Summary of the invention
The invention proposes a kind of key generation methods and client based on the adjustment of bit error rate parameter adaptive, compare base
Scheme is generated in the physical layer key of polarization mode dispersion, without being equipped with additional cipher key distributor part etc., without carrying out to route
Transformation, it is compatible with existing information Transmission system, be conducive to save the cost;And during the bit error rate production key based on channel
It is close can to generate the high-speed met the requirements to improve key usage for different channels environment self-adaption adjusting parameter
Key and Integrity Key.
Based on above-mentioned purpose, the present invention provides a kind of key generation method based on the adjustment of bit error rate parameter adaptive, packet
It includes:
In the parameter adjusting stage, error rate measurement, quantization repeatedly are carried out to the channel shared with opposite end, and adjust the bit error rate
Measurement/quantization parameter, so that the quantized result of the bit error rate meets preset requirement at code rate;
Based on the obtained parameter of adjustment, error rate measurement is carried out to the channel, measurement is obtained the bit error rate amount of progress
The key of consistency is obtained after change.
Wherein, described in parameter tuning process, error rate measurement, quantization repeatedly are carried out to the channel shared with opposite end,
And error rate measurement/quantization parameter is adjusted, so that the quantized result of the bit error rate meets preset requirement at code rate, specifically include:
In parameter tuning process, carry out at least once at the calculating of code rate;
Complete once at the calculating of code rate after, if judge it is described meet preset requirement at code rate, terminate parameter adjust
Process;Otherwise, the error rate measurement/quantization parameter is adjusted, and carried out next time at the calculating of code rate;
Wherein, once include: at the calculating process of code rate
Based on current error rate measurement parameter, multiple error rate measurement is carried out for the channel;
Based on current bit error rate quantization parameter, quantify to the obtained bit error rate is measured every time, and then obtains repeatedly
The quantized result of the bit error rate of measurement at code rate, as this at the calculated result of code rate.
Wherein, the error rate measurement parameter is specially to carry out the data of negotiation data transmitted by an error rate measurement
Length L;
The bit error rate quantization parameter is specially the design factor α of upper and lower decision threshold used by quantifying the bit error rate.
Wherein, described based on current error rate measurement parameter, multiple error rate measurement is carried out for the channel, specifically
Include:
Based on current data length L, K error rate measurement is carried out for the channel;Wherein, K=Z/L, Z are local
The total length for the negotiation data being randomly generated;
Wherein, carrying out an error rate measurement for the channel includes:
Pass through the letter after the negotiation data that the length being locally randomly generated is L is carried out the mapping of the area Jin Zao using key base
Road is sent to the opposite end;
After the negotiation data for obtaining the loopback that length is L according to the signal that the opposite end returns, by the negotiation of the loopback
Data are compared with the negotiation data being locally randomly generated;
According to comparison result, the bit error rate of this measurement is obtained.
Wherein, described based on current bit error rate quantization parameter, quantify to the obtained bit error rate is measured every time, specifically
Include:
Based on current design factor α, upper and lower decision threshold is calculated;
According to the upper and lower decision threshold being calculated, quantify to the obtained bit error rate is measured every time.
Preferably, described be adjusted the error rate measurement/quantization parameter, specifically include:
L/ α is carried out to increase/reduce adjustment.
The present invention also provides a kind of clients, comprising:
Parameter adjustment module for repeatedly carrying out error rate measurement, quantization to the channel shared with opposite end, and adjusts error code
Rate measurement/quantization parameter, so that the quantized result of the bit error rate meets preset requirement at code rate;
Key distribution module, the parameter adjusted for adjusting module based on the parameter, misses the channel
Symbol measure obtains the key of consistency after quantifying to the bit error rate that measurement obtains.
In technical solution of the present invention, using the physical characteristic bit error rate of channel itself, and the bit error rate is adaptively adjusted
Measurement or quantization parameter generate the Integrity Key for two clients being in communication with each other by bit error rate quantization;It is double due to communicating
Mainly by analyzing the variation situation of the characteristic quantity bit error rate for the channel that both sides share, adaptive quantizing generates consistency for side
Therefore key eavesdrops Fang Ze as the third party for not sharing the channel and is difficult to detect identical error rate characteristics amount, also just difficult
To obtain key, to have randomness strong, privacy degrees are high, it is difficult to the advantage that the side of being ravesdropping intercepts and captures, meanwhile, without being equipped with volume
Outer cipher key distributor part etc., it is compatible with existing information Transmission system without being transformed to route, be conducive to save the cost;
And the present invention can be converted according to environment, flexibly, adaptively adjust measurement or the quantization parameter of the bit error rate, dynamic adapting environment
Variation, adaptive quantizing generate key, extract available key, improve the validity of key, thus improve key utilization
Rate generates the high rate key met the requirements and Integrity Key.
Specific embodiment
To make the objectives, technical solutions, and advantages of the present invention clearer, below in conjunction with specific embodiment, and reference
Attached drawing, the present invention is described in more detail.
The embodiment of the present invention is described below in detail, examples of the embodiments are shown in the accompanying drawings, wherein from beginning to end
Same or similar label indicates same or similar element or element with the same or similar functions.Below with reference to attached
The embodiment of figure description is exemplary, and for explaining only the invention, and is not construed as limiting the claims.
Those skilled in the art of the present technique are appreciated that unless expressly stated, singular " one " used herein, " one
It is a ", " described " and "the" may also comprise plural form.It is to be further understood that when we claim element to be " connected " or " coupling
Connect " to another element when, it can be directly connected or coupled to other elements, or there may also be intermediary elements.In addition, this
In " connection " or " coupling " that uses may include being wirelessly connected or wireless coupling.Wording "and/or" used herein includes one
A or more associated whole for listing item or any cell and all combination.
It should be noted that all statements for using " first " and " second " are for differentiation two in the embodiment of the present invention
The non-equal entity of a same names or non-equal parameter, it is seen that " first " " second " only for the convenience of statement, does not answer
It is interpreted as the restriction to the embodiment of the present invention, subsequent embodiment no longer illustrates this one by one.
It is considered that existing extract key based on the physical features of wireless channel, such as loss declines the present inventor
Deng, but the bit error rate of both schemes does not often reach requirement, and key is affected by environment larger, and key usage is low;And light is logical
Believe that physical layer key based on polarization mode dispersion generates scheme, since secret-key rate is low, it is incompatible with existing equipment the disadvantages of,
It is difficult to meet the data encryption of high-speed, large capacity.The invention proposes the physical characteristic error codes using channel itself as a result,
Rate, and measurement or the quantization parameter of the bit error rate are adaptively adjusted, two clients being in communication with each other are generated by bit error rate quantization
Integrity Key;Since communicating pair is mainly the variation office for passing through the characteristic quantity bit error rate for the channel that analysis both sides share
Gesture, adaptive quantizing generate Integrity Key, therefore, eavesdrop Fang Ze as the third party for not sharing the channel and are difficult to detect phase
Same error rate characteristics amount, is also just difficult to obtain key, to have randomness strong, privacy degrees are high, it is difficult to which the side of being ravesdropping is cut
The advantage obtained, meanwhile, without being equipped with additional cipher key distributor part etc., without being transformed to route, transmitted with existing information
System compatible is conducive to save the cost;And the present invention can be converted according to environment, flexibly, adaptively adjust the survey of the bit error rate
Amount or quantization parameter, the variation of dynamic adapting environment, adaptive quantizing generate key, extract available key, improve key
Validity generate the high rate key met the requirements and Integrity Key to improve key usage.
The technical solution for embodiment that the invention will now be described in detail with reference to the accompanying drawings.
For two clients being in communication with each other, such as the first client and the second client, the embodiment of the present invention is provided
It is a kind of based on the bit error rate parameter adaptive adjustment key generation method, process is as shown in Figure 2 a, includes the following steps:
Step S201: in the parameter adjusting stage, two clients being in communication with each other repeatedly to opposite end share channel into
Row error rate measurement, quantization, and error rate measurement/quantization parameter is adjusted, so that the quantized result of the bit error rate meets at code rate
Preset requirement.
In the parameter adjusting stage of this step, the first and second client by repeatedly missing shared channel simultaneously
To the adjustment of error rate measurement, quantization parameter in symbol measure, quantizing process, to reach so that the quantized result of the bit error rate at
Code rate meets the purpose of preset requirement.For example, showing the first and second client in figure 2b repeatedly carries out bit error rate survey to channel
Amount, obtained error rate measurement result and quantized result.Below by taking the first client as an example, its parameter is described in detail and adjusted
Journey;Second client is also not repeated one by one herein using identical parameter regulation means.
First client carries out in parameter tuning process at least once at the calculating of code rate;It completes once at code rate
Calculating after, if the first client judge it is described meet preset requirement at code rate, terminate parameter tuning process;Otherwise, to working as
Preceding error rate measurement/quantization parameter is adjusted, and is carried out next time at the calculating of code rate;Wherein, once at the meter of code rate
Calculation process includes: to carry out multiple error rate measurement for the channel based on current error rate measurement parameter;Based on current
Bit error rate quantization parameter, the quantization to the bit error rate that the obtained bit error rate quantifies, and then repeatedly measured is measured every time
As a result at code rate, as this at the calculated result of code rate.
Fig. 3 shows the detailed process of parameter tuning process, including following sub-step:
Sub-step S300: initial value is set for error rate measurement, quantization parameter.
Specifically, error rate measurement parameter can be carry out an error rate measurement transmitted by negotiation data data it is long
Spend L;Preferably, the initial value of L can be a smaller value, the minimum value such as 500 in its variation range specifically can be,
In subsequent adjustment sub-step, gradually L value will be increased, for example increase step-length and can be 500;The variation range of L can be set
It is 500~10000.
Bit error rate quantization parameter can be taking for the design factor α, α of upper and lower decision threshold used by the quantization bit error rate
Being worth range is 0~1;Preferably, the initial value of α can be a biggish value, the maximum in its variation range specifically can be
Value, such as 1, in subsequent adjustment sub-step, α value will be gradually reduced.
Sub-step S301: based on current error rate measurement parameter, the first client is directed to and opposite end (the second client)
Shared channel carries out wheel (multiple) error rate measurement.
Specifically, the first client can carry out K mistake for the channel based on current error rate measurement parameter L
Symbol measure;Wherein, K=Z/L, Z are the total length for the negotiation data being locally randomly generated;Wherein, it is based on for the channel
One segment length is the negotiation data of L, carries out an error rate measurement, obtains the detailed process of an error rate measurement result such as
Under:
First client is made the negotiation data that the segment length being locally randomly generated is L based on quantum noise encryption technology
It is sent by the channel to the opposite end (the second client) after carrying out the mapping of the area Jin Zao with key base;
After opposite end (the second client) receives the signal of the first client transmission, used based on quantum noise encryption technology
After identical key base carries out the area Jin Zao demapping to received signal, the negotiation data that is received;Opposite end (the second client
End) negotiation data received is returned using after the key base progress area Jin Zao mapping to the first client;
First client carries out the area Jin Zao solution using the key base to the signal that the opposite end (the second client) returns
Mapping, to obtain the negotiation data of loopback.
The first client obtain a segment length be L loopback negotiation data after, by the negotiation data of the loopback with
The negotiation data being locally randomly generated is compared;According to comparison result, the bit error rate result of this measurement is obtained.It is aobvious
So, L is smaller, then K is bigger, and the number of the bit error rate measured is more, and the quantized result of the obtained bit error rate is measured by K times
The digit of composed key is more.
From Fig. 2 b as can be seen that since the first and second client carries out error rate measurement to shared channel simultaneously,
The error rate measurement result that the two obtains is very close.
Sub-step S302: based on current bit error rate quantization parameter, the first client to measuring the obtained bit error rate every time
The quantized result for the bit error rate for being quantified, and then repeatedly being measured at code rate.
Specifically, the first client quantifies according to the following method to the obtained bit error rate is measured every time: for each
Measure the obtained bit error rate, the bit error rate that the first client obtains the secondary measurement with respectively with upper decision threshold Th1, lower judgement
Thresholding Th0 is compared;If the bit error rate is greater than Th1, the quantized result for adjudicating the bit error rate is 1, if the bit error rate is less than
Th0, then the quantized result for adjudicating the bit error rate is 0;If the bit error rate between Th0 and Th1, adjudicates the quantization of the bit error rate
It as a result is invalid.Quantized result for 0,1 is effective quantized result.
And the quantization that the bit error rate for repeatedly measuring is referred at code rate of the quantized result of the bit error rate repeatedly measured
As a result the number of effective quantized result, i.e., the generating rate of effective quantized result in the statistical unit time.To the first client
K times is measured in the statistical unit time number of effective quantized result in the quantized result of the obtained bit error rate, i.e. effective quantity
The generating rate for changing result, as this at the calculated result of code rate.It is higher at code rate, then mean the quantization based on the bit error rate
As a result the rate of the key generated is higher.
Wherein, lower decision threshold Th0=c- α × δ, upper decision threshold Th1=c+ α × δ;C is in above-mentioned sub-step S301
The mean value of the bit error rate repeatedly measured, δ are the variance of the bit error rate repeatedly measured in above-mentioned sub-step S301.Obviously, α value is got over
Greatly, then spacing is bigger between Th0 and Th1, can be declined at code rate is opposite, but effective result based on quantization is obtained
The consistency of key is higher.
From Fig. 2 b as can be seen that since the error rate measurement result of the first and second client is very close, the two
The quantized result obtained after quantifying to the bit error rate is also almost the same.
The S303: the first client of sub-step judge this calculate whether meet preset requirement at code rate;If so, executing
Sub-step S305 terminates parameter tuning process;If it is not, then executing sub-step S304, error rate measurement/quantization parameter is adjusted
It is whole.
Specifically, the first client judge this calculate whether meet preset requirement at code rate, for example, judging this meter
Whether that calculates is greater than preset threshold value at code rate;If so, executing sub-step S305, terminate parameter tuning process;If it is not, then holding
Row sub-step S304, is adjusted error rate measurement/quantization parameter.
Sub-step S304: after being adjusted to error rate measurement/quantization parameter, sub-step S301 is jumped to, is continued next
Wheel error rate measurement and being calculated at code rate next time.
Specifically, it in the case where the first client judges into code rate and also do not meet preset requirement, also needs to survey the bit error rate
Amount parameter or bit error rate quantization parameter be adjusted so that based on parameter adjusted is obtained can be increasingly at code rate
Close to preset requirement.
Preferably, increase adjustment can be carried out to L, or reduction adjustment is carried out to α.
As a kind of more preferably embodiment, the adjustment sequence of parameter, which may is that, first fixes α value, when every subparameter adjusts,
One step value Δ L is increased to L, when L reaches maximum value, then α is reduced into a step value Δ α;That is the adjustment side of parameter
Method are as follows:
Judge whether current L is maximum value in its variation range;If it is not, L is then increased into a step value Δ L,
Otherwise, α is reduced into a step value Δ α.
Based on above-mentioned parameter strategy, then can when meeting preset requirement at code rate, obtain biggish α value and compared with
Small L value, so that having higher while the rate for generating key based on bit error rate quantized result reaches requirement
The key of consistency, and key digit is more with higher-security.
Sub-step S305: terminate parameter tuning process.
The judgement of the first client obtained meeting preset requirement at code rate after, for example, having obtained being greater than default
Threshold value at code rate after, then terminate parameter tuning process, the error rate measurement parameter L and bit error rate amount that output adjustment obtains
Change parameter alpha.
Step S202: in key distribution phase, based on the parameter that adjustment obtains, two clients being in communication with each other are to described
Channel progress error rate measurement obtains the key of consistency after quantifying to the bit error rate that measurement obtains.
In the key distribution phase of this step, the first and second client can carry out multiple bit error rate survey to shared channel
Amount, the bit error rate obtained to measurement quantify, and obtain the key of consistency according to quantized result.
Below by taking the first client as an example, its key distribution procedure is described in detail;Second client can also be used identical
Cryptographic key distribution method does not repeat one by one herein.
Fig. 4 shows the detailed process of key distribution procedure, includes the following steps:
Step S401: the error rate measurement parameter L obtained based on adjustment, the first client is directed to and opposite end (the second client
End) shared channel carries out wheel (multiple) error rate measurement.
Specifically, the first client can based on the error rate measurement parameter L adjusted in the parameter adjusting stage, for
The channel carries out a wheel error rate measurement and carries out K error rate measurement;Wherein, K=Z/L, Z are the association being locally randomly generated
The total length of quotient data;
Wherein, the negotiation data for being L based on a segment length for the channel, carries out the method stream an of error rate measurement
Journey, as shown in figure 5, including following sub-step:
The association that the length being locally randomly generated is L based on quantum noise encryption technology by the S501: the first client of sub-step
Quotient data is sent by the channel to the opposite end (the second client) using after the progress area the Jin Zao mapping of key base;
Sub-step S502: after opposite end (the second client) receives the signal of the first client transmission, it is based on quantum noise
After encryption technology carries out the area Jin Zao demapping to received signal using identical key base, the negotiation data that is received;
The negotiation data received is returned using after the key base progress area Jin Zao mapping to the first client opposite end (the second client)
It returns;
The signal that the S503: the first client of sub-step returns to the opposite end (the second client) using the key base into
The area Hang Jinzao demapping, to obtain the negotiation data of loopback.
Sub-step S504: after the negotiation data that the first client obtains the loopback that length is L, by the negotiation of the loopback
Data are compared with the negotiation data being locally randomly generated;According to comparison result, the bit error rate of this measurement is obtained.
Step S402: based on the obtained bit error rate quantization parameter α of adjustment, the first client to measuring obtained error code every time
Rate is quantified, and generates Integrity Key according to quantized result.
Specifically, the first client quantifies according to the following method to the obtained bit error rate is measured every time: for each
Measure the obtained bit error rate, the bit error rate that the first client obtains the secondary measurement with respectively with upper decision threshold Th1, lower judgement
Thresholding Th0 is compared;If the bit error rate is greater than Th1, the quantized result for adjudicating the bit error rate is 1, if the bit error rate is less than
Th0, then the quantized result for adjudicating the bit error rate is 0;If the bit error rate between Th0 and Th1, adjudicates the quantization of the bit error rate
It as a result is invalid.Quantized result for 0,1 is effective quantized result.
Wherein, lower decision threshold Th0=c- α × δ, upper decision threshold Th1=c+ α × δ;C is more in above-mentioned steps S401
The mean value of the bit error rate of secondary measurement, δ are the variance of the bit error rate repeatedly measured in above-mentioned steps S401, and α is the parameter adjusting stage
Adjust obtained bit error rate quantization parameter.
It can be according to a kind of method that the quantized result of the bit error rate generates key, directly measure obtained error code for K times
Effective quantized result of rate forms key;
More preferably, it is the safety for further increasing key, effective quantization that K times measures the obtained bit error rate can be tied
The mean value that fruit measures the obtained bit error rate with K times generates key after doing exclusive or.
In fact, as shown in Figure 2 b, since the first and second client shares channel, both sides while surveyed bit error rate base
This is close, so that the quantized result that the two obtains after quantifying to the bit error rate is substantially coincident, to be based on quantized result
The key of generation is also consistent.
First and second client is after generating Integrity Key, it can realizes that safety is logical using key Encrypt and Decrypt data
Letter.
Based on it is above-mentioned based on the bit error rate parameter adaptive adjustment key generation method, provided in an embodiment of the present invention one
Kind client, internal structure are as shown in Figure 6, comprising: parameter adjustment module 601, key distribution module 602.
Wherein, parameter adjustment module 601 is used to repeatedly carry out error rate measurement, quantization to the channel shared with opposite end, and
Error rate measurement/quantization parameter is adjusted, so that the quantized result of the bit error rate meets preset requirement at code rate.Specifically, parameter
Module 601 is adjusted in parameter tuning process, is carried out at least once at the calculating of code rate;It completes once at the calculating of code rate
Afterwards, if judge it is described meet preset requirement at code rate, terminate parameter tuning process;Otherwise, to current error rate measurement/amount
Change parameter to be adjusted, and carries out next time at the calculating of code rate;It wherein, at the calculating process of code rate include: once based on working as
Preceding error rate measurement parameter carries out multiple error rate measurement for the channel;It is right based on current bit error rate quantization parameter
Measure every time the quantized result for the bit error rate that the obtained bit error rate is quantified, and then repeatedly measured at code rate, as
This at code rate calculated result.Wherein, the error rate measurement parameter is specially to carry out transmitted by an error rate measurement
The data length L of negotiation data;The bit error rate quantization parameter is specially upper and lower decision threshold used by quantifying the bit error rate
Design factor α.The concrete function of parameter adjustment module 601 can refer to the method being described in detail in above-mentioned steps S201, no longer superfluous herein
It states.
Key distribution module 602 carries out the channel for the parameter that adjustment module adjusts based on the parameter
Error rate measurement obtains the key of consistency after quantifying to the bit error rate that measurement obtains.Key distribution module 602 it is specific
Function can refer to the method being described in detail in above-mentioned steps S202, and details are not described herein again.
In addition, parameter adjustment module 601 can also be used to receive opposite end for the negotiation data being randomly generated using key
When base carries out the signal sent after the mapping of the area Jin Zao, received signal is subjected to the area Jin Zao demapping using the key base and is obtained
After received negotiation data, received negotiation data is returned using after the key base progress area Jin Zao mapping to the opposite end
It returns.
Similarly, key distribution module 602 also can also be used to receive opposite end for the negotiation data being randomly generated use
When key base carries out the signal sent after the mapping of the area Jin Zao, received signal is subjected to the area Jin Zao demapping using the key base
After obtaining received negotiation data, to the opposite end after using the key base to carry out the mapping of the area Jin Zao received negotiation data
It returns.
Key generation method proposed by the present invention based on the adjustment of bit error rate parameter adaptive, extracts light by double-end measurement
The communication physical layer channel characteristics bit error rate generates key.Utilize physical layer channel intrinsic randomness feature (temperature, pressure, vibration
It is dynamic), the available very high key of randomness.It can be converted simultaneously according to environment, parameter is adjusted flexibly, dynamic adapting environment
Variation, adaptive quantizing generate key, extract available key.Due to both ends simultaneously survey identical channel, can obtain compared with
Good consistency.The intrinsic noise of channel, enhances the randomness of key.Therefore the present invention solves channel safety feature extraction
Negotiate key technology with consistency, to ensure heterogeneite, randomness and independence.
That is, using the physical characteristic bit error rate of channel itself, and adaptively being adjusted in technical solution of the present invention
The measurement of the bit error rate or quantization parameter generate the Integrity Key for two clients being in communication with each other by bit error rate quantization;By
Mainly pass through the variation situation of the characteristic quantity bit error rate for the channel that analysis both sides share, adaptive quantity metaplasia in communicating pair
At Integrity Key, therefore, Fang Ze is eavesdropped as the third party for not sharing the channel and is difficult to detect identical error rate characteristics
Amount, is also just difficult to obtain key, to have randomness strong, privacy degrees are high, it is difficult to the advantage that the side of being ravesdropping intercepts and captures, meanwhile,
It is compatible with existing information Transmission system without being transformed to route without being equipped with additional cipher key distributor part etc., be conducive to
Save the cost;And the present invention can be converted according to environment, flexibly, adaptively adjusted measurement or the quantization parameter of the bit error rate, moved
State adapts to the variation of environment, and adaptive quantizing generates key, extracts available key, improve the validity of key, to mention
High key usage generates the high rate key met the requirements and Integrity Key.
Those skilled in the art of the present technique have been appreciated that in the present invention the various operations crossed by discussion, method, in process
Steps, measures, and schemes can be replaced, changed, combined or be deleted.Further, each with having been crossed by discussion in the present invention
Kind of operation, method, other steps, measures, and schemes in process may also be alternated, changed, rearranged, decomposed, combined or deleted.
Further, in the prior art to have and the step in various operations, method disclosed in the present invention, process, measure, scheme
It may also be alternated, changed, rearranged, decomposed, combined or deleted.
It should be understood by those ordinary skilled in the art that: the discussion of any of the above embodiment is exemplary only, not
It is intended to imply that the scope of the present disclosure (including claim) is limited to these examples;Under thinking of the invention, above embodiments
Or can also be combined between the technical characteristic in different embodiments, step can be realized with random order, and be existed such as
Many other variations of the upper different aspect of the invention, for simplicity, they are not provided in details.Therefore, it is all
Within the spirit and principles in the present invention, any omission, modification, equivalent replacement, improvement for being made etc. be should be included in of the invention
Within protection scope.