CN108880800A - Adapted electrical communication system and method based on quantum secret communication - Google Patents

Adapted electrical communication system and method based on quantum secret communication Download PDF

Info

Publication number
CN108880800A
CN108880800A CN201810716999.8A CN201810716999A CN108880800A CN 108880800 A CN108880800 A CN 108880800A CN 201810716999 A CN201810716999 A CN 201810716999A CN 108880800 A CN108880800 A CN 108880800A
Authority
CN
China
Prior art keywords
quantum key
quantum
generating device
terminal
encryption
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201810716999.8A
Other languages
Chinese (zh)
Other versions
CN108880800B (en
Inventor
张强
宋彦斌
赵冲
李温静
吴庆
陈熹
杨力帆
何尚骏
候功华
鄢志平
张智威
陈闽林
郑立志
蒋翠
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
State Grid Corp of China SGCC
State Grid Information and Telecommunication Co Ltd
Beijing Smartchip Microelectronics Technology Co Ltd
Fuzhou Power Supply Co of State Grid Fujian Electric Power Co Ltd
Original Assignee
State Grid Corp of China SGCC
State Grid Information and Telecommunication Co Ltd
Beijing Smartchip Microelectronics Technology Co Ltd
Fuzhou Power Supply Co of State Grid Fujian Electric Power Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by State Grid Corp of China SGCC, State Grid Information and Telecommunication Co Ltd, Beijing Smartchip Microelectronics Technology Co Ltd, Fuzhou Power Supply Co of State Grid Fujian Electric Power Co Ltd filed Critical State Grid Corp of China SGCC
Priority to CN201810716999.8A priority Critical patent/CN108880800B/en
Publication of CN108880800A publication Critical patent/CN108880800A/en
Application granted granted Critical
Publication of CN108880800B publication Critical patent/CN108880800B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • H04L9/0822Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using key encryption key
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04BTRANSMISSION
    • H04B10/00Transmission systems employing electromagnetic waves other than radio-waves, e.g. infrared, visible or ultraviolet light, or employing corpuscular radiation, e.g. quantum communication
    • H04B10/70Photonic quantum communication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0838Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0852Quantum cryptography
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • Electromagnetism (AREA)
  • Theoretical Computer Science (AREA)
  • Optics & Photonics (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Optical Communication System (AREA)

Abstract

The invention discloses a kind of adapted electrical communication system and method based on quantum secret communication.First quantum key generating device of the adapted electrical communication system and the second quantum key generating device joint consultation generate quantum key;Quantum key management equipment carries out storage and management to the quantum key;First quantum key generating device distributes quantum key to the terminal encryption module of adapted electrical communication system by online mode, quantum key movable storage device distributes quantum key to the terminal encryption module by offline mode, which carries out encryption and decryption by the data that the quantum key is engaged in the adapted electric industry with electric terminal;Main website encrypting module carries out encryption and decryption by the data that quantum key is engaged in the adapted electric industry by authentication.The adapted electrical communication system and method based on quantum secret communication, quantum techniques remodeling method can carry out online distribution and offline distribution to quantum key in adapted electrical communication system.

Description

Adapted electrical communication system and method based on quantum secret communication
Technical field
The present invention relates to electric power safety fields of communication technology, especially with regard to a kind of adapted based on quantum secret communication Electrical communication system and method, quantum techniques remodeling method.
Background technique
With the development that smart grid is built, the intelligent operation system such as power distribution automation, power information acquisition is to adapted Electric industry is engaged in, and more stringent requirements are proposed for protecting information safety, and the safety prevention measure taken at present relatively lays particular emphasis on software and hardware concentration The main station system of deployment deploys substantial amounts, widely distributed since power distribution automation, power information such as acquire at the operation systems All kinds of service terminals, communication terminal, there is the features such as multi-point and wide-ranging, environment is open, and safety prevention measure is relatively weak, with The enhancing of network attack means, information leakage distort the aggravation of the risks such as forgery, Bypass Control, attacker can pass through terminal Twisting attack main website causes larger range of security threat.
Quantum Secure Communication is carried out using Uncertainty principle with the irreproducible characteristic of quantum state safe close Key distribution, attacker is unable to measure and replicate key (quantum state), and is once eavesdropped and can be found, and has closeer than traditional Point-to-point mode may be implemented by the cipher mode of one-time pad in the higher safety of key distribution mechanisms, quantum secret communication Safe classical communication, is guaranteed the Unconditional security of key distribution procedure by basic physics theory, to establish safe Signcode is the highest quantum techniques of current degree of being practical.
Existing Technique on Quantum Communication application scheme is generated by building dedicated Fiber quantum channel and quantum key Equipment carries out key agreement, obtains quantum key, and in quantum key distribution link, there are two types of method, a kind of method is pass through Fiber quantum channel carries out quantum key online distribution, and another kind is distributed offline by mobile device, current scheme One of which only all is applied, therefore either any quantum key delivering method has the application limitation of itself. With the development that distribution system is built, the range of fibre optic installations is more and more wider, all has Fiber Node in many substations, existing There is scheme not make full use of existing resource.How a kind of quantum key online distribution is provided and distributes the amount combined offline Quantum key distribution mode is focus of the invention.
The information disclosed in the background technology section is intended only to increase the understanding to general background of the invention, without answering When being considered as recognizing or imply that the information constitutes the prior art already known to those of ordinary skill in the art in any form.
Summary of the invention
The purpose of the present invention is to provide a kind of adapted electrical communication system and method, quantum skill based on quantum secret communication Art remodeling method can carry out online distribution and offline distribution to quantum key in adapted electrical communication system.
To achieve the above object, the adapted electrical communication system based on quantum secret communication that the present invention provides a kind of.This is matched It include matching electric terminal, power telecom network, main station system, quantum key generating device group, quantum key pipe with electrical communication system Manage equipment, quantum key movable storage device, terminal encryption module, main website encrypting module.Quantum key generating device group includes First quantum key generating device and the second quantum key generating device, the first quantum key generating device and described second Quantum key is generated after quantum key generating device joint consultation.Quantum key management equipment and the quantum key generating device Group carries out data interaction, for carrying out storage and management to the quantum key.Quantum key movable storage device and the amount Sub-key management equipment carries out data interaction, for reading the quantum key in the quantum key management equipment.Terminal encryption Module and the first quantum key generating device and the quantum key movable storage device are able to carry out data interaction, institute It states the first quantum key generating device and quantum key, the quantum key is distributed to the terminal encryption module by online mode Movable storage device distributes quantum key to the terminal encryption module by offline mode, which passes through described The data that quantum key is engaged in the adapted electric industry with electric terminal carry out encryption and decryption.Safe access gateway and the power communication Net and the second quantum key generating device are able to carry out data interaction, the internal or external deployment of the safe access gateway Authentication module, the authentication module are used to read the quantum key of the second quantum key generating device distribution and by the quantum The adapted electric industry business of the transmission of power telecom network described in key pair carries out authentication, which will pass through authentication Adapted electricity business datum transmitted.Main website encrypting module and the second quantum key generating device and the system of main website System is able to carry out data interaction, main website encrypting module, with the second quantum key generating device, the safe access gateway And the main station system is able to carry out data interaction, which generates for reading second quantum key The quantum key of equipment distribution, and carry out plus solve by the data that the quantum key is engaged in the adapted electric industry by authentication It is close, the adapted electricity business datum after encryption and decryption is transmitted to main station system and is handled.
In a preferred embodiment, the terminal encryption module is configured in described with inside electric terminal or being matched It sets described with outside electric terminal.
In a preferred embodiment, the main website encrypting module is configured in inside the main station system or is configured Outside the main station system.
In a preferred embodiment, the electric terminal of matching includes incoming fiber optic channel with electric terminal, described Quantum key distribution is matched electric terminal to the incoming fiber optic channel by the first quantum key generating device.
In a preferred embodiment, the electric terminal of matching includes non-incoming fiber optic channel with electric terminal, institute It states quantum key movable storage device and the quantum key distribution of reading is matched into electric terminal to the non-incoming fiber optic channel.
In a preferred embodiment, the adapted electrical communication system further includes business application system, is matched with described Electric terminal equipment carries out data interaction, and the business application system is described with electric terminal authorization before deployment adapted electric industry business Write-in registration permission card, registration permission card is for the electric terminal of matching in the registration of the main station system.
In a preferred embodiment, the adapted electrical communication system further includes quantum key application mode selection mould Block carries out data interaction with the terminal encryption module, for determining the terminal encryption module in carrying out encryption process Whether using quantum key, the quantum key ID of use, quantum key reuse frequency.
In a preferred embodiment, the adapted electrical communication system further includes:Quantum key destroys module, with institute It states terminal encryption module, main website encrypting module, authentication module, quantum key management equipment and is able to carry out data interaction, be used for Destroy the quantum key for terminating and using.
The present invention also provides a kind of quantum techniques remodeling method of the distribution system of symmetric key encryption, should based on pair Claim key encryption distribution system include:Using symmetric key encryption and decryption with electric terminal and main station system, using symmetrical Safe access gateway, the power telecom network of key authentication, which is characterized in that the quantum techniques remodeling method includes:Matching electricity consumption Terminal inner or deployed outside terminal encryption module, the terminal encryption module are connected with described with electric terminal, can be to adapted The adapted electricity business datum of electric terminals output carries out encryption and decryption using quantum key;By the safety using symmetric key authentication The authentication module that the internal or external deployment of access gateway authenticates the business of adapted electric industry using quantum key;By the system of main website The internal or external deployment of system is able to use quantum key and is engaged in carrying out the main website encrypting module of encryption and decryption to adapted electric industry;By the first amount Sub-key generating device and the second quantum key generating device are deployed in distribution system, the first quantum key generating device and Second quantum key generating device reciprocally negotiates generation quantum key, the first quantum key generating device and the terminal encryption Module carries out data interaction, and for distributing quantum key to the terminal encryption module by online mode, second quantum is close Key generating device and the main website encrypting module, the authentication module and the safe access gateway carry out data interaction, For distributing quantum key to the main website encrypting module, the authentication module and the safe access gateway;Quantum is close Key management equipment is deployed in distribution system, the quantum key management equipment and the first quantum key generating device and institute It states the second quantum key generating device and carries out data interaction, be used for storage and management quantum key;By the mobile storage of quantum key For deployed with devices in distribution system, the quantum key movable storage device and the quantum key management equipment are able to carry out number According to interaction, for reading the quantum key of the quantum key management equipment and the quantum key being passed through offline mode point It issues with electric terminal.
The adapted telecommunication method based on quantum secret communication that the present invention also provides a kind of, this method is including the use of first Quantum key is generated after quantum key generating device and the second quantum key generating device joint consultation;Pass through quantum key management Equipment carries out storage and management to the quantum key;Quantum key movable storage device reads the quantum key management equipment In quantum key;The first quantum key generating device and the quantum key movable storage device are received with electric terminal In quantum key and to adapted electric industry business data carry out encryption and decryption;The adapted electric industry business is transmitted by power telecom network; Authentication module carries out authentication to the data for the adapted electric industry business that the power telecom network transmits, and safe access gateway will pass through The adapted electricity business datum of authentication is transmitted;Main website encrypting module receive safe access gateway transmission with electricity consumption Business datum, and read the quantum key of the second quantum key generating device distribution, using the quantum key to passing through body The data of the adapted electric industry business of part certification carry out encryption and decryption, and the adapted electricity business datum after encryption and decryption is transmitted;Main website System receives and processes the adapted electricity business datum after the encryption and decryption.
In a preferred embodiment, described with described in the receiving with electric terminal of incoming fiber optic channel in electric terminal The quantum key of first quantum key generating device;The electric terminal of matching with non-incoming fiber optic channel in electric terminal receives The quantum key of the first quantum key generating device.
In a preferred embodiment, which further includes:Business application system matches electricity consumption described Write-in registration permission card is authorized before the business of terminal disposition adapted electric industry, it is then described to pass through powerline network to master with electric terminal The system of station is registered.
In a preferred embodiment, which further includes:It is carried out in the data being engaged in adapted electric industry Before encryption and decryption, it is confirmed whether that the quantum of use is then arranged according to quantum key cipher mode using quantum key cipher mode Key ID and quantum key reuse frequency, then carry out encryption and decryption to the data that adapted electric industry is engaged in using quantum key, If not using quantum key cipher mode, the data of adapted electric industry business using symmetric key encryption mode or are not encrypted.
In a preferred embodiment, which further includes:When quantum key, which terminates, to be used to this Quantum key is destroyed.
Compared with prior art, the adapted electrical communication system and method according to the present invention based on quantum secret communication, matches The terminal encryption module of electric terminal can be carried out with the first quantum key generating device and quantum key movable storage device Data interaction, quantum key can be the first quantum key generating devices using distributing quantum key by way of online distribution to matching Electric terminal, quantum key movable storage device distribute quantum key to electric terminal by the way of distributing offline.It utilizes Quantum key carries out encryption and decryption to the data that the adapted electric industry with electric terminal is engaged in, and passes through power telecom network and safe access gateway The business of adapted electric industry is transmitted, main website is engaged in adapted electric industry using quantum key to carry out encryption and decryption, in the data for carrying out the business of adapted electric industry Encryption and decryption before can choose whether to add using quantum key by quantum key application mode selecting module according to actual needs Close mode then carries out encryption and decryption to the data that adapted electric industry is engaged in using quantum key, if not according to quantum key cipher mode Using quantum key cipher mode, then the data of adapted electric industry business using symmetric key encryption mode or are not encrypted, thus real Now flexible communication configuration improves quantum communications efficiency.
Detailed description of the invention
Fig. 1 is the schematic diagram of the adapted electrical communication system based on quantum secret communication according to an embodiment of the present invention;
Fig. 2 is the flow chart of the adapted telecommunication method based on quantum secret communication according to an embodiment of the present invention.
Specific embodiment
With reference to the accompanying drawing, specific embodiments of the present invention will be described in detail, it is to be understood that guarantor of the invention Shield range is not limited by the specific implementation.
Unless otherwise explicitly stated, otherwise in entire disclosure and claims, term " includes " or its change Changing such as "comprising" or " including " etc. will be understood to comprise stated element or component, and not exclude other members Part or other component parts.
The present invention provides a kind of adapted electrical communication system and method, quantum techniques transformation side based on quantum secret communication Method can carry out online distribution and offline distribution to quantum key in adapted electrical communication system.
Fig. 1 is the schematic diagram of the adapted electrical communication system based on quantum secret communication according to an embodiment of the present invention.
The adapted electrical communication system based on quantum secret communication includes:First quantum key generating device 10, the second amount Sub-key generating device 11, quantum key movable storage device 13, matches electric terminal 14, business at quantum key management equipment 12 Application system 15, power telecom network 16, safe access gateway 17, main station system 18.
It is terminating layer, access layer, convergence respectively in order to make it easy to understand, the adapted electrical communication system is divided into 3 network layers Layer.
Terminating layer includes:Quantum key movable storage device 10 matches electric terminal 14, business application system 15.
Access layer includes:First quantum key generating device 10, power telecom network 16, quantum key management equipment 12.
Convergence layer includes:Second quantum key generating device 11, safe access gateway 17, main station system 18.
Between convergence layer and access layer, the first quantum key generating device 10 and the second quantum key generating device 11 are total Quantum key is generated after same negotiation.
Between access layer and terminating layer, the first quantum key generating device 10 passes through online mode to incoming fiber optic channel Directly distribute quantum key with electric terminal.Quantum key management equipment 12 carries out storage and management to quantum key.Equivalent When there are many sub-key, each quantum key can be orderly managed by quantum key management equipment 12, and quantum key is divided It is assigned in corresponding quantum key movable storage device 13.Quantum key movable storage device 13 is for reading quantum key management The quantum key of equipment 12 simultaneously matches electric terminal dispensed amount sub-key to non-incoming fiber optic channel by offline mode.
In terminating layer, with configuration or deployed outside terminal encryption module 14a, the terminal encryption module inside electric terminal 14 14a carries out encryption and decryption to the data that the adapted electric industry with electric terminal is engaged in by quantum key.Business application system 15, and it is described Adapted terminal equipment carries out data interaction, which is engaged in electric terminal 14 in deployment adapted electric industry described Registration permission card is written in preceding authorization, and registration permission card is for the electric terminal 14 of matching in the registration of main station system 18.
In access layer, power telecom network 16 is for carrying the adapted electric industry business.
In convergence layer, safe access gateway 17 is internal or external to dispose authentication module 17a, and authentication module 17a reads second The quantum key of quantum key generating device 11, and the adapted electric industry that the power telecom network 16 is transmitted by the quantum key Business carries out authentication.Main station system 18 is used to handle is engaged in by the adapted electric industry of authentication.Match inside the main station system 18 It sets or deployed outside main website encrypting module 18a, main website encrypting module 18a reads the second quantum key generating device 11 and divide The quantum key of hair carries out encryption and decryption by the data that the quantum key is engaged in the adapted electric industry by authentication.
In one embodiment, adapted electrical communication system further includes quantum key application mode selecting module, and described Terminal encryption module 14a carries out data interaction, for determining whether the terminal encryption module 14a adopts in carrying out encryption process Frequency is reused with quantum key, the quantum key ID of use, quantum key.
In one embodiment, the adapted electrical communication system further includes that quantum key destroys module, with the adapted Electric terminals 14, main station system 18, quantum key management equipment 12 are able to carry out data interaction, for destroying the amount for terminating and using Sub-key.
It is different from the above-mentioned adapted electrical communication system based on quantum secret communication, it is traditional based on symmetric key encryption Distribution system includes:Using symmetric key encryption and decryption with electric terminal and main station system, use the peace of symmetric key authentication Full access gateway uses the encryption authentication device of symmetric key encryption and decryption, power telecom network.
Existing traditional distribution system based on symmetric key encryption is transformed into matching based on quantum secret communication With electrical communication system, remodeling method can be selected according to the actual situation.For example it can be transformed using following two method.
First method is individually disposing terminal encryption module 14a with electric terminal side, symmetrical close to using in main website side The safe access gateway of key certification is transformed, and is transformed into the safe access gateway for being able to use quantum key certification, the safety It can be with the built-in or deployed outside one authentication module 17a for being able to use quantum key and carrying out encryption and decryption in access gateway.? Affix one's name to main website encrypting module 18a in main website side.And dispose the first quantum key generating device 10, the second quantum key generating device 11, quantum key management equipment 12, quantum key movable storage device 13.The first dispositions method is without being transformed existing master System of standing and match electric terminal.The business of adapted electric industry is output to terminal encryption mould after terminal carries out traditional secrete key Encryption Algorithm Block carries out the secondary encryption of quantum key, is transmitted to main station system side by power telecom network, then pass through improved secure accessing Gateway carries out certification and quantum key decryption, and the communication service of acquisition is entered main station system and carries out business datum encryption and decryption again.
Second method is being matched electric terminal On-premise terminal encryption module 14a, can replaced with quantum key existing Symmetric key, directly to electric terminal business datum carry out encryption and decryption.It is not necessarily in main website side to using symmetric key authentication Safe access gateway be transformed, but go back deployed outside one in the safe access gateway and be able to use quantum key and add The authentication module 17a of decryption.Main website encrypting module 18a is affixed one's name in main website side.And the first quantum key generating device 10 of deployment, Second quantum key generating device 11, quantum key management equipment 12, quantum key movable storage device 13.This second deployment Method has been transformed existing with electric terminal.The business of adapted electric industry can directly carry out quantum key encryption in distribution terminal, pass through Power telecom network is transmitted to main station system side, then is authenticated by existing safe access gateway, and newly deployed main website is passed through Encrypting module can carry out quantum key decryption, the communication service of acquisition is entered main station system carry out business datum again and add solution It is close.
The adapted telecommunication method based on quantum secret communication that the present invention also provides a kind of.Fig. 2 is according to the present invention one The flow chart of the adapted telecommunication method based on quantum secret communication of embodiment.It is logical with electricity consumption based on quantum secret communication Letter method includes the following steps.
In S1, quantum key is generated.First quantum key generating device is assisted jointly with the second quantum key generating device Quantum key is generated after quotient.
In S2, quantum key is managed.Storage and management are carried out to the quantum key by quantum key management equipment.
In S3, movable storage device reads quantum key.Quantum key movable storage device reads the quantum key Quantum key in management equipment.
In S4, main station system is registered to electric terminal.Business application system is disposing adapted electric industry with electric terminal Authorization write-in registration permission card before business, it is then described to be registered by powerline network to main station system with electric terminal.
In S5, the quantum key encryption and decryption of adapted electric industry business is carried out by terminal encryption module with electric terminal.Terminal Encrypting module receives the quantum key in the first quantum key generating device and the quantum key movable storage device simultaneously Encryption and decryption is carried out to the data of adapted electric industry business.Incoming fiber optic channel receives the first quantum key generation with electric terminal The quantum for receiving the first quantum key generating device with electric terminal of the quantum key of equipment, non-incoming fiber optic channel is close Key.
In S6, the adapted electric industry is transmitted by power telecom network and is engaged in.
Optionally, it in S7, is engaged in carrying out authentication to adapted electric industry.Authentication module is by quantum key to the electric power The adapted electric industry business of communication network transmission carries out authentication, and safe access gateway will be transmitted by the data of authentication.
In S8, the data being engaged in the adapted electric industry by authentication carry out encryption and decryption.Main station system is added by main website Close module reads the quantum key of the second quantum key generating device distribution, is confirmed whether using quantum key encryption side Formula, the quantum key ID of use and quantum key reuse frequency, are then engaged in the adapted electric industry by authentication Data carry out encryption and decryption.
Optionally, further include S9, the quantum key is destroyed when quantum key, which terminates, to be used.
In conclusion the adapted electrical communication system and method according to the present invention based on quantum secret communication, whole with electricity consumption The terminal encryption module at end can carry out data friendship with the first quantum key generating device and quantum key movable storage device Mutually, quantum key can distribute quantum key to electricity consumption end in such a way that the first quantum key generating device is using online distribution End, the quantum key movable storage device use distributed online distribution and offline distribute quantum key by way of distributing offline To with electric terminal.Encryption and decryption is carried out to the data that the adapted electric industry with electric terminal is engaged in using quantum key, it is logical by electric power Believe net and safe access gateway transmission adapted electric industry business, main website using quantum key to adapted electric industry be engaged in carry out encryption and decryption, into It can be selected according to actual needs by quantum key application mode selecting module before the encryption and decryption of the data of row adapted electric industry business Whether use quantum key cipher mode to realize flexible communication configuration, improves quantum communications efficiency.
It should be understood by those skilled in the art that, embodiments herein can provide as method, system or computer program Product.Therefore, complete hardware embodiment, complete software embodiment or reality combining software and hardware aspects can be used in the application Apply the form of example.Moreover, it wherein includes the computer of computer usable program code that the application, which can be used in one or more, The computer program implemented in usable storage medium (including but not limited to magnetic disk storage, CD-ROM, optical memory etc.) produces The form of product.
The application is referring to method, the process of equipment (system) and computer program product according to the embodiment of the present application Figure and/or block diagram describe.It should be understood that every one stream in flowchart and/or the block diagram can be realized by computer program instructions The combination of process and/or box in journey and/or box and flowchart and/or the block diagram.It can provide these computer programs Instruct the processor of general purpose computer, special purpose computer, Embedded Processor or other programmable data processing devices to produce A raw machine, so that being generated by the instruction that computer or the processor of other programmable data processing devices execute for real The device for the function of being specified in present one or more flows of the flowchart and/or one or more blocks of the block diagram.
These computer program instructions, which may also be stored in, is able to guide computer or other programmable data processing devices with spy Determine in the computer-readable memory that mode works, so that it includes referring to that instruction stored in the computer readable memory, which generates, Enable the manufacture of device, the command device realize in one box of one or more flows of the flowchart and/or block diagram or The function of being specified in multiple boxes.
These computer program instructions also can be loaded onto a computer or other programmable data processing device, so that counting Series of operation steps are executed on calculation machine or other programmable devices to generate computer implemented processing, thus in computer or The instruction executed on other programmable devices is provided for realizing in one or more flows of the flowchart and/or block diagram one The step of function of being specified in a box or multiple boxes.
Finally it should be noted that:The above examples are only used to illustrate the technical scheme of the present invention rather than to its protection scope Limitation, although the application is described in detail referring to above-described embodiment, those of ordinary skill in the art should Understand:Those skilled in the art read the specific embodiment of application can still be carried out after the application various changes, modification or Person's equivalent replacement, but these changes, modification or equivalent replacement, are applying within pending claims.

Claims (14)

1. a kind of adapted electrical communication system based on quantum secret communication, which includes matching electric terminal, electricity Power communication network, main station system, which is characterized in that the adapted electrical communication system includes:
Quantum key generating device group, including the first quantum key generating device and the second quantum key generating device, described Quantum key is generated after one quantum key generating device and the second quantum key generating device joint consultation;
Quantum key management equipment carries out data interaction with the quantum key generating device group, for the quantum key Carry out storage and management;
Quantum key movable storage device carries out data interaction with the quantum key management equipment, for reading the quantum Quantum key terminal encryption module in key management apparatus, with the first quantum key generating device and the quantum key Movable storage device is able to carry out data interaction, and the first quantum key generating device passes through online mode to the terminal Encrypting module distributes quantum key, and the quantum key movable storage device is divided by offline mode to the terminal encryption module Quantum key is sent out, which is carried out by the data that the quantum key is engaged in the adapted electric industry with electric terminal Encryption and decryption;
Safe access gateway is able to carry out data with the power telecom network and the second quantum key generating device and hands over Mutually, the safe access gateway is in internal or deployed outside authentication module, and the authentication module is for reading second quantum key The quantum key of generating device distribution simultaneously carries out body to the adapted electric industry business that the power telecom network transmits by the quantum key Part certification, the safe access gateway will be transmitted by the adapted electricity business datum of authentication;
Main website encrypting module, with the second quantum key generating device, the safe access gateway and the main station system It is able to carry out data interaction, the quantum which is used to read the second quantum key generating device distribution is close Key, and encryption and decryption is carried out by the data that the quantum key is engaged in the adapted electric industry by authentication, after encryption and decryption Adapted electricity business datum is transmitted to main station system and is handled.
2. the adapted electrical communication system based on quantum secret communication as described in claim 1, which is characterized in that the terminal adds Described match outside electric terminal is matched inside electric terminal or be configured in close module described in being configured in.
3. the adapted electrical communication system based on quantum secret communication as described in claim 1, which is characterized in that the main website adds Close module is configured in inside the main station system or is configured in outside the main station system.
4. the adapted electrical communication system based on quantum secret communication as described in claim 1, which is characterized in that described to match electricity consumption Terminal includes incoming fiber optic channel with electric terminal, and the first quantum key generating device is by quantum key distribution to described Match electric terminal in incoming fiber optic channel.
5. the adapted electrical communication system based on quantum secret communication as described in claim 1, which is characterized in that described to match electricity consumption Terminal includes non-incoming fiber optic channel with electric terminal, and the quantum key movable storage device divides the quantum key of reading That issues the non-incoming fiber optic channel matches electric terminal.
6. the adapted electrical communication system based on quantum secret communication as described in claim 1, which is characterized in that described to match electricity consumption Communication system further includes:
Business application system carries out data interaction with the adapted terminal equipment, which matches electricity consumption described Registration permission card is written in terminal authorization before deployment adapted electric industry business, and registration permission card is for the electric terminal of matching described The registration of main station system.
7. the adapted electrical communication system based on quantum secret communication as described in claim 1, which is characterized in that described to match electricity consumption Communication system further includes:
Quantum key application mode selecting module carries out data interaction with the terminal encryption module, for determining that the terminal adds Whether close module is reused frequently in carrying out encryption process using quantum key, the quantum key ID of use, quantum key Rate.
8. the adapted electrical communication system based on quantum secret communication as described in claim 1, which is characterized in that described to match electricity consumption Communication system further includes:
Quantum key destroys module, sets with the terminal encryption module, main website encrypting module, authentication module, quantum key management It is standby to be able to carry out data interaction, for destroying the quantum key for terminating and using.
9. a kind of quantum techniques remodeling method of the distribution system of symmetric key encryption, should the adapted based on symmetric key encryption Electric system includes:Use connecing with electric terminal and main station system, using the safety of symmetric key authentication for symmetric key encryption and decryption Function Access Gateway, power telecom network, which is characterized in that the quantum techniques remodeling method includes:
With terminal encryption module is disposed inside or outside electric terminal, which matches electric terminal phase with described Even, encryption and decryption can be carried out using quantum key to the adapted electricity business datum with electric terminal output;
By deployment inside or outside the safe access gateway using symmetric key authentication using quantum key to adapted electric industry The authentication module that business is authenticated;
Deployment inside or outside the main station system is able to use quantum key to be engaged in carrying out the main website of encryption and decryption to adapted electric industry Encrypting module;First quantum key generating device and the second quantum key generating device are deployed in distribution system, first Quantum key generating device and the second quantum key generating device reciprocally negotiate generation quantum key, which generates Equipment and the terminal encryption module carry out data interaction, for distributing quantum to the terminal encryption module by online mode Key, the second quantum key generating device and the main website encrypting module, the authentication module and the secure accessing net Guan Jun carries out data interaction, for distributing to the main website encrypting module, the authentication module and the safe access gateway Quantum key;
Quantum key management equipment is deployed in distribution system, the quantum key management equipment and first quantum key Generating device and the second quantum key generating device carry out data interaction, are used for storage and management quantum key;
Quantum key movable storage device is deployed in distribution system, the quantum key movable storage device and the quantum Key management apparatus is able to carry out data interaction, for reading the quantum key of the quantum key management equipment and by the amount Sub-key is distributed to by offline mode with electric terminal.
10. a kind of adapted telecommunication method based on quantum secret communication, which is characterized in that including:
Using generating quantum key after the first quantum key generating device and the second quantum key generating device joint consultation;
Storage and management are carried out to the quantum key by quantum key management equipment;
Quantum key movable storage device reads the quantum key in the quantum key management equipment;
Terminal encryption module receives the amount in the first quantum key generating device and the quantum key movable storage device Sub-key simultaneously carries out encryption and decryption to the data of adapted electric industry business;
The data of the adapted electric industry business are transmitted by power telecom network;
Authentication module carries out authentication to the data for the adapted electric industry business that the power telecom network transmits, and safe access gateway will It is transmitted by the adapted electricity business datum of authentication;
Main website encrypting module receives the adapted electricity business datum of the safe access gateway transmission, and it is close to read second quantum The quantum key of key generating device distribution is added using the data that the quantum key is engaged in the adapted electric industry by authentication Decryption, and the adapted electricity business datum after encryption and decryption is transmitted;
Main station system receives and processes the adapted electricity business datum after the encryption and decryption.
11. the adapted telecommunication method based on quantum secret communication as claimed in claim 10, which is characterized in that
It is described to match in electric terminal, the amount that the first quantum key generating device is received with electric terminal in incoming fiber optic channel Sub-key;
Described to match in electric terminal, non-incoming fiber optic channel receives the quantum key movable storage device with electric terminal Quantum key.
12. the adapted telecommunication method based on quantum secret communication as claimed in claim 10, which is characterized in that electricity consumption should be matched Communication means further includes:
Business application system authorization write-in registration permission card before the deployment adapted electric industry business with electric terminal, it is then described to match Electric terminal is registered by powerline network to main station system.
13. the adapted telecommunication method based on quantum secret communication as claimed in claim 10, which is characterized in that electricity consumption should be matched Communication means further includes:
Before the data being engaged in adapted electric industry carry out encryption and decryption, it is confirmed whether using quantum key cipher mode, according to quantum Key cipher mode, then the quantum key ID and quantum key that use is arranged reuse frequency, then use quantum key Encryption and decryption is carried out to the data of adapted electric industry business, if not using quantum key cipher mode, the data of adapted electric industry business are adopted With symmetric key encryption mode or do not encrypt.
14. the adapted telecommunication method based on quantum secret communication as claimed in claim 10, which is characterized in that electricity consumption should be matched Communication means further includes:
The quantum key is destroyed when quantum key, which terminates, to be used.
CN201810716999.8A 2018-07-03 2018-07-03 Power distribution and utilization communication system and method based on quantum secret communication Active CN108880800B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810716999.8A CN108880800B (en) 2018-07-03 2018-07-03 Power distribution and utilization communication system and method based on quantum secret communication

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810716999.8A CN108880800B (en) 2018-07-03 2018-07-03 Power distribution and utilization communication system and method based on quantum secret communication

Publications (2)

Publication Number Publication Date
CN108880800A true CN108880800A (en) 2018-11-23
CN108880800B CN108880800B (en) 2020-12-11

Family

ID=64298682

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810716999.8A Active CN108880800B (en) 2018-07-03 2018-07-03 Power distribution and utilization communication system and method based on quantum secret communication

Country Status (1)

Country Link
CN (1) CN108880800B (en)

Cited By (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109714166A (en) * 2019-03-07 2019-05-03 山东鲁能软件技术有限公司 A kind of mobile distribution method, system, terminal and storage medium based on quantum key
CN109728908A (en) * 2019-03-18 2019-05-07 南方电网调峰调频发电有限公司信息通信分公司 A kind of key management method based on quantum safety moving storage medium
CN110557252A (en) * 2019-09-30 2019-12-10 南方电网调峰调频发电有限公司信息通信分公司 Quantum security gateway key offline updating method
CN110572265A (en) * 2019-10-24 2019-12-13 国网山东省电力公司信息通信公司 terminal security access gateway method, device and system based on quantum communication
CN112187460A (en) * 2020-10-27 2021-01-05 清创网御(合肥)科技有限公司 Master-slave network-oriented root key hidden symmetric encryption algorithm
CN112491537A (en) * 2020-11-10 2021-03-12 国网天津市电力公司 Electric energy metering system safety protection method based on quantum secret communication technology
CN112528302A (en) * 2020-12-11 2021-03-19 山东极光智能科技有限公司 Quantum mobile storage device and working method thereof
CN113784345A (en) * 2021-11-11 2021-12-10 国网浙江省电力有限公司金华供电公司 Power distribution terminal point-to-point key negotiation method and device based on quantum secure channel
CN113872762A (en) * 2021-11-29 2021-12-31 国网浙江省电力有限公司金华供电公司 Quantum encryption communication system based on power distribution terminal equipment and use method thereof
CN114697010A (en) * 2020-12-30 2022-07-01 科大国盾量子技术股份有限公司 Quantum communication network metropolitan area network and layered networking method thereof
CN114745109A (en) * 2022-04-06 2022-07-12 国网浙江省电力有限公司宁波供电公司 Power distribution terminal encryption communication system and method based on quantum encryption
CN114900342A (en) * 2022-04-25 2022-08-12 矩阵时光数字科技有限公司 Distributor authentication method based on key distribution system

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102983965A (en) * 2012-10-18 2013-03-20 中国电力科学研究院 Transformer substation quantum communication model, quantum secret key distribution center and model achieving method
US20140044260A1 (en) * 2012-08-08 2014-02-13 Kabushiki Kaisha Toshiba Communication apparatus, communication method, computer-readable medium, and communication system
CN104660602A (en) * 2015-02-14 2015-05-27 山东量子科学技术研究院有限公司 Quantum key transmission control method and system
CN105515780A (en) * 2016-01-12 2016-04-20 浙江神州量子网络科技有限公司 System and method for authenticating identity based on quantum key
US20160373253A1 (en) * 2015-06-18 2016-12-22 Kabushiki Kaisha Toshiba Communication device, communication system, communication method, and computer program product
CN106452740A (en) * 2016-09-23 2017-02-22 浙江神州量子网络科技有限公司 Quantum communication service station, quantum key management device, key configuration network, and key configuration method

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140044260A1 (en) * 2012-08-08 2014-02-13 Kabushiki Kaisha Toshiba Communication apparatus, communication method, computer-readable medium, and communication system
CN102983965A (en) * 2012-10-18 2013-03-20 中国电力科学研究院 Transformer substation quantum communication model, quantum secret key distribution center and model achieving method
CN104660602A (en) * 2015-02-14 2015-05-27 山东量子科学技术研究院有限公司 Quantum key transmission control method and system
US20160373253A1 (en) * 2015-06-18 2016-12-22 Kabushiki Kaisha Toshiba Communication device, communication system, communication method, and computer program product
CN105515780A (en) * 2016-01-12 2016-04-20 浙江神州量子网络科技有限公司 System and method for authenticating identity based on quantum key
CN106452740A (en) * 2016-09-23 2017-02-22 浙江神州量子网络科技有限公司 Quantum communication service station, quantum key management device, key configuration network, and key configuration method

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
刘东: "量子密钥在电网SSLVPN中的应用", 《电网技术》 *

Cited By (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109714166A (en) * 2019-03-07 2019-05-03 山东鲁能软件技术有限公司 A kind of mobile distribution method, system, terminal and storage medium based on quantum key
CN109728908A (en) * 2019-03-18 2019-05-07 南方电网调峰调频发电有限公司信息通信分公司 A kind of key management method based on quantum safety moving storage medium
CN109728908B (en) * 2019-03-18 2021-10-15 南方电网调峰调频发电有限公司信息通信分公司 Secret key management method based on quantum secure mobile storage medium
CN110557252A (en) * 2019-09-30 2019-12-10 南方电网调峰调频发电有限公司信息通信分公司 Quantum security gateway key offline updating method
CN110572265B (en) * 2019-10-24 2022-04-05 国网山东省电力公司信息通信公司 Terminal security access gateway method, device and system based on quantum communication
CN110572265A (en) * 2019-10-24 2019-12-13 国网山东省电力公司信息通信公司 terminal security access gateway method, device and system based on quantum communication
CN112187460A (en) * 2020-10-27 2021-01-05 清创网御(合肥)科技有限公司 Master-slave network-oriented root key hidden symmetric encryption algorithm
CN112491537A (en) * 2020-11-10 2021-03-12 国网天津市电力公司 Electric energy metering system safety protection method based on quantum secret communication technology
CN112528302A (en) * 2020-12-11 2021-03-19 山东极光智能科技有限公司 Quantum mobile storage device and working method thereof
CN114697010A (en) * 2020-12-30 2022-07-01 科大国盾量子技术股份有限公司 Quantum communication network metropolitan area network and layered networking method thereof
CN114697010B (en) * 2020-12-30 2024-08-30 科大国盾量子技术股份有限公司 Quantum communication network metropolitan area network and hierarchical networking method thereof
CN113784345B (en) * 2021-11-11 2022-02-08 国网浙江省电力有限公司金华供电公司 Power distribution terminal point-to-point key negotiation method and device based on quantum secure channel
CN113784345A (en) * 2021-11-11 2021-12-10 国网浙江省电力有限公司金华供电公司 Power distribution terminal point-to-point key negotiation method and device based on quantum secure channel
CN113872762A (en) * 2021-11-29 2021-12-31 国网浙江省电力有限公司金华供电公司 Quantum encryption communication system based on power distribution terminal equipment and use method thereof
CN114745109A (en) * 2022-04-06 2022-07-12 国网浙江省电力有限公司宁波供电公司 Power distribution terminal encryption communication system and method based on quantum encryption
CN114745109B (en) * 2022-04-06 2024-07-09 国网浙江省电力有限公司宁波供电公司 Quantum encryption-based power distribution terminal encryption communication system and method
CN114900342A (en) * 2022-04-25 2022-08-12 矩阵时光数字科技有限公司 Distributor authentication method based on key distribution system
CN114900342B (en) * 2022-04-25 2024-04-12 矩阵时光数字科技有限公司 Distribution machine authentication method based on key distribution system

Also Published As

Publication number Publication date
CN108880800B (en) 2020-12-11

Similar Documents

Publication Publication Date Title
CN108880800A (en) Adapted electrical communication system and method based on quantum secret communication
CN109040090B (en) A kind of data ciphering method and device
CN106161402B (en) Encryption equipment key injected system, method and device based on cloud environment
CN107453868B (en) A kind of safe and efficient quantum key method of servicing
CN103179114B (en) Data fine-grained access control method during a kind of cloud stores
CN103580855B (en) Usbkey management method based on sharing technology
CN108768633A (en) Realize the method and device of information sharing in block chain
CN108123795A (en) Distributing method, application process, publishing platform and the system of quantum key chip
CN103457739B (en) Method and device for acquiring dynamic token parameters
CN103716167A (en) Method and device for safely collecting and distributing transmission keys
CN107404472A (en) The migration of Client-initiated encryption key
CN107358441A (en) Method, system and the mobile device and safety certificate equipment of payment verification
CN109787761A (en) A kind of equipment certification and key distribution system and method based on physics unclonable function
CN105897784B (en) Internet-of-things terminal equipment encryption communication method and device
CN103051459B (en) The management method of the transaction key of safety card and device
CN109714166A (en) A kind of mobile distribution method, system, terminal and storage medium based on quantum key
CN105429752A (en) Processing method and system of user key in cloud environment
CN106571915A (en) Terminal master key setting method and apparatus
CN110224834A (en) Identity identifying method, decryption and ciphering terminal based on dynamic token
CN105577386A (en) Data encryption method of bilateral interaction intelligent electric energy meter
CN110460436A (en) Hardware device key management method, system, storage medium and computer equipment
CN110138559A (en) The method and system of quantum-key distribution are carried out to the terminal in platform area
CN107707562A (en) A kind of method, apparatus of asymmetric dynamic token Encrypt and Decrypt algorithm
CN105978686A (en) Key management method and system
CN114398627A (en) Zero-trust-based power scheduling quantum password cloud application system and method

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant