CN110719164A - Quantum offline key synchronization time service method - Google Patents
Quantum offline key synchronization time service method Download PDFInfo
- Publication number
- CN110719164A CN110719164A CN201910938635.9A CN201910938635A CN110719164A CN 110719164 A CN110719164 A CN 110719164A CN 201910938635 A CN201910938635 A CN 201910938635A CN 110719164 A CN110719164 A CN 110719164A
- Authority
- CN
- China
- Prior art keywords
- mobile terminal
- key
- quantum
- keys
- time
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0852—Quantum cryptography
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04J—MULTIPLEX COMMUNICATION
- H04J3/00—Time-division multiplex systems
- H04J3/02—Details
- H04J3/06—Synchronising arrangements
- H04J3/0635—Clock or time synchronisation in a network
- H04J3/0638—Clock or time synchronisation among nodes; Internode synchronisation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0891—Revocation or update of secret information, e.g. encryption key update or rekeying
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Physics & Mathematics (AREA)
- Electromagnetism (AREA)
- Theoretical Computer Science (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention discloses a quantum off-line key synchronization time service method.A quantum key management center encrypts a group of keys K by using K1 and sends the keys K to a mobile terminal N, and the mobile terminal 1 decrypts by using a preset key K1 to obtain the key K; the quantum key management center encrypts a group of keys K by using KN and sends the keys K to the mobile terminal N, and the mobile terminal N decrypts the keys K by using a preset key KN to obtain the keys K; the quantum key management center initiates a time synchronization command to the mobile terminal 1 and the mobile terminal N; the quantum key management center, the mobile terminal 1 and the mobile terminal N realize time synchronization through a GPS technology and mutually inform that the synchronization is finished; the mobile terminal 1 initiates a communication request to the mobile terminal N, wherein the communication request comprises the time for initiating the communication request; the mobile terminal 1 and the mobile terminal N select the serial number of the encryption and decryption key according to the time of initiating the communication request. The invention has low cost and high time precision, and can effectively improve the success rate of synchronous updating of the quantum off-line key.
Description
Technical Field
The invention relates to a quantum key updating method, in particular to a time service method for quantum off-line key synchronization.
Background
The quantum cipher belongs to a symmetric cipher system, the distribution of the key is realized by professional quantum key distribution equipment, the keys at two ends are stored in a key pool, and the key copied from the quantum key pool by using the mobile storage medium is called as a quantum off-line key. With the continuous development of mobile communication networks, mobile information security is more and more emphasized by people, and the security of mobile service information can be greatly improved by using quantum offline keys.
The symmetric key is required to be continuously and synchronously updated in the process of encrypting the mobile service data, if two communication parties cannot synchronously update the key, the keys used for encryption and decryption at two ends are inconsistent, and finally the quantum secret mobile communication fails. There are several methods for synchronously updating the key in the process of encrypting the mobile service data, and one more accurate method is to select the key according to a uniform clock, that is, to select the corresponding quantum off-line key as the key requested this time according to the time requested by the key. Therefore, obtaining uniform time is the key to whether quantum offline key synchronization is successful or not.
Disclosure of Invention
Aiming at the defects of the prior art, the invention provides a quantum off-line key synchronization time service method, which effectively solves the problem of time synchronization between mobile communication equipment and quantum key service equipment.
In order to achieve the technical purpose, the invention adopts the technical scheme that: the quantum off-line key synchronization time service method is characterized by comprising the following steps:
1) adding a GPS time synchronization function module in the mobile terminal;
2) connecting the GPS time synchronization device with a quantum key management center;
3) the mobile terminal 1 presets a quantum offline key K1, the mobile terminal 2 presets a quantum offline key K2, and so on, the mobile terminal N presets a quantum offline key KN;
4) the mobile terminal 1 initiates a communication request with the mobile terminal N to the vector subkey management center;
5) the quantum key management center encrypts a group of keys K by using K1 and sends the keys K to the mobile terminal N, and the mobile terminal 1 decrypts the keys K by using a preset key K1 to obtain the keys K;
6) the quantum key management center encrypts a group of keys K by using KN and sends the keys K to the mobile terminal N, and the mobile terminal N decrypts the keys K by using a preset key KN to obtain the keys K;
7) the quantum key management center initiates a time synchronization command to the mobile terminal 1 and the mobile terminal N;
8) the quantum key management center, the mobile terminal 1 and the mobile terminal N realize time synchronization through a GPS technology and mutually inform that the synchronization is finished;
9) the mobile terminal 1 initiates a communication request to the mobile terminal N, wherein the communication request comprises the time for initiating the communication request;
10) the mobile terminal 1 and the mobile terminal N select the serial number of the encryption and decryption key, i.e. the key serial number in the key K, according to the time of initiating the communication request.
Further, in step 2), a GPS time synchronizer is placed outside the machine room where the quantum key management center is placed, and is connected with the quantum key management center.
Further, the encryption algorithm in steps 5) and 6) is as follows: a quotient cipher, DES, or a one-time pad xor encryption algorithm.
Further, in step 10), the serial number of the encryption/decryption key is selected according to the following formula:wherein, I is the key number, T1 is the encryption key request time, T is the key update period, and M is the start time of the key validity period.
As shown in fig. 1, a quantum key management center manages a quantum offline key, and a mobile terminal carries the quantum offline key. Each mobile terminal and the quantum key management center have a pair of different keys, if the mobile terminal 1 wants to communicate with the mobile terminal 2, the quantum key management center needs to perform key agreement, that is, the quantum key management center encrypts the same group of keys by using K1 and K2 and distributes the same group of keys to the mobile terminal 1 and the mobile terminal 2 as communication keys respectively. The updating synchronization of the key adopts a time synchronization mode. As shown in fig. 2, the communication module is used for completing mobile service data communication; the quantum encryption and decryption module performs encryption/decryption operation on communication data by using a quantum key, and the encryption algorithm supports the existing algorithms such as a quotient cipher, a DES (data encryption standard) and the like and also supports the XOR encryption of a one-time pad; the quantum cryptography storage module stores a safe storage area of the quantum key, and the quantum key in the quantum cryptography storage module is called when the quantum cryptography storage module needs the quantum key; the quantum cipher management module manages a quantum key to realize key synchronization, acquisition, storage, expansion and lamp deletion operations, and other quantum cipher related modules work under the management of the quantum cipher management module; the quantum password acquisition module is responsible for quantum keys and supports the modes of on-line key acquisition, off-line key acquisition and the like, and interfaces can adopt RJ45, an encrypted USB, an encrypted TF card, Bluetooth and the like as required; GPS time synchronization module: and time is acquired from a GPS and a Beidou satellite, and the time is given to the vector sub-password management module. As shown in fig. 3, because the quantum key management center is generally placed in a machine room, the GPS communication quality may be poor, the time service operation may be completed by placing a GPS time synchronizer outdoors and connecting the GPS time synchronizer with the quantum key management center, and the GPS time synchronizer may be a GPS or beidou time synchronizer, which is connected to the quantum key management center independently and isolated from the quantum key management) key storage module.
Has the advantages that: the invention realizes the time synchronization between the mobile terminal, the quantum key management center and other equipment by utilizing a GPS time service mode, has low cost and high time precision, can effectively improve the success rate of the quantum off-line key synchronous updating, and is suitable for scenes with high key updating frequency.
Drawings
Fig. 1 is a schematic diagram of a mobile quantum secure communication link according to the present invention.
Fig. 2 is a schematic flow chart of the encryption principle of the mobile terminal of the present invention.
Fig. 3 is a schematic diagram of the time service principle of the quantum key management center of the invention.
Detailed Description
The present invention is further illustrated by the following description in conjunction with the accompanying drawings, which are to be construed as merely illustrative and not limitative of the remainder of the disclosure, and on reading the disclosure, various equivalent modifications thereof will become apparent to those skilled in the art and fall within the limits of the appended claims.
Example 1
As shown in fig. 1, fig. 2 and fig. 3, the online updating method for the quantum security gateway key includes the following steps:
1) adding a GPS time synchronization function module in an original mobile terminal;
2) and a GPS time synchronization device is arranged outside the machine room where the quantum key management center is arranged and is connected with the quantum key management center.
3) The mobile terminal 1 presets a quantum offline key K1, and the mobile terminal 2 presets a quantum offline key K2;
4) the mobile terminal 1 initiates a communication request with the mobile terminal 2 to the vector subkey management center;
5) the quantum key management center encrypts a group of keys K by using K1 and sends the keys K to the mobile terminal 1, and the mobile terminal 1 decrypts the keys K by using a preset key K1 to obtain the keys K;
6) the quantum key management center encrypts a group of keys K by using K2 and sends the keys K to the mobile terminal 2, and the mobile terminal 2 decrypts the keys K by using a preset key K2 to obtain the keys K;
7) a quantum key management center initiates a time synchronization command to a mobile terminal 1) and a mobile terminal 2;
8) quantum key management center) mobile terminal 1) mobile terminal 2 realizes time synchronization by GPS technology and mutually informs completion of synchronization;
9) the mobile terminal 1 initiates a communication request to the mobile terminal 2, wherein the communication request comprises the time for initiating the communication request;
10) the mobile terminal 1 and the mobile terminal 2 select the serial number of the encryption and decryption key, namely the key serial number in the key K, according to the time of initiating the communication request.
The scope of the present invention includes, but is not limited to, the above embodiments, and the present invention is subject to the appended claims, and any alterations, modifications, and improvements that can be easily made by those skilled in the art are within the scope of the present invention.
Claims (4)
1. The quantum off-line key synchronization time service method is characterized by comprising the following steps:
1) adding a GPS time synchronization function module in the mobile terminal;
2) connecting the GPS time synchronization device with a quantum key management center;
3) the mobile terminal 1 presets a quantum offline key K1, the mobile terminal 2 presets a quantum offline key K2, and so on, the mobile terminal N presets a quantum offline key KN;
4) the mobile terminal 1 initiates a communication request with the mobile terminal N to the vector subkey management center;
5) the quantum key management center encrypts a group of keys K by using K1 and sends the keys K to the mobile terminal N, and the mobile terminal 1 decrypts the keys K by using a preset key K1 to obtain the keys K;
6) the quantum key management center encrypts a group of keys K by using KN and sends the keys K to the mobile terminal N, and the mobile terminal N decrypts the keys K by using a preset key KN to obtain the keys K;
7) the quantum key management center initiates a time synchronization command to the mobile terminal 1 and the mobile terminal N;
8) the quantum key management center, the mobile terminal 1 and the mobile terminal N realize time synchronization through a GPS technology and mutually inform that the synchronization is finished;
9) the mobile terminal 1 initiates a communication request to the mobile terminal N, wherein the communication request comprises the time for initiating the communication request;
10) the mobile terminal 1 and the mobile terminal N select the serial number of the encryption and decryption key according to the time of initiating the communication request.
2. The sub-offline key synchronization time service method according to claim 1, wherein: and 2) placing a GPS time synchronization device outside a machine room where the quantum key management center is placed, and connecting the GPS time synchronization device with the quantum key management center.
3. The sub-offline key synchronization time service method according to claim 1, wherein: the encryption algorithm in the steps 5) and 6) is as follows: a quotient cipher, DES, or a one-time pad xor encryption algorithm.
4. The sub-offline key synchronization time service method according to claim 1, wherein: in step 10), the serial number of the encryption and decryption key is selected by the following formula:wherein, I is the key number, T1 is the encryption key request time, T is the key update period, and M is the start time of the key validity period.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910938635.9A CN110719164A (en) | 2019-09-30 | 2019-09-30 | Quantum offline key synchronization time service method |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910938635.9A CN110719164A (en) | 2019-09-30 | 2019-09-30 | Quantum offline key synchronization time service method |
Publications (1)
Publication Number | Publication Date |
---|---|
CN110719164A true CN110719164A (en) | 2020-01-21 |
Family
ID=69211226
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201910938635.9A Pending CN110719164A (en) | 2019-09-30 | 2019-09-30 | Quantum offline key synchronization time service method |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN110719164A (en) |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN112153583A (en) * | 2020-09-28 | 2020-12-29 | 中国电子科技集团公司第五十四研究所 | Multi-key negotiation method for encryption and decryption services |
CN113111372A (en) * | 2021-05-06 | 2021-07-13 | 安徽华典大数据科技有限公司 | Terminal data cloud system and cloud method based on quantum key encryption |
CN115915119A (en) * | 2022-12-21 | 2023-04-04 | 北方雷科(安徽)科技有限公司 | Implementation method for Beidou quantum encrypted communication |
CN115941182A (en) * | 2023-02-21 | 2023-04-07 | 浙江国利信安科技有限公司 | Method, computing device and storage medium for network key update |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102281136A (en) * | 2011-07-28 | 2011-12-14 | 中国电力科学研究院 | Quantum key distribution system for safety communication of electric vehicle intelligent charging network |
CN105337726A (en) * | 2015-04-06 | 2016-02-17 | 安徽问天量子科技股份有限公司 | End-to-end hand-held device encryption method based on quantum cryptography and system |
CN105846995A (en) * | 2015-12-10 | 2016-08-10 | 安徽问天量子科技股份有限公司 | Vo LTE (Voice over LTE) quantum encryption terminal and encryption method |
WO2018017168A2 (en) * | 2016-04-21 | 2018-01-25 | Alibaba Group Holding Limited | System and method for encryption and decryption based on quantum key distribution |
CN108429618A (en) * | 2018-05-16 | 2018-08-21 | 安徽问天量子科技股份有限公司 | A kind of the symmetric key synchronous method and device of no channel |
-
2019
- 2019-09-30 CN CN201910938635.9A patent/CN110719164A/en active Pending
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102281136A (en) * | 2011-07-28 | 2011-12-14 | 中国电力科学研究院 | Quantum key distribution system for safety communication of electric vehicle intelligent charging network |
CN105337726A (en) * | 2015-04-06 | 2016-02-17 | 安徽问天量子科技股份有限公司 | End-to-end hand-held device encryption method based on quantum cryptography and system |
CN105846995A (en) * | 2015-12-10 | 2016-08-10 | 安徽问天量子科技股份有限公司 | Vo LTE (Voice over LTE) quantum encryption terminal and encryption method |
WO2018017168A2 (en) * | 2016-04-21 | 2018-01-25 | Alibaba Group Holding Limited | System and method for encryption and decryption based on quantum key distribution |
CN108429618A (en) * | 2018-05-16 | 2018-08-21 | 安徽问天量子科技股份有限公司 | A kind of the symmetric key synchronous method and device of no channel |
Cited By (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN112153583A (en) * | 2020-09-28 | 2020-12-29 | 中国电子科技集团公司第五十四研究所 | Multi-key negotiation method for encryption and decryption services |
CN113111372A (en) * | 2021-05-06 | 2021-07-13 | 安徽华典大数据科技有限公司 | Terminal data cloud system and cloud method based on quantum key encryption |
CN113111372B (en) * | 2021-05-06 | 2023-09-22 | 安徽华典大数据科技有限公司 | Terminal data cloud loading system and method based on quantum key encryption |
CN115915119A (en) * | 2022-12-21 | 2023-04-04 | 北方雷科(安徽)科技有限公司 | Implementation method for Beidou quantum encrypted communication |
CN115941182A (en) * | 2023-02-21 | 2023-04-07 | 浙江国利信安科技有限公司 | Method, computing device and storage medium for network key update |
CN115941182B (en) * | 2023-02-21 | 2024-01-30 | 浙江国利信安科技有限公司 | Method, computing device, and storage medium for network key update |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN110719164A (en) | Quantum offline key synchronization time service method | |
US8295808B2 (en) | Secure remote subscription module access | |
CN107358441B (en) | Payment verification method and system, mobile device and security authentication device | |
CN112347453B (en) | Data safety writing method and system of automobile electronic identification embedded NFC chip | |
CN109525390B (en) | Quantum key wireless distribution method and system for terminal equipment secret communication | |
CN108683510B (en) | User identity updating method for encrypted transmission | |
CN104780040A (en) | Handheld device encryption method and system based on quantum cryptography | |
US8948397B2 (en) | Major management apparatus, authorized management apparatus, electronic apparatus for delegated key management, and key management methods thereof | |
CN110224821A (en) | A kind of communication encrypting method of unmanned mobile platform | |
CA2548356A1 (en) | Avoiding server storage of client state | |
CN106059757A (en) | Audio and video monitoring device, data encryption and decryption method, and audio and video display device | |
JPH10336756A (en) | Direct cipher communication device between two terminals of mobile radio network, corresponding base station and terminal device | |
JP2002523975A (en) | Secure processing for authentication of wireless communication devices | |
CN105721541B (en) | The method and its system of long-range control vehicle | |
CN107154848A (en) | A kind of data encryption based on CPK certifications and storage method and device | |
AU2010202688A1 (en) | Data processing apparatus | |
CN105246026A (en) | Secure pairing method for intelligent wearable equipment and other equipment | |
CN113824551B (en) | Quantum key distribution method applied to secure storage system | |
CN101160780B (en) | Controlled cipher key updating method and apparatus | |
WO2020244145A1 (en) | Quantum wireless network communication system | |
CN101150399A (en) | Generation method for share secret key | |
KR100757982B1 (en) | Method for authenticating a user using a one-time authentication | |
CN111582866B (en) | Payment information management method and system based on block chain technology | |
CN103763697A (en) | Wireless access point multi-secret key support system and method | |
CN109104712B (en) | Wireless recharging encryption system based on NFC function and encryption method thereof |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20200121 |