CN109889335B - Novel high-safety optical link secret communication method based on random shunt encryption transmission - Google Patents
Novel high-safety optical link secret communication method based on random shunt encryption transmission Download PDFInfo
- Publication number
- CN109889335B CN109889335B CN201910131587.2A CN201910131587A CN109889335B CN 109889335 B CN109889335 B CN 109889335B CN 201910131587 A CN201910131587 A CN 201910131587A CN 109889335 B CN109889335 B CN 109889335B
- Authority
- CN
- China
- Prior art keywords
- stream
- module
- self
- encryption
- random
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Abstract
The invention discloses a novel high-safety optical link secret communication method based on random shunt encryption transmission, wherein an optical link secret communication device comprises 1 self-synchronizing sequence encryption module, 1 self-synchronizing sequence decryption module, 2 outer synchronizing sequence encryption modules, 2 outer synchronizing sequence decryption modules, 1 quantum true random bit stream generator module, 1 randomized shunt sending module and 1 random stream combining receiving module, and two paths consisting of the randomized shunt sending module, the outer synchronizing sequence encryption module, an SDH (synchronous digital hierarchy) optical fiber transmission device, the outer synchronizing sequence decryption module and the random stream combining receiving module are sequentially arranged between the self-synchronizing sequence encryption module and the self-synchronizing sequence decryption module. The method described by the invention has the capability of resisting decoding analysis attacks implemented by adversaries with the strong computing power of high-performance computers including quantum computing, and can realize high-security secret communication on wide-area optical transmission links deployed on the sea bottom and on land.
Description
Technical Field
The invention relates to a novel high-safety optical link secret communication method based on random shunt encryption transmission.
Background
At present, developed countries compete to develop high-performance computing technologies, especially powerful novel computing technologies such as quantum computing, neural network computing and cloud computing, and the like, progress rapidly, and with continuous breakthrough progress of cryptographic analysis and decryption technologies, great security threats are formed on traditional link secret communication transmission modes.
In the existing wide area secure communication network, remote link connection is mainly realized in an optical fiber transmission mode, an optical fiber transmission link is insensitive to light signal eavesdropping, and an adversary can easily implement midway eavesdropping, so that complete ciphertext information contained in an optical link transmission code stream is obtained, and further advanced novel high-performance computing technology is adopted to implement deciphering analysis to recover a plaintext data stream of communication.
Disclosure of Invention
Aiming at overcoming the defects in the prior art, the invention provides a novel high-safety optical link secret communication method jointly by adopting two encryption protection mechanisms of quantum true random stream encryption and sequence encryption aiming at the huge safety threat of an optical link eavesdropping means and a rapidly developed high-performance computing technology to optical transmission secret communication.
In the novel high-security optical link secret communication method provided by the invention, the frame format characteristic of a link transmission clear data stream is covered by a self-synchronizing sequence encryption algorithm, and then the self-synchronizing encryption stream is subjected to randomized shunting by a quantum random bit stream, so that the one-time pad transmission encryption protection is realized. Then, the external synchronous sequence encryption algorithm is used for respectively carrying out external synchronous sequence encryption on the shunted randomized code streams to form two paths of independent external synchronous sequence encryption streams which are respectively transmitted by the two optical links. At the receiving end of the optical link, after the two separately transmitted external synchronous sequence encrypted streams are decrypted by the external synchronous sequence, the combined stream is decrypted by the self-adaptive bit stream shift alignment combination control, and the clear data stream with the link frame format sent by the opposite end of the link is recovered.
In the new high-safety optical link secret communication method, the external synchronous sequence encryption input of the sending end is true random shunt of the link digital stream, the processing mechanism enables the input code stream and the output code stream of the outer synchronous sequence cipher algorithm to have true random characteristics, the encrypted output stream is never repeated, any characteristic possibly utilized by the cryptoanalysis in the link data code stream is thoroughly eliminated, the current mainstream cryptoanalysis decoding method based on the corresponding relation of the plaintext and the ciphertext is difficult to work, an adversary is forced to carry out the joint analysis decoding on the two paths of sequence encrypted streams in the whole key space, the calculation amount and the storage space required by the decoding analysis are far more than the calculation amount and the storage space required by the decoding of the existing sequence cipher, therefore, the system has the capability of resisting the adversary to adopt optical link monitoring and apply the powerful calculation force of a high-performance computer to implement deciphering analysis attack. The two security protection mechanisms mutually enhance the security of each other, the sequence encryption mechanism ensures the security completeness of realizing the communication protection by the one-time pad, and the one-time pad security mechanism of the randomized shunting greatly improves the difficulty of an adversary in cracking the sequence encryption. Therefore, the technical method provided by the invention can realize high-safety secret communication transmission on the optical transmission link.
The technical scheme adopted by the invention for solving the technical problems is as follows: a novel high-safety optical link secret communication method based on random shunt encryption transmission comprises 1 self-synchronizing sequence encryption module, 1 quantum true random bit stream generator module, 1 random shunt sending module, 2 outer synchronizing sequence encryption modules, 2 outer synchronizing sequence decryption modules, 1 random flow combining receiving module and 1 self-synchronizing sequence decryption module. Two paths consisting of a randomized shunt sending module, an outer synchronous sequence encryption module, SDH optical fiber transmission equipment, an outer synchronous sequence decryption module and a random flow combining receiving module are sequentially arranged between the self-synchronous sequence encryption module and the self-synchronous sequence decryption module.
Compared with the prior art, the invention has the following positive effects:
the novel high-safety optical link secret communication method provided by the invention adopts a communication protection mechanism of link code stream randomized shunting and sequence cipher double encryption transmission, the one-time pad safety mechanism of the link code stream randomization greatly improves the difficulty of an adversary in cracking sequence encryption, the sequence encryption mechanism also ensures the safety completeness of the one-time pad realization, the two safety protection mechanisms mutually enhance the safety of each other, form encryption deadlock which is extremely difficult to crack, force the adversary to carry out joint analysis and decoding of a full key space on two paths of sequence encryption streams, and the required calculation time and storage space cost are far higher than those of the existing method. Therefore, the technical method provided by the invention has the capability of resisting decoding analysis attacks implemented by adversaries with the strong computing power of high-performance computers including quantum computing, and can realize high-security secret communication on wide-area optical transmission links deployed on the sea bottom and on land.
Drawings
The invention will now be described, by way of example, with reference to the accompanying drawings, in which:
FIG. 1 is a schematic diagram of a novel high-security optical link secure communication method;
fig. 2 is a schematic diagram of link random stream combining reception.
Detailed Description
Technical architecture of novel high-safety optical link secret communication method
The core idea of the novel high-security optical link secret transmission method provided by the invention is mainly to implement true randomization (one-time pad) shunt transmission on a data stream (encrypted by a self-synchronizing sequence) transmitted by a link and organically combine the true random bit stream encryption and the traditional sequence cipher encryption. The method comprises the steps that a quantum true random bit stream with constant output and the same link rate as the link rate is used for carrying out randomized shunting (shunting) on a link data code stream (encrypted by a self-synchronizing sequence), all format characteristics of the data stream transmitted on a link are covered by a randomized shunting mechanism, and meanwhile, true random stream encryption of one-time pad is realized due to the true random characteristic of the quantum random bit stream; then, the true random code stream of the one-time pad is subjected to security protection by a sequence encryption means. After the random stream of the one-time pad is encrypted by the external synchronous sequence, the output sequence encrypted bit streams are independently transmitted on two different optical links (different wavelengths of the same optical fiber or different fiber cores of the same optical cable).
In order to solve the problem of transmission delay difference when two paths of random streams reach a receiving end, the receiving end adopts self-adaptive bit shift alignment control to realize the correct combination of two paths of one-time pad random code streams and recover the 'clear code' data stream transmitted by the source end of a link.
The randomized shunting mechanism not only realizes the encryption protection of one-time pad, but also prevents the enemy from obtaining the real 'clear code' data stream transmitted on the link through the analysis and decoding calculation of the sequence encryption stream of the single optical link, and forces the enemy to carry out exhaustive calculation aiming at all keys jointly on the two paths of sequence encryption streams, and the calculation time and the storage space required by the analysis and decoding calculation far exceed the expense of cracking the single-path sequence cipher. Therefore, the novel high-safety optical link secret transmission method provided by the invention can very effectively resist the deciphering analysis attack of a high-performance computer with strong calculation power including quantum calculation.
The invention does not relate to the specific realization of key negotiation distribution between communication security devices at two ends of an optical link, and does not relate to the specific realization of a high-speed quantum true random stream generator and an adopted sequence encryption/decryption module.
1. Technical architecture for realizing novel high-safety optical link transmission secret communication method
In the novel high-security optical link transmission security communication method provided by the invention, the structure of the optical link communication security device is shown in fig. 1. The optical link communication security device mainly comprises 9 modules including 2 self-synchronizing sequence encryption/decryption modules, 4 outer synchronizing sequence encryption/decryption modules, 1 quantum true random bit stream generator module, 1 randomized shunt sending module and 1 random stream combiner receiving module.
At an optical link sender, an optical link communication security device receives a plaintext data frame code stream encapsulated in an HDLC frame format on a local link (if the local link is an Ethernet link, the plaintext data frame code stream needs to be converted into an HDLC frame), the hidden link frame format is firstly processed through self-synchronizing sequence encryption, then the randomized shunt sending module carries out randomized shunt on the basis of a true random bit stream generated by a quantum true random bit stream generator module, meanwhile, encryption processing of one-time pad is realized, two paths of random encryption streams of one-time pad are formed, the random encryption streams are encrypted through an outer synchronizing sequence encryption module on the basis of different keys to form sequence encryption streams, and the sequence encryption streams are respectively transmitted on two optical links through SDH optical transmission equipment.
At the receiving end of the optical link, the optical link communication security device receives two paths of sequence encryption streams received by the SDH, the received sequence encryption streams are decrypted by the outer synchronization sequence decryption module of each path, a one-time-pad quantum random encryption stream is decrypted, then the random stream is processed by the random stream combining reception module, the combination of correct alignment of the reception shift of the two paths of quantum encryption bit streams is realized, a 'clear code' data stream which is transmitted on the link and is hidden in a frame format is recovered, the clear code data stream with the frame format is recovered through self-synchronization sequence decryption, and the clear code data stream is transmitted to the local switch by a local data link (if the local link is an ethernet link, the clear code data stream needs to be converted into an ethernet frame encapsulation format).
2. High-safety protection mechanism for realizing one-time pad based on randomized shunt transmission
The core of the novel high-safety optical link secret communication method provided by the invention is based on the idea of true randomized shunt transmission of link data flow, and the communication safety of 'one-time pad' is realized under the common assistance of a self-synchronizing sequence encryption mechanism and an outer synchronizing sequence encryption mechanism. The randomizing shunting mechanism carries out shunting operation on 'plaintext' data code streams sent by the link bit by bit based on quantum true random bit streams with constant rates generated in real time to obtain two paths of 'one-time pad' random encryption streams with the same rate as the local link. The encryption mechanism of the randomized distribution 'destroys' the integrity of the link data code stream and eliminates any characteristics in the link data code stream which may be utilized by cryptanalysis.
At the transmitting end, the randomized shunting operation based on the quantum true random stream can be expressed as follows:
the 1 st path of shunting operation:
and (3) path 2 shunting operation:
at the receiving end, the combining operation on the randomized code stream of the "one-time pad" can be expressed as:
wherein m isiPlaintext bit stream m representing link transmissioni' represents a clear code stream bit received by the link to
Represents the 1 st truly randomized data stream (input data bit stream of the 1 st out-of-sync sequence encryption module) to
Represents the 2 nd truly randomized data stream (input data bit stream of the 2 nd outer synchronous sequence encryption module) with kiRepresents the quantum true random stream bit to
The inversion operation of the quantum true random stream bit is represented, the inverted symbol represents the bit and operation, and the V-shaped symbol represents the bit or operation.
3. Coordination control mechanism for receiving random stream self-adaptive alignment combination and sequence encryption synchronization
Due to the fact that link length errors are easily formed in engineering implementation, link signal transmission delay differences can be caused. In addition, the optical signal may cause a difference in transmission delay between different optical fibers and different wavelengths. This may cause bit misalignment when the two random streams arrive at the combining module. The random flow self-adaptive alignment combining mechanism is used for solving the problem of dislocation of the receiving bit at the combining module.
In engineering implementation, if the geographical routes of the two optical fibers are different, a delay optical cable needs to be added at the receiving end of an optical link with a relatively short distance, and the total length difference of the two optical fibers is less than 10 meters and is about 10 meters5Considering the optical path transmission rate of km, a difference of 10 m in the length of the optical fiber will occurA transmission delay of 100 ns. For a data link transmitting at a hundred megabits rate, bit misalignment caused by 100ns will not exceed 1 bit. For a data link transmitting at gigabit rates, the bit misalignment caused by 100ns will not exceed 10 bits.
In the random stream combining receiving module, a 16-bit receiving alignment shift register is arranged for each path of received random stream, and the two paths of shift registers form a 16 × 16 shift matrix. Under the control of a receiving shift control logic circuit, one selection combination of the positions of two paths of combining input bits is executed every 1ms until at least 2 link frame interval marks appear in the link code stream output by the self-synchronizing decryption module. And when the shift register performs shift traversal of all bit position combinations in the shift matrix and no link frame interval mark appears in the output code stream of the self-synchronizing decryption module, repeating the operation of shift bit alignment. Fig. 2 shows an implementation principle of the random stream combining receiving module.
When the random stream combining and receiving module has performed 4 times of receiving shift combination traversal, and the output code stream of the self-synchronization decryption module does not receive the link frame interval identifier, if the external synchronization sequence encryption and decryption operations at the two ends of the optical link do not reach synchronization or step-out occurs, the external synchronization sequence encryption module is notified to forcibly send the inserted synchronization sequence code, and the external synchronization sequence decryption module at the opposite end also instructs the external synchronization sequence encryption module to forcibly send the inserted synchronization sequence code after receiving the synchronization sequence code.
4. Security enhancement mechanism based on true randomized encryption and sequence encryption dual encryption
The true random bit stream implements one-time pad encryption protection on the link frame code stream, so that the input of the outer synchronous sequence encryption is completely random digital stream, and the randomization mechanism thoroughly hides and 'destroys' all characteristic information of the link clear code stream. In order to ensure the completeness of the one-time pad encryption mechanism, a sequence encryption mechanism is used for providing strong security protection for two paths of one-time pad random streams generated by shunting.
If the adversary wants to decode one path of the sequence cipher stream, it must perform an exhaustive operation on the whole key space, and even if the adversary completes the exhaustive operation, it cannot know which key in the key space is correct because the adversary cannot decode the content of the decryption result.
When the key length is 256 bits, if the adversary uses a high-performance computer to perform deciphering, all keys in the key space must be executed for two optical links, and at the same time, exhaustive operation is executed, the operation result of each key is saved, and then a combination operation attempt is performed. When the key length is 256 bits, each path needs to be processed by 2256≈1.15792×1077The next sequence decryption operation and the need to save 2 × 1.15792 × 10 of the two-path sequence encrypted stream77And (6) a decryption result is obtained. Even if the enemy completes the combination operation of two paths of external synchronous sequence encryption and random stream by an exhaustion method, the plaintext code stream cannot be decoded due to the protection mechanism of the self-synchronous sequence encryption.
Therefore, the double encryption mechanism based on quantum true randomization encryption and external synchronous sequence encryption forces the enemy to traverse the whole key space for exhaustive operation even if knowing the sequence encryption algorithm adopted by the encryption device, and needs to store the decryption results of the two external synchronous sequence encryption streams first and then execute the joint decryption of the two random streams, thereby greatly increasing the difficulty of analysis and decryption of the enemy and greatly enhancing the security of optical link secret communication.
5. Security enhancement mechanism for encrypting, protecting and randomizing combination based on self-synchronizing sequence
Before true randomized shunting, self-synchronizing sequence encryption is carried out on plaintext frame data streams sent by a link in advance to hide frame format characteristic information in the data streams sent by the link, so that an adversary cannot judge whether decoding analysis is correct according to combined code streams decrypted by two paths of external synchronizing sequences, the adversary is forced to carry out exhaustive operation of traversing the whole key space, and the adversary cannot obtain correct plaintext data streams even if the exhaustive operation is completed. Therefore, the self-synchronizing sequence encryption mechanism protects the safety of the randomized combination operation.
(II) working process
1. Transmission encryption work flow of optical link communication security device
When the optical link communication security device is powered on, the following sending encryption processing steps are adopted:
the first step is as follows: the self-synchronizing sequence encryption module carries out sequence encryption on the link plaintext frame data code stream based on a pre-negotiated secret key k3, and conceals the frame format characteristics of the plaintext data code stream sent by the local link to form a self-synchronizing sequence encryption stream.
The second step is that: and the randomized shunt sending module carries out bit-by-bit randomized shunt processing on the self-synchronizing sequence encryption stream based on the quantum true random bit stream to form two paths of randomized transmission code streams. The 1 st randomized code stream is directly generated by logical AND operation based on the true random bit stream, and the 2 nd randomized code stream is generated by logical NOT inversion and then AND operation of the true random bit stream. If the quantum true random bit value is '1', the corresponding link data bit is shunted to the 1 st optical link, and the corresponding bit value of the 2 nd optical link is '0'; if the quantum true random bit value is '0', the corresponding link data bit is shunted to the 2 nd optical link, and the corresponding bit value of the 1 st optical link is '0'.
The third step: and each off-line synchronous sequence encryption module performs an off-line synchronous sequence encryption operation on the randomized transmission code stream generated by shunting by using different keys preset by key distribution protocol negotiation.
The fourth step: and the sequence encryption stream output by each off-line synchronous sequence encryption module is sent to the opposite end through the wide area optical fiber link by the optical transmission equipment SDH.
2. Receiving and decrypting work flow of optical link communication security device
When the optical link communication security device is powered on, the following receiving and decrypting processing steps are adopted:
the first step is as follows: the SDH directly transmits the received optical link sequence encrypted stream to the corresponding external synchronous sequence decryption module, and the external synchronous sequence decryption module decrypts the randomized shunt code stream sent by the opposite end of the link by the corresponding key preset by negotiation, and sends the randomized shunt code stream to the random stream combining and receiving module for processing.
The second step is that: the random flow combining receiving module adopts a self-adaptive combining receiving mechanism, a receiving alignment shift register with 16 bits is arranged in the random flow combining receiving module aiming at each path of received random flow, and the two paths of receiving alignment shift registers form a 16 multiplied by 16 shift matrix. And the random stream combining receiving module simultaneously controls the two paths of combining input bit selectors according to whether the link frame interval marks appear in the received code streams output by the self-synchronizing decryption module, and performs combining input selection control on the received two paths of randomized code streams bit. Under the control of receiving the combination input selection, executing a selection combination of the positions of the two combination input bits every 1ms, namely, staying for 1ms on each position combination of the shift bit, and ensuring that the output code stream of the self-synchronizing decryption module can at least detect two link frame interval identifications at the staying time interval in the shift alignment state. When the two paths of receiving shift traverse the whole shift matrix space and no link frame interval mark appears in the output code stream of the self-synchronizing decryption module, the operation of shift bit alignment is repeated. When at least two link frame interval identifications are detected in the output code stream of the self-synchronizing decryption module, the clear data communication at two ends of the optical link is shown to reach a correct link frame synchronization state, the shifting operation of the position of the random stream combining input bit is stopped, the position of the combining input bit of the two paths of random streams is kept until the link frame interval identifications cannot be detected in the output code stream of the self-synchronizing decryption module.
The third step: when the combined receiving shift search operation is traversed by 4 receiving shift matrixes, and no link frame interval identifier is detected in the output code stream of the self-synchronizing decryption module, the communication security devices at two ends of the optical link are out of synchronization of the external synchronizing sequence password decryption, and two external synchronizing sequence encryption modules at the end are immediately informed to send the password synchronizing sequence in a forced insertion mode; after the outer synchronous sequence decryption module of the opposite end detects the cryptosync sequence, the two outer synchronous sequence encryption modules send the response cryptosync sequence in a forced insertion mode. By executing the cooperative control of random stream combining-outer synchronous sequence cipher synchronization, the communication security devices at two ends of the optical link can quickly reach the sequence encryption/decryption synchronous state.
The fourth step: the self-synchronizing sequence decryption module carries out self-synchronizing decryption on the random stream output by the random stream self-adapting confluence module, recovers a plaintext frame format code stream transmitted by a link, and obtains a received data stream.
Claims (5)
1. A novel high-security optical link secret communication method based on random shunt encryption transmission is characterized in that: the optical link communication security device for realizing the communication method comprises 1 self-synchronizing sequence encryption module, 1 self-synchronizing sequence decryption module, 1 quantum true random bit stream generator module, 1 randomized shunt sending module, 2 outer synchronizing sequence encryption modules, 2 outer synchronizing sequence decryption modules and 1 random stream combining receiving module, wherein two paths consisting of the randomized shunt sending module, the outer synchronizing sequence encryption module, the SDH optical fiber transmission equipment, the outer synchronizing sequence decryption module and the random stream combining receiving module are sequentially arranged between the self-synchronizing sequence encryption module and the self-synchronizing sequence decryption module; the encryption work flow of the optical link sending end is as follows:
firstly, a self-synchronizing sequence encryption module carries out sequence encryption on a link plaintext data code stream based on a pre-negotiated key, and conceals the frame format characteristics of the plaintext data code stream sent by a local link to form a self-synchronizing sequence cipher stream;
secondly, the randomized shunt sending module carries out bit-by-bit randomized shunt processing on the self-synchronizing sequence cipher stream based on the quantum true random bit stream to form two paths of randomized transmission code streams;
thirdly, each off-line synchronous sequence encryption module performs external synchronous sequence encryption operation on the randomized transmission bit stream generated by shunting by using different keys preset by key distribution protocol negotiation;
and fourthly, the sequence encryption stream output by each off-line synchronous sequence encryption module is transmitted to SDH optical fiber transmission equipment at the receiving end of the optical link through a wide area optical fiber link by the SDH optical fiber transmission equipment.
2. The novel high-security optical link secret communication method based on random shunt encryption transmission according to claim 1, characterized in that: in the two paths of randomized transmission code streams, one path of randomized code stream is generated by logical AND operation directly based on the true random bit stream, and the other path of randomized code stream is generated by logical AND operation after logical NOT inversion of the true random bit stream.
3. The novel high-security optical link secret communication method based on random shunt encryption transmission according to claim 1, characterized in that: the decryption work flow of the optical link receiving end is as follows:
the SDH directly transmits the sequence encryption stream received from the optical link to a corresponding outer synchronization sequence decryption module, the outer synchronization sequence decryption module decrypts the randomized shunt code stream sent by the opposite end of the link by a corresponding key preset by key distribution protocol negotiation, and the randomized shunt code stream is sent to a random stream combining and receiving module for processing;
secondly, the random stream combining and receiving module adopts self-adaptive bit shift alignment control to realize the correct combination of two paths of one-time pad random code streams, recovers a self-synchronizing sequence cipher stream and delivers the self-synchronizing sequence cipher stream to the self-synchronizing sequence decryption module for processing;
and thirdly, the self-synchronizing sequence decryption module carries out self-synchronizing sequence decryption on the self-synchronizing sequence cipher stream output by the random stream self-adaptive confluence module based on a pre-negotiated secret key, and recovers a plaintext frame format code stream transmitted by a link to obtain a received data stream.
4. The novel high-security optical link secret communication method based on random shunt encryption transmission according to claim 1, characterized in that: the random stream combining receiving module adopts a self-adaptive combining receiving mechanism, simultaneously controls two paths of combining input bit selectors according to whether a link frame interval mark appears in a receiving code stream output by the self-synchronous decryption module, and performs combining input selection control on the two received paths of random code streams bit: stay for 1ms on the position combination of each shift bit selector to ensure that at least two link frame interval identifications can be detected in the stay time interval in the shift alignment state; when the two paths of receiving shift traverse the whole shift matrix space and no link frame interval mark appears in the output code stream of the self-synchronizing decryption module, the operation of shift bit alignment is repeated; when at least two link frame interval marks are detected in the output code stream of the self-synchronizing decryption module, the shifting operation of the position of the combining input bit of the random stream is stopped, and the position of the combining input bit of the two paths of random streams is kept unchanged until the link frame interval marks are not detected.
5. The novel high-security optical link secret communication method based on random shunt encryption transmission according to claim 4, wherein: the random stream combining and receiving module adopts a sequence password synchronization mechanism of cooperative control, and when the combining and receiving shift search operation is traversed by 4 times of receiving shift matrixes and no link frame interval identifier is detected in the code stream output by the self-synchronizing decryption module, two paths of external synchronizing sequence encryption modules at the local end are immediately informed to send a password synchronization sequence in a forced insertion mode; after the outer synchronous sequence decryption module of the opposite end detects the cryptosync sequence, the two outer synchronous sequence encryption modules send the response cryptosync sequence in a forced insertion mode.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910131587.2A CN109889335B (en) | 2019-02-22 | 2019-02-22 | Novel high-safety optical link secret communication method based on random shunt encryption transmission |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910131587.2A CN109889335B (en) | 2019-02-22 | 2019-02-22 | Novel high-safety optical link secret communication method based on random shunt encryption transmission |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN109889335A CN109889335A (en) | 2019-06-14 |
| CN109889335B true CN109889335B (en) | 2021-07-09 |
Family
ID=66928904
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910131587.2A Active CN109889335B (en) | 2019-02-22 | 2019-02-22 | Novel high-safety optical link secret communication method based on random shunt encryption transmission |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109889335B (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110798311B (en) * | 2019-10-15 | 2021-12-17 | 中国电子科技集团公司第三十研究所 | IP encryption method for realizing one-time pad based on quantum true random number matrix |
| CN111555817B (en) * | 2020-05-09 | 2021-04-02 | 国网江苏省电力有限公司无锡供电分公司 | Differential modulation safety optical communication method and device based on coherent optical system |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101854566A (en) * | 2009-04-02 | 2010-10-06 | 华为技术有限公司 | Passive optical network protection method and active/standby switch device and system |
| CN102368704A (en) * | 2011-10-20 | 2012-03-07 | 西南大学 | Encryption and decryption methods and systems thereof for hardware of superspeed optical packet switching network |
| CN102684810A (en) * | 2012-01-18 | 2012-09-19 | 徐志国 | Optical network protection method, optical link switching control device and optical link switching control system |
| CN104848880A (en) * | 2015-05-26 | 2015-08-19 | 电子科技大学 | Quasi-distributed optical sensing device based on light quantum technology |
| CN106026353A (en) * | 2016-05-13 | 2016-10-12 | 联想(北京)有限公司 | Electronic device and control method |
| CN106340222A (en) * | 2016-10-18 | 2017-01-18 | 浙江神州量子网络科技有限公司 | Teaching demonstration apparatus combining quantum cryptography communication with fiber eavesdropping |
| WO2016190912A8 (en) * | 2015-01-26 | 2017-09-14 | Adventive Ipbank | Secure dynamic communication network and protocol |
| CN108092769A (en) * | 2014-02-28 | 2018-05-29 | 山东量子科学技术研究院有限公司 | The reliable encryption transmission system of quantum cryptography networks and method |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7848517B2 (en) * | 2005-03-16 | 2010-12-07 | At&T Intellectual Property Ii, L.P. | Secure open-air communication system utilizing multi-channel decoyed transmission |
-
2019
- 2019-02-22 CN CN201910131587.2A patent/CN109889335B/en active Active
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101854566A (en) * | 2009-04-02 | 2010-10-06 | 华为技术有限公司 | Passive optical network protection method and active/standby switch device and system |
| CN102368704A (en) * | 2011-10-20 | 2012-03-07 | 西南大学 | Encryption and decryption methods and systems thereof for hardware of superspeed optical packet switching network |
| CN102684810A (en) * | 2012-01-18 | 2012-09-19 | 徐志国 | Optical network protection method, optical link switching control device and optical link switching control system |
| CN108092769A (en) * | 2014-02-28 | 2018-05-29 | 山东量子科学技术研究院有限公司 | The reliable encryption transmission system of quantum cryptography networks and method |
| WO2016190912A8 (en) * | 2015-01-26 | 2017-09-14 | Adventive Ipbank | Secure dynamic communication network and protocol |
| CN104848880A (en) * | 2015-05-26 | 2015-08-19 | 电子科技大学 | Quasi-distributed optical sensing device based on light quantum technology |
| CN106026353A (en) * | 2016-05-13 | 2016-10-12 | 联想(北京)有限公司 | Electronic device and control method |
| CN106340222A (en) * | 2016-10-18 | 2017-01-18 | 浙江神州量子网络科技有限公司 | Teaching demonstration apparatus combining quantum cryptography communication with fiber eavesdropping |
Non-Patent Citations (2)
| Title |
|---|
| "Beneficial OLT transmitter and receiver concepts for NG-PON2 using semiconductor optical amplifiers";Bonk R;《Beneficial OLT transmitter and receiver concepts for NG-PON2 using semiconductor optical amplifiers》;20151231;全文 * |
| "量子保密通信研究进展与安全性分析";赖俊森;《电信科学》;20150620;全文 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN109889335A (en) | 2019-06-14 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP0752772B1 (en) | Cryptographic system for wireless communications | |
| US8995652B1 (en) | Streaming one time pad cipher using rotating ports for data encryption | |
| US6351539B1 (en) | Cipher mixer with random number generator | |
| US11792168B2 (en) | Streaming one time pad virtual private network | |
| CN102208976B (en) | Coding vector encryption based secure network coding method | |
| WO2008005913A2 (en) | Method and apparatus for secure communications | |
| CN110011786B (en) | High-safety IP secret communication method | |
| CN109889335B (en) | Novel high-safety optical link secret communication method based on random shunt encryption transmission | |
| CN110071943B (en) | Compound high-safety IP secret communication method with truly random change of secret key | |
| CN110798311B (en) | IP encryption method for realizing one-time pad based on quantum true random number matrix | |
| CN107800534A (en) | A kind of data ciphering method and decryption method based on multi-chain circuit transmission | |
| US20140044262A1 (en) | Low Latency Encryption and Authentication in Optical Transport Networks | |
| CN110855438B (en) | Quantum key distribution method and system based on annular QKD network | |
| US20060147041A1 (en) | DES algorithm-based encryption method | |
| Lo et al. | Quantum cryptography: from theory to practice | |
| CN107070637A (en) | A kind of data encryption/decryption method of overlapping packet | |
| TW202031008A (en) | A mixing double encryption and decryption system | |
| JPWO2006104090A1 (en) | Optical transmission apparatus and method for ciphertext transmission | |
| EP3457601B1 (en) | A method for sending digital data over a number of channels | |
| CN110213257B (en) | High-safety IP secret communication method based on true random stream exclusive or encryption | |
| JP2011077995A (en) | Quantum encryption key distribution system | |
| JP2006157639A (en) | Cipher transmitter | |
| TW202031009A (en) | A double encryption and decryption system | |
| RU2730397C2 (en) | Device for encrypted transmission of messages with short aging time of information | |
| EP4123957A1 (en) | A method and system for performing a secure key relay of an encryption key |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |