CN110719164A - Quantum offline key synchronization time service method - Google Patents

Quantum offline key synchronization time service method Download PDF

Info

Publication number
CN110719164A
CN110719164A CN201910938635.9A CN201910938635A CN110719164A CN 110719164 A CN110719164 A CN 110719164A CN 201910938635 A CN201910938635 A CN 201910938635A CN 110719164 A CN110719164 A CN 110719164A
Authority
CN
China
Prior art keywords
mobile terminal
key
quantum
keys
time
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201910938635.9A
Other languages
Chinese (zh)
Inventor
王勇
高鹏
李建辉
叶萌
于国际
黄观金
陈创波
周华旭
徐立坤
王伟
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Information Communication Branch of Peak Regulation and Frequency Modulation Power Generation of China Southern Power Grid Co Ltd
Original Assignee
Information Communication Branch of Peak Regulation and Frequency Modulation Power Generation of China Southern Power Grid Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Information Communication Branch of Peak Regulation and Frequency Modulation Power Generation of China Southern Power Grid Co Ltd filed Critical Information Communication Branch of Peak Regulation and Frequency Modulation Power Generation of China Southern Power Grid Co Ltd
Priority to CN201910938635.9A priority Critical patent/CN110719164A/en
Publication of CN110719164A publication Critical patent/CN110719164A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0852Quantum cryptography
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04JMULTIPLEX COMMUNICATION
    • H04J3/00Time-division multiplex systems
    • H04J3/02Details
    • H04J3/06Synchronising arrangements
    • H04J3/0635Clock or time synchronisation in a network
    • H04J3/0638Clock or time synchronisation among nodes; Internode synchronisation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0891Revocation or update of secret information, e.g. encryption key update or rekeying

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • Electromagnetism (AREA)
  • Theoretical Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The invention discloses a quantum off-line key synchronization time service method.A quantum key management center encrypts a group of keys K by using K1 and sends the keys K to a mobile terminal N, and the mobile terminal 1 decrypts by using a preset key K1 to obtain the key K; the quantum key management center encrypts a group of keys K by using KN and sends the keys K to the mobile terminal N, and the mobile terminal N decrypts the keys K by using a preset key KN to obtain the keys K; the quantum key management center initiates a time synchronization command to the mobile terminal 1 and the mobile terminal N; the quantum key management center, the mobile terminal 1 and the mobile terminal N realize time synchronization through a GPS technology and mutually inform that the synchronization is finished; the mobile terminal 1 initiates a communication request to the mobile terminal N, wherein the communication request comprises the time for initiating the communication request; the mobile terminal 1 and the mobile terminal N select the serial number of the encryption and decryption key according to the time of initiating the communication request. The invention has low cost and high time precision, and can effectively improve the success rate of synchronous updating of the quantum off-line key.

Description

Quantum offline key synchronization time service method
Technical Field
The invention relates to a quantum key updating method, in particular to a time service method for quantum off-line key synchronization.
Background
The quantum cipher belongs to a symmetric cipher system, the distribution of the key is realized by professional quantum key distribution equipment, the keys at two ends are stored in a key pool, and the key copied from the quantum key pool by using the mobile storage medium is called as a quantum off-line key. With the continuous development of mobile communication networks, mobile information security is more and more emphasized by people, and the security of mobile service information can be greatly improved by using quantum offline keys.
The symmetric key is required to be continuously and synchronously updated in the process of encrypting the mobile service data, if two communication parties cannot synchronously update the key, the keys used for encryption and decryption at two ends are inconsistent, and finally the quantum secret mobile communication fails. There are several methods for synchronously updating the key in the process of encrypting the mobile service data, and one more accurate method is to select the key according to a uniform clock, that is, to select the corresponding quantum off-line key as the key requested this time according to the time requested by the key. Therefore, obtaining uniform time is the key to whether quantum offline key synchronization is successful or not.
Disclosure of Invention
Aiming at the defects of the prior art, the invention provides a quantum off-line key synchronization time service method, which effectively solves the problem of time synchronization between mobile communication equipment and quantum key service equipment.
In order to achieve the technical purpose, the invention adopts the technical scheme that: the quantum off-line key synchronization time service method is characterized by comprising the following steps:
1) adding a GPS time synchronization function module in the mobile terminal;
2) connecting the GPS time synchronization device with a quantum key management center;
3) the mobile terminal 1 presets a quantum offline key K1, the mobile terminal 2 presets a quantum offline key K2, and so on, the mobile terminal N presets a quantum offline key KN;
4) the mobile terminal 1 initiates a communication request with the mobile terminal N to the vector subkey management center;
5) the quantum key management center encrypts a group of keys K by using K1 and sends the keys K to the mobile terminal N, and the mobile terminal 1 decrypts the keys K by using a preset key K1 to obtain the keys K;
6) the quantum key management center encrypts a group of keys K by using KN and sends the keys K to the mobile terminal N, and the mobile terminal N decrypts the keys K by using a preset key KN to obtain the keys K;
7) the quantum key management center initiates a time synchronization command to the mobile terminal 1 and the mobile terminal N;
8) the quantum key management center, the mobile terminal 1 and the mobile terminal N realize time synchronization through a GPS technology and mutually inform that the synchronization is finished;
9) the mobile terminal 1 initiates a communication request to the mobile terminal N, wherein the communication request comprises the time for initiating the communication request;
10) the mobile terminal 1 and the mobile terminal N select the serial number of the encryption and decryption key, i.e. the key serial number in the key K, according to the time of initiating the communication request.
Further, in step 2), a GPS time synchronizer is placed outside the machine room where the quantum key management center is placed, and is connected with the quantum key management center.
Further, the encryption algorithm in steps 5) and 6) is as follows: a quotient cipher, DES, or a one-time pad xor encryption algorithm.
Further, in step 10), the serial number of the encryption/decryption key is selected according to the following formula:
Figure BDA0002222272780000031
wherein, I is the key number, T1 is the encryption key request time, T is the key update period, and M is the start time of the key validity period.
As shown in fig. 1, a quantum key management center manages a quantum offline key, and a mobile terminal carries the quantum offline key. Each mobile terminal and the quantum key management center have a pair of different keys, if the mobile terminal 1 wants to communicate with the mobile terminal 2, the quantum key management center needs to perform key agreement, that is, the quantum key management center encrypts the same group of keys by using K1 and K2 and distributes the same group of keys to the mobile terminal 1 and the mobile terminal 2 as communication keys respectively. The updating synchronization of the key adopts a time synchronization mode. As shown in fig. 2, the communication module is used for completing mobile service data communication; the quantum encryption and decryption module performs encryption/decryption operation on communication data by using a quantum key, and the encryption algorithm supports the existing algorithms such as a quotient cipher, a DES (data encryption standard) and the like and also supports the XOR encryption of a one-time pad; the quantum cryptography storage module stores a safe storage area of the quantum key, and the quantum key in the quantum cryptography storage module is called when the quantum cryptography storage module needs the quantum key; the quantum cipher management module manages a quantum key to realize key synchronization, acquisition, storage, expansion and lamp deletion operations, and other quantum cipher related modules work under the management of the quantum cipher management module; the quantum password acquisition module is responsible for quantum keys and supports the modes of on-line key acquisition, off-line key acquisition and the like, and interfaces can adopt RJ45, an encrypted USB, an encrypted TF card, Bluetooth and the like as required; GPS time synchronization module: and time is acquired from a GPS and a Beidou satellite, and the time is given to the vector sub-password management module. As shown in fig. 3, because the quantum key management center is generally placed in a machine room, the GPS communication quality may be poor, the time service operation may be completed by placing a GPS time synchronizer outdoors and connecting the GPS time synchronizer with the quantum key management center, and the GPS time synchronizer may be a GPS or beidou time synchronizer, which is connected to the quantum key management center independently and isolated from the quantum key management) key storage module.
Has the advantages that: the invention realizes the time synchronization between the mobile terminal, the quantum key management center and other equipment by utilizing a GPS time service mode, has low cost and high time precision, can effectively improve the success rate of the quantum off-line key synchronous updating, and is suitable for scenes with high key updating frequency.
Drawings
Fig. 1 is a schematic diagram of a mobile quantum secure communication link according to the present invention.
Fig. 2 is a schematic flow chart of the encryption principle of the mobile terminal of the present invention.
Fig. 3 is a schematic diagram of the time service principle of the quantum key management center of the invention.
Detailed Description
The present invention is further illustrated by the following description in conjunction with the accompanying drawings, which are to be construed as merely illustrative and not limitative of the remainder of the disclosure, and on reading the disclosure, various equivalent modifications thereof will become apparent to those skilled in the art and fall within the limits of the appended claims.
Example 1
As shown in fig. 1, fig. 2 and fig. 3, the online updating method for the quantum security gateway key includes the following steps:
1) adding a GPS time synchronization function module in an original mobile terminal;
2) and a GPS time synchronization device is arranged outside the machine room where the quantum key management center is arranged and is connected with the quantum key management center.
3) The mobile terminal 1 presets a quantum offline key K1, and the mobile terminal 2 presets a quantum offline key K2;
4) the mobile terminal 1 initiates a communication request with the mobile terminal 2 to the vector subkey management center;
5) the quantum key management center encrypts a group of keys K by using K1 and sends the keys K to the mobile terminal 1, and the mobile terminal 1 decrypts the keys K by using a preset key K1 to obtain the keys K;
6) the quantum key management center encrypts a group of keys K by using K2 and sends the keys K to the mobile terminal 2, and the mobile terminal 2 decrypts the keys K by using a preset key K2 to obtain the keys K;
7) a quantum key management center initiates a time synchronization command to a mobile terminal 1) and a mobile terminal 2;
8) quantum key management center) mobile terminal 1) mobile terminal 2 realizes time synchronization by GPS technology and mutually informs completion of synchronization;
9) the mobile terminal 1 initiates a communication request to the mobile terminal 2, wherein the communication request comprises the time for initiating the communication request;
10) the mobile terminal 1 and the mobile terminal 2 select the serial number of the encryption and decryption key, namely the key serial number in the key K, according to the time of initiating the communication request.
The scope of the present invention includes, but is not limited to, the above embodiments, and the present invention is subject to the appended claims, and any alterations, modifications, and improvements that can be easily made by those skilled in the art are within the scope of the present invention.

Claims (4)

1. The quantum off-line key synchronization time service method is characterized by comprising the following steps:
1) adding a GPS time synchronization function module in the mobile terminal;
2) connecting the GPS time synchronization device with a quantum key management center;
3) the mobile terminal 1 presets a quantum offline key K1, the mobile terminal 2 presets a quantum offline key K2, and so on, the mobile terminal N presets a quantum offline key KN;
4) the mobile terminal 1 initiates a communication request with the mobile terminal N to the vector subkey management center;
5) the quantum key management center encrypts a group of keys K by using K1 and sends the keys K to the mobile terminal N, and the mobile terminal 1 decrypts the keys K by using a preset key K1 to obtain the keys K;
6) the quantum key management center encrypts a group of keys K by using KN and sends the keys K to the mobile terminal N, and the mobile terminal N decrypts the keys K by using a preset key KN to obtain the keys K;
7) the quantum key management center initiates a time synchronization command to the mobile terminal 1 and the mobile terminal N;
8) the quantum key management center, the mobile terminal 1 and the mobile terminal N realize time synchronization through a GPS technology and mutually inform that the synchronization is finished;
9) the mobile terminal 1 initiates a communication request to the mobile terminal N, wherein the communication request comprises the time for initiating the communication request;
10) the mobile terminal 1 and the mobile terminal N select the serial number of the encryption and decryption key according to the time of initiating the communication request.
2. The sub-offline key synchronization time service method according to claim 1, wherein: and 2) placing a GPS time synchronization device outside a machine room where the quantum key management center is placed, and connecting the GPS time synchronization device with the quantum key management center.
3. The sub-offline key synchronization time service method according to claim 1, wherein: the encryption algorithm in the steps 5) and 6) is as follows: a quotient cipher, DES, or a one-time pad xor encryption algorithm.
4. The sub-offline key synchronization time service method according to claim 1, wherein: in step 10), the serial number of the encryption and decryption key is selected by the following formula:
Figure FDA0002222272770000021
wherein, I is the key number, T1 is the encryption key request time, T is the key update period, and M is the start time of the key validity period.
CN201910938635.9A 2019-09-30 2019-09-30 Quantum offline key synchronization time service method Pending CN110719164A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910938635.9A CN110719164A (en) 2019-09-30 2019-09-30 Quantum offline key synchronization time service method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910938635.9A CN110719164A (en) 2019-09-30 2019-09-30 Quantum offline key synchronization time service method

Publications (1)

Publication Number Publication Date
CN110719164A true CN110719164A (en) 2020-01-21

Family

ID=69211226

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910938635.9A Pending CN110719164A (en) 2019-09-30 2019-09-30 Quantum offline key synchronization time service method

Country Status (1)

Country Link
CN (1) CN110719164A (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112153583A (en) * 2020-09-28 2020-12-29 中国电子科技集团公司第五十四研究所 Multi-key negotiation method for encryption and decryption services
CN113111372A (en) * 2021-05-06 2021-07-13 安徽华典大数据科技有限公司 Terminal data cloud system and cloud method based on quantum key encryption
CN115915119A (en) * 2022-12-21 2023-04-04 北方雷科(安徽)科技有限公司 Implementation method for Beidou quantum encrypted communication
CN115941182A (en) * 2023-02-21 2023-04-07 浙江国利信安科技有限公司 Method, computing device and storage medium for network key update

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102281136A (en) * 2011-07-28 2011-12-14 中国电力科学研究院 Quantum key distribution system for safety communication of electric vehicle intelligent charging network
CN105337726A (en) * 2015-04-06 2016-02-17 安徽问天量子科技股份有限公司 End-to-end hand-held device encryption method based on quantum cryptography and system
CN105846995A (en) * 2015-12-10 2016-08-10 安徽问天量子科技股份有限公司 Vo LTE (Voice over LTE) quantum encryption terminal and encryption method
WO2018017168A2 (en) * 2016-04-21 2018-01-25 Alibaba Group Holding Limited System and method for encryption and decryption based on quantum key distribution
CN108429618A (en) * 2018-05-16 2018-08-21 安徽问天量子科技股份有限公司 A kind of the symmetric key synchronous method and device of no channel

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102281136A (en) * 2011-07-28 2011-12-14 中国电力科学研究院 Quantum key distribution system for safety communication of electric vehicle intelligent charging network
CN105337726A (en) * 2015-04-06 2016-02-17 安徽问天量子科技股份有限公司 End-to-end hand-held device encryption method based on quantum cryptography and system
CN105846995A (en) * 2015-12-10 2016-08-10 安徽问天量子科技股份有限公司 Vo LTE (Voice over LTE) quantum encryption terminal and encryption method
WO2018017168A2 (en) * 2016-04-21 2018-01-25 Alibaba Group Holding Limited System and method for encryption and decryption based on quantum key distribution
CN108429618A (en) * 2018-05-16 2018-08-21 安徽问天量子科技股份有限公司 A kind of the symmetric key synchronous method and device of no channel

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112153583A (en) * 2020-09-28 2020-12-29 中国电子科技集团公司第五十四研究所 Multi-key negotiation method for encryption and decryption services
CN113111372A (en) * 2021-05-06 2021-07-13 安徽华典大数据科技有限公司 Terminal data cloud system and cloud method based on quantum key encryption
CN113111372B (en) * 2021-05-06 2023-09-22 安徽华典大数据科技有限公司 Terminal data cloud loading system and method based on quantum key encryption
CN115915119A (en) * 2022-12-21 2023-04-04 北方雷科(安徽)科技有限公司 Implementation method for Beidou quantum encrypted communication
CN115941182A (en) * 2023-02-21 2023-04-07 浙江国利信安科技有限公司 Method, computing device and storage medium for network key update
CN115941182B (en) * 2023-02-21 2024-01-30 浙江国利信安科技有限公司 Method, computing device, and storage medium for network key update

Similar Documents

Publication Publication Date Title
CN110719164A (en) Quantum offline key synchronization time service method
US8295808B2 (en) Secure remote subscription module access
CN107358441B (en) Payment verification method and system, mobile device and security authentication device
CN112347453B (en) Data safety writing method and system of automobile electronic identification embedded NFC chip
CN109525390B (en) Quantum key wireless distribution method and system for terminal equipment secret communication
CN108683510B (en) User identity updating method for encrypted transmission
CN104780040A (en) Handheld device encryption method and system based on quantum cryptography
US8948397B2 (en) Major management apparatus, authorized management apparatus, electronic apparatus for delegated key management, and key management methods thereof
CN110224821A (en) A kind of communication encrypting method of unmanned mobile platform
CA2548356A1 (en) Avoiding server storage of client state
CN106059757A (en) Audio and video monitoring device, data encryption and decryption method, and audio and video display device
JPH10336756A (en) Direct cipher communication device between two terminals of mobile radio network, corresponding base station and terminal device
JP2002523975A (en) Secure processing for authentication of wireless communication devices
CN105721541B (en) The method and its system of long-range control vehicle
CN107154848A (en) A kind of data encryption based on CPK certifications and storage method and device
AU2010202688A1 (en) Data processing apparatus
CN105246026A (en) Secure pairing method for intelligent wearable equipment and other equipment
CN113824551B (en) Quantum key distribution method applied to secure storage system
CN101160780B (en) Controlled cipher key updating method and apparatus
WO2020244145A1 (en) Quantum wireless network communication system
CN101150399A (en) Generation method for share secret key
KR100757982B1 (en) Method for authenticating a user using a one-time authentication
CN111582866B (en) Payment information management method and system based on block chain technology
CN103763697A (en) Wireless access point multi-secret key support system and method
CN109104712B (en) Wireless recharging encryption system based on NFC function and encryption method thereof

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20200121