departing from the principles and spirit of the invention, the scope of which is defined by the claims and their equivalents, and all changes that come within the meaning and range of equivalency of the claims are to be embraced within their scope.

Claims (3)

1. A key safety distribution system based on chaotic synchronization public channel characteristics is characterized by comprising a broadband random light source (1), a total optical fiber coupler (2), a public channel (12), an ultrashort pulse mode-locked laser (6), an Alice communication party and a Bob communication party, wherein the Alice communication party comprises a first optical feedback chaotic semiconductor laser (3 a 1), a first optical fiber coupler (3 a 2), a first optical switch (5 a 2), a first private key module (5 a 1), a first register (11 a) and a first key screener (13 a), the tail end of the first optical feedback chaotic semiconductor laser (3 a 1) is connected to the head end of the first optical fiber coupler (3 a 2), the lower tail end of the first optical fiber coupler (3 a 2) is connected to the head end of the first optical switch (5 a 2) through a first optical isolator (4 a), and one of the tail ends of the first optical switch (5 a 2) is sequentially connected with a first side optical detector (24 a 867 a) 1 a) and a first side optical detector (1 a), A first a-party analog/digital converter (8 a 1), a first a-party delay line group (9 a 1) and a first a-party exclusive-or processor (10 a 1) are connected to the head end of a first register (11 a), the other end of the first optical switch (5 a 2) is connected to the head end of the first register (11 a) through a second a-party photodetector (7 a 2), a second a-party analog/digital converter (8 a 2), a second a-party delay line group (9 a 2) and a second a-party exclusive-or processor (10 a 2) in turn, the end of the first register (11 a) is connected to the head end of a first key screener (13 a), the end of the first private key module (5 a 1) is connected to the voltage control end of the first optical switch (5 a 2) and the head end of the first register (11 a), respectively, the first a-party delay line group (9 a 1) includes a sub-adapter 1 connected to the head end of the first a-party analog/digital converter (8 a 1), two delay lines with different lengths are connected in parallel at the tail end of the adapter, the tail end of the delay lines is connected to the head end of the first A-party exclusive OR processor (10 a 1), and the second A-party delay line group (9 a 2) is similar to the first A-party delay line group (9 a 1); the Bob communication party comprises a second optical feedback chaotic semiconductor laser (3B 1), a second optical fiber coupler (3B 2), a second optical switch (5B 2), a second private key module (5B 1), a second register (11B) and a second key screener (13B), the tail end of the second optical feedback chaotic semiconductor laser (3B 1) is connected to the head end of the second optical fiber coupler (3B 2), the lower tail end of the second optical fiber coupler (3B 2) is connected to the head end of a second optical switch (5B 2) through a second optical isolator (4B), one tail end of the second optical switch (5B 2) is connected to the head end of the second optical switch (5B 2) through a first B-party photoelectric detector (7B 1), a first B-party analog/digital converter (8B 1), a first B-party delay (9B 1) and a first B-party XOR processor (10B 1) in sequence, the other end of the second optical switch (5B 2) is connected to the head end of a second register (11B) through a second B-side photodetector (7B 2), a second B-side analog/digital converter (8B 2), a second B-side delay line group (9B 2) and a second B-side exclusive-or processor (10B 2) in turn, the end of the second register (11B) is connected to the head end of a second key screener (13B), the ends of the second private key modules (5B 1) are connected to the voltage control end of the second optical switch (5B 2) and the head end of the second register (11B), respectively, the first B-side delay line group (9B 1) includes an adapter whose head end is connected to the end of the first B-side analog/digital converter (8B 1), and the ends of the adapter are connected to two unequal-length delay lines whose ends are connected to the head end of the first B-side exclusive-or processor (10B 1), a second group of B-party delay lines (9B 2) is analogous to the first group of B-party delay lines (9B 1); the tail end of the broadband random light source (1) is connected to the head end of a main optical fiber coupler (2), and the two tail ends of the main optical fiber coupler (2) are respectively connected to the upper tail ends of a first optical fiber coupler (3 a 2) and a second optical fiber coupler (3 b 2); said common channel (12) being arranged between the ends of said first register (11 a) and second register (11 b); the ultrashort pulse mode-locked laser (6) controls the first optical switch (5 a 2), the second optical switch (5 b 2), the first register (11 a) and the second register (11 b); the first optical switch (5 a 2) randomly selects either to connect to the first A-party photodetector (7 a 1) or to connect to the second A-party photodetector (7 a 2) under control of the first private key module (5 a 1); the second optical switch (5B 2) is randomly selected to be connected to the first B-side photodetector (7B 1) or the second B-side photodetector (7B 2) under the control of the second private key module (5B 1), and the first optical switch (5 a 2) and the second optical switch (5B 2) perform synchronous output action under the control of the ultrashort pulse mode-locked laser (6); the laser signal is converted into an electric signal through a first A-side photodetector (7 a 1), the electric signal is converted into a digital signal through a first A-side analog-to-digital converter (8 a 1), the digital signal enters a first A-side XOR processor (10 a 1) through a first A-side delay line group (9 a 1), the digital signal is processed through the first A-side XOR processor (10 a 1) to generate a random code, namely a bare key RA, similarly, a Bob communication party is RB, wherein both the Alice communication party and the Bob communication party have two selectable paths, and light transmission paths behind a second A-side photodetector (7 a 2), a first B-side photodetector (7B 1) and a second B-side photodetector (7B 2) are similar to those behind the first A-side photodetector (7 a 1); wherein Alice communication party transmits the bare key RA and the random code generated by the first private key module (5 a 1), namely the private key PA, to the first register (11 a), and Bob communication party transmits the bare key RB and the random code generated by the second private key module (5 b 1), namely the private key PB, to the second register (11 b); the first register (11 a) and the second register (11 b) output the private key and the bare key of the Alice communication party and the Bob communication party simultaneously under the control of the ultrashort pulse mode-locked laser (6); the private key PA of the Alice communication party and the private key PB of the Bob communication party are mutually exchanged through the public channel (12); the first secret key screener (13 a) compares a private key PA of an Alice communication party with a private key PB of a Bob communication party, and finds out the position of the same code between the PA and the PB, and the first secret key screener (13 a) finds out a code corresponding to the position of a bare key RA of the Alice communication party relative to the same code between the PA and the PB as a secret key of the Alice communication party to output; and the second key screener (13 b) compares the private key PB of the Bob communication party with the private key PA of the Alice communication party, finds out the position of the same code between the PB and the PA, and the second key screener (13 b) finds out the code corresponding to the position of the bare key RB of the Bob communication party relative to the same code between the PB and the PA as the key of the Bob communication party to output.
2. The method for safely distributing the key of the key safety distribution system based on the chaotic synchronization public channel characteristic as claimed in claim 1, comprising the following steps;
firstly, a laser signal output by a broadband random light source (1) is equally divided into two paths through a total optical fiber coupler (2) and sent to a first optical fiber coupler (3 a 2) of an Alice communication party and a second optical fiber coupler (3 b 2) of a Bob communication party, and then the laser signal enters a first optical feedback chaotic semiconductor laser (3 a 1) through a first optical fiber coupler (3 a 2) and enters a second optical feedback chaotic semiconductor laser (3 b 1) through a second optical fiber coupler (3 b 2);
a chaotic laser signal output by the first optical feedback chaotic semiconductor laser (3 a 1) is transmitted to a first optical switch (5 a 2) through a first optical fiber coupler (3 a 2) and a first optical isolator (4 a), and the first optical switch (5 a 2) is randomly selected to be connected to a first A-side photodetector (7 a 1) or a second A-side photodetector (7 a 2) under the control of a first private key module (5 a 1); similarly, in the first optical feedback chaotic semiconductor laser (3 a 1), the chaotic laser signal output by the second optical feedback chaotic semiconductor laser (3B 1) is transmitted to the second optical switch (5B 2) through the second optical fiber coupler (3B 2) and the second optical isolator (4B), the second optical switch (5B 2) is randomly selected to be connected to the first B-side photodetector (7B 1) or the second B-side photodetector (7B 2) under the control of the second private key module (5B 1), and the first optical switch (5 a 2) and the second optical switch (5B 2) perform synchronous output action under the control of the ultrashort pulse mode-locked laser (6);
thirdly, the laser signal is converted into an electric signal through a first A-party photoelectric detector (7 a 1), the electric signal is converted into a digital signal through a first A-party analog/digital converter (8 a 1), the digital signal enters a first A-party XOR processor (10 a 1) through a first A-party delay line group (9 a 1), the digital signal is processed through the first A-party XOR processor (10 a 1) to generate a random code, namely a bare key RA, similarly, a Bob communication party is RB, wherein both the Alice communication party and the Bob communication party have two selectable paths, and light transmission paths behind a second A-party photoelectric detector (7 a 2), a first B-party photoelectric detector (7B 1) and a second B-party photoelectric detector (7B 2) are similarly arranged on the first A-party photoelectric detector (7 a 1);
the Alice communication party transmits the bare key RA and the random code generated by the first private key module (5 a 1), namely the private key PA, to the first register (11 a), and the Bob communication party transmits the bare key RB and the random code generated by the second private key module (5 b 1), namely the private key PB, to the second register (11 b);
the first register (11 a) and the second register (11 b) output the private key and the bare key of the Alice communication party and the Bob communication party simultaneously under the control of the ultrashort pulse mode-locked laser (6);
sixthly, the private key PA of the Alice communication party and the private key PB of the Bob communication party are mutually exchanged through the public channel (12);
the first key screener (13 a) compares the private key PA of the Alice communication party with the private key PB of the Bob communication party, finds out the position of the same code between the PA and the PB, and the first key screener (13 a) finds out the code corresponding to the position of the same code between the PA and the PB of the bare key RA of the Alice communication party as the secret key of the Alice communication party to output; and the second key screener (13 b) compares the private key PB of the Bob communication party with the private key PA of the Alice communication party, finds out the position of the same code between the PB and the PA, and the second key screener (13 b) finds out the code corresponding to the position of the bare key RB of the Bob communication party relative to the same code between the PB and the PA as the key of the Bob communication party to output.
3. The secure key distribution method according to claim 2, wherein the ultrashort pulse mode-locked laser (6) synchronously controls the first optical switch (5 a 2), the second optical switch (5 b 2), the first register (11 a) and the second register (11 b) when a rising edge of a pulse arrives.
CN201810499910.7A 2018-05-23 2018-05-23 Secret key safe distribution system and method based on chaotic synchronization public channel characteristics Active CN108880780B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810499910.7A CN108880780B (en) 2018-05-23 2018-05-23 Secret key safe distribution system and method based on chaotic synchronization public channel characteristics

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810499910.7A CN108880780B (en) 2018-05-23 2018-05-23 Secret key safe distribution system and method based on chaotic synchronization public channel characteristics

Publications (2)

Publication Number Publication Date
CN108880780A CN108880780A (en) 2018-11-23
CN108880780B true CN108880780B (en) 2020-12-18

Family

ID=64334588

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810499910.7A Active CN108880780B (en) 2018-05-23 2018-05-23 Secret key safe distribution system and method based on chaotic synchronization public channel characteristics

Country Status (1)

Country Link
CN (1) CN108880780B (en)

Families Citing this family (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109413113B (en) * 2018-12-28 2024-02-20 中国电子科技集团公司第三十四研究所 Key synchronization device and method based on optical network physical layer security
CN109830888B (en) * 2019-01-24 2020-10-13 西南大学 Device for generating physical random number based on silicon-based micro-cavity chaos
CN110601829B (en) * 2019-09-12 2022-04-19 太原理工大学 High-speed chaotic key secure distribution system and method
CN110601828B (en) * 2019-09-12 2020-10-30 太原理工大学 High-speed key secure distribution system and method based on multi-state superposition keying synchronization
CN110768780B (en) * 2019-09-20 2021-04-23 电子科技大学 Key distribution method and system based on broadband physical random source
CN111147234B (en) * 2019-12-06 2022-05-13 太原理工大学 High-speed physical key distribution system and method based on multi-mode laser chaotic synchronization
CN112491546B (en) * 2020-12-03 2022-08-23 长春理工大学 Method for extracting shared random bits of atmospheric turbulence optical channel
CN114374503A (en) * 2021-05-11 2022-04-19 太原理工大学 Long-distance key distribution system based on chaotic synchronization

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2015023550A1 (en) * 2013-08-13 2015-02-19 Fiske Software, LLC. Nado cryptography using one-way functions
CN105262585A (en) * 2015-09-22 2016-01-20 太原理工大学 Secure and high-speed key distribution system and method
WO2016099565A1 (en) * 2014-12-19 2016-06-23 Nokia Technologies Oy Photonic chip for continuous variable quantum key distribution
CN107086913A (en) * 2017-04-14 2017-08-22 中国民航大学 A kind of color 2 D code encipher-decipher method under high-dimension chaotic system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2015023550A1 (en) * 2013-08-13 2015-02-19 Fiske Software, LLC. Nado cryptography using one-way functions
WO2016099565A1 (en) * 2014-12-19 2016-06-23 Nokia Technologies Oy Photonic chip for continuous variable quantum key distribution
CN105262585A (en) * 2015-09-22 2016-01-20 太原理工大学 Secure and high-speed key distribution system and method
CN107086913A (en) * 2017-04-14 2017-08-22 中国民航大学 A kind of color 2 D code encipher-decipher method under high-dimension chaotic system

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
《利用保密增强实现基于混沌激光同步的安全密钥分发》;赵琦;《中国科技论文》;20160723;全文 *

Also Published As

Publication number Publication date
CN108880780A (en) 2018-11-23

Similar Documents

Publication Publication Date Title
CN108880780B (en) Secret key safe distribution system and method based on chaotic synchronization public channel characteristics
EP3243294B1 (en) Communication with everlasting security from short-term-secure encrypted quantum communication
CN108833089B (en) High-speed secret key safe distribution system and method based on chaotic laser coherent keying
US7333611B1 (en) Ultra-secure, ultra-efficient cryptographic system
US20130089204A1 (en) Quantum encrypted data transmission in optically-amplified wdm communications
CN108768644B (en) High-speed secret key secure distribution system and method based on no-periodic chaotic synchronization
CN112260824B (en) Gbps physical key safety distribution system
US20050141716A1 (en) Coherent-states based quantum data-encryption through optically-amplified WDM communication networks
CN110601828B (en) High-speed key secure distribution system and method based on multi-state superposition keying synchronization
CN112260816B (en) High-speed physical key distribution system with enhanced security
CN102238005A (en) Relaying method for remote secure quantum communication
CN107579820B (en) Synchronization device and synchronization method for multi-channel quantum key distribution system
Da Lio et al. Record-high secret key rate for joint classical and quantum transmission over a 37-core fiber
WO2020024439A1 (en) Physical layer security enhancement method for free-space optical network
Liang et al. Quantum noise protected data encryption in a WDM network
CN209930270U (en) Quantum communication system based on single photon communication technology
CN116722932B (en) Physical key distribution system and method based on DFB laser synchronous keying
Lei et al. Long-haul and high-speed key distribution based on one-way non-dual arbitrary basis transformation in optical fiber link
CN114172642A (en) Key distribution system based on double-end output integrated coupling cavity semiconductor laser
CN116743347B (en) Multi-mode laser synchronization-based physical key multipath parallel distribution system and method
Plenkin et al. Comparative analysis of single-photon synchronization algorithms in the quantum key distribution system
Asif et al. Quantum-to-the-home: achieving gbits/s secure key rates via commercial off-the-shelf telecommunication equipment
CN207150608U (en) A kind of quantum key distribution system of channel multiplexing
Hughes et al. Secure communications using quantum cryptography
CN116938458B (en) High-speed physical key parallel distribution system and method based on dispersion random keying

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant