CN111371551A - Quantum key synchronous relay device - Google Patents

Quantum key synchronous relay device Download PDF

Info

Publication number
CN111371551A
CN111371551A CN202010171198.5A CN202010171198A CN111371551A CN 111371551 A CN111371551 A CN 111371551A CN 202010171198 A CN202010171198 A CN 202010171198A CN 111371551 A CN111371551 A CN 111371551A
Authority
CN
China
Prior art keywords
key
module
quantum
synchronization
user access
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202010171198.5A
Other languages
Chinese (zh)
Inventor
占梓妍
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Individual
Original Assignee
Individual
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Individual filed Critical Individual
Priority to CN202010171198.5A priority Critical patent/CN111371551A/en
Publication of CN111371551A publication Critical patent/CN111371551A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0852Quantum cryptography
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/062Network architectures or network communication protocols for network security for supporting key management in a packet data network for key distribution, e.g. centrally by trusted party
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • H04L9/0822Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using key encryption key
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0852Quantum cryptography
    • H04L9/0855Quantum cryptography involving additional nodes, e.g. quantum relays, repeaters, intermediate nodes or remote nodes

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Physics & Mathematics (AREA)
  • Electromagnetism (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer And Data Communications (AREA)

Abstract

A quantum key synchronization relay device comprises a key storage database, a key pool management module, a networking module, a key synchronization module, a key acquisition module, a user access module, a quantum key generation module, an encryption and decryption module, a message queue, a network transmission module and a USB transmission module, wherein the key pool management module is respectively connected with the key storage database, the networking module, the key synchronization module, the key acquisition module, the user access module and the quantum key generation module. Compared with the prior art, the method and the device are used for realizing synchronous key sharing between the remote node which is not directly connected with the key center management server and the key center management server, so that the key center management server can send the session key to the corresponding node in a way of encrypting the session key by using the shared key, the safe communication of multiple nodes is realized, the way that each pair of nodes must be directly connected by using the sub-channel is abandoned, and a great opportunity is brought to the development of quantum encryption communication.

Description

Quantum key synchronous relay device
Technical Field
The invention relates to the technical field of quantum key management, in particular to a quantum key synchronous relay device.
Background
With the wide spread of the internet, the amount and frequency of information transfer between human beings have reached unprecedented levels, and various kinds of private information are increasingly exposed on the internet, so that the need for secret communication for human beings has also reached unprecedented height. The principle of the existing encryption mode of internet information security is that a public key which is spread on a network and a private key which is left in a computer are generated through an encryption algorithm, and the two keys are matched to realize a complete encryption and decryption process.
The encryption standard used by modern internet is the RSA algorithm that was born in the 70's 20 th century, i.e. it is difficult to compute with prime factorization of large numbers to guarantee the security of the key.
Quantum key distribution was the BB84 protocol based on quantum mechanical measurement principle proposed by the physicist Bennett and the cryptologist Brassard in 1984, and the quantum key distribution can fundamentally ensure the security of the key.
At present, in the technical field of quantum encryption, the generation rate of a network key based on QKD is low, and the requirement of one packet and one secret is difficult to realize; in addition, a secret key acquired from the QKD network can only be shared between two adjacent nodes, and cannot be applied to a multi-party communication occasion in a large scale, which causes great limitation to the development of quantum encrypted communication.
Disclosure of Invention
The invention aims to provide a quantum key synchronous relay device to achieve the purpose that a remote node synchronizes a quantum key with a key center management server through an intermediate relay node.
The technical scheme of the invention is realized as follows:
a quantum key synchronization relay device comprises a key storage database, a key pool management module, a networking module, a key synchronization module, a key acquisition module, a user access module, a quantum key generation module, an encryption and decryption module, a message queue, a network transmission module and a USB transmission module, the key pool management module is respectively connected with the key storage database, the networking module, the key synchronization module, the key acquisition module, the user access module and the quantum key generation module, the networking module, the key synchronization module, the key acquisition module, the user access module and the quantum key generation module are respectively connected with the message queue, the message queue is also respectively connected with a network transmission module and a USB transmission module, and the encryption and decryption module is respectively connected with a networking module, a key synchronization module, a key acquisition module and a user access module.
Preferably, the key storage database comprises a plurality of sets of key storage units.
Preferably, the subscriber access module comprises a subscriber authentication unit.
Compared with the prior art, the invention has the following beneficial effects:
the quantum key synchronous relay device is used for realizing synchronous key sharing between the nodes which are not connected with the key center management server in a remote mode and the key center management server, so that shared keys exist between any node and the key center management server, the key center management server can send session keys to corresponding nodes in a mode of encrypting the session keys by the shared keys, multi-node safe communication is realized, a mode that each pair of nodes must be connected with a quantum channel in a direct mode is abandoned, and a great opportunity is brought to the development of quantum encrypted communication.
Drawings
Fig. 1 is a schematic block diagram of a quantum key synchronous relay device according to the present invention.
In the figure: the system comprises a key storage database 1, a key pool management module 2, a networking module 3, a key synchronization module 4, a key acquisition module 5, a user access module 6, a quantum key generation module 7, an encryption and decryption module 8, a message queue 9, a network transmission module 10 and a USB transmission module 11.
Detailed Description
The present invention will now be described more fully hereinafter with reference to the accompanying drawings, in which embodiments of the invention are shown.
As shown in fig. 1, a quantum key synchronization relay device includes a key storage database 1, a key pool management module 2, a networking module 3, a key synchronization module 4, a key acquisition module 5, a user access module 6, a quantum key generation module 7, an encryption and decryption module 8, a message queue 9, a network transmission module 10 and a USB transmission module 11, where the key pool management module 2 is connected to the key storage database 1, the networking module 3, the key synchronization module 4, the key acquisition module 5, the user access module 6 and the quantum key generation module 7 respectively, the networking module 3, the key synchronization module 4, the key acquisition module 5, the user access module 6 and the quantum key generation module 7(QKD device) are connected to the message queue 9 respectively, the message queue 9 is further connected to the network transmission module 10 and the USB transmission module 11 respectively, the encryption and decryption module 8 is respectively connected with the networking module 3, the key synchronization module 4, the key acquisition module 5 and the user access module 6. The key storage database 1 is used for storing keys, and storing the keys in different tables according to the key IDs; the key pool management module 2 is used for adding, deleting, modifying and checking keys; the networking module 3 is used for realizing the network joining and quitting functions of the communication nodes; the key synchronization module 4 is used for synchronizing the key of the remote node to the key center management server; the key obtaining module 5 reads the key from the key pool, submits the key to the caller, and updates the key state in the key pool; the user access module 6 is used for realizing the authentication of the user; the quantum key generation module 7 is used for generating a new quantum key, writing the new quantum key into a key pool, and simultaneously informing the key synchronization module to perform key synchronization; the encryption and decryption module 8 is used for encrypting and decrypting data; the message queue 9 is used for distributing data received from the network transmission module 10 and the USB transmission module 11 to each processing module (the networking module 3, the key synchronization module 4, the key acquisition module 5, the user access module 6, and the quantum key generation module 7), receiving messages from each processing module, and sending the messages to the network; the network transmission module 10 is used for transmitting and receiving data through a network; the USB transmission module 11 is used for reading and writing data. The key storage database 1 comprises a plurality of groups of key storage units, and the byte length of the key ID can be reduced by adopting key grouping processing, so that the storage space of the key pool occupied by the key ID is reduced.
By combining the structure of the invention, the quantum key synchronous relay device is used for realizing synchronous key sharing between the nodes which are not remotely connected with the key center management server and the key center management server, so that shared keys exist between any node and the key center management server, the key center management server can send session keys to corresponding nodes in a mode of encrypting the session keys by the shared keys, multi-node safe communication is realized, a mode that each pair of nodes must be directly connected by using quantum channels is abandoned, and a great opportunity is brought to the development of quantum encryption communication.

Claims (3)

1. A quantum key synchronization relay device, characterized in that: the system comprises a key storage database, a key pool management module, a networking module, a key synchronization module, a key acquisition module, a user access module, a quantum key generation module, an encryption and decryption module, a message queue, a network transmission module and a USB transmission module, wherein the key pool management module is respectively connected with the key storage database, the networking module, the key synchronization module, the key acquisition module, the user access module and the quantum key generation module are respectively connected with the message queue, the message queue is also respectively connected with the network transmission module and the USB transmission module, and the encryption and decryption module is respectively connected with the networking module, the key synchronization module, the key acquisition module and the user access module.
2. A quantum key synchronization relay device as claimed in claim 1, wherein the key storage database comprises sets of key storage units.
3. The quantum key synchronization relay apparatus of claim 2, wherein the user access module comprises a user authentication unit.
CN202010171198.5A 2020-03-12 2020-03-12 Quantum key synchronous relay device Pending CN111371551A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202010171198.5A CN111371551A (en) 2020-03-12 2020-03-12 Quantum key synchronous relay device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202010171198.5A CN111371551A (en) 2020-03-12 2020-03-12 Quantum key synchronous relay device

Publications (1)

Publication Number Publication Date
CN111371551A true CN111371551A (en) 2020-07-03

Family

ID=71208896

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202010171198.5A Pending CN111371551A (en) 2020-03-12 2020-03-12 Quantum key synchronous relay device

Country Status (1)

Country Link
CN (1) CN111371551A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112887086A (en) * 2021-01-19 2021-06-01 北京邮电大学 Quantum key synchronization method and system
CN114697011A (en) * 2020-12-30 2022-07-01 科大国盾量子技术股份有限公司 Method for improving quantum key relay service quality

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107040378A (en) * 2017-06-01 2017-08-11 浙江九州量子信息技术股份有限公司 A kind of key dispatching system and method based on Multi-user Remote Communication
CN107094078A (en) * 2017-06-01 2017-08-25 浙江九州量子信息技术股份有限公司 A kind of quantum key synchronization system and synchronous method based on multilevel relay
CN107147492A (en) * 2017-06-01 2017-09-08 浙江九州量子信息技术股份有限公司 A kind of cipher key service System and method for communicated based on multiple terminals

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107040378A (en) * 2017-06-01 2017-08-11 浙江九州量子信息技术股份有限公司 A kind of key dispatching system and method based on Multi-user Remote Communication
CN107094078A (en) * 2017-06-01 2017-08-25 浙江九州量子信息技术股份有限公司 A kind of quantum key synchronization system and synchronous method based on multilevel relay
CN107147492A (en) * 2017-06-01 2017-09-08 浙江九州量子信息技术股份有限公司 A kind of cipher key service System and method for communicated based on multiple terminals

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114697011A (en) * 2020-12-30 2022-07-01 科大国盾量子技术股份有限公司 Method for improving quantum key relay service quality
CN112887086A (en) * 2021-01-19 2021-06-01 北京邮电大学 Quantum key synchronization method and system

Similar Documents

Publication Publication Date Title
CN106452741B (en) The communication system and communication means of the transmission of information encryption and decryption are realized based on quantum network
CN108540436B (en) Communication system and communication method for realizing information encryption and decryption transmission based on quantum network
CN109981584B (en) Block chain-based distributed social contact method
CN107040378A (en) A kind of key dispatching system and method based on Multi-user Remote Communication
CN113114460B (en) Quantum encryption-based power distribution network information secure transmission method
CN108667607A (en) A kind of quantum key synchronous method with electric terminal
CN108847928B (en) Communication system and communication method for realizing information encryption and decryption transmission based on group type quantum key card
CN106452739A (en) Quantum network service station and quantum communication network
CN107147492A (en) A kind of cipher key service System and method for communicated based on multiple terminals
CN111835997B (en) Cloud video conference system based on quantum key encryption and decryption method thereof
WO2021082077A1 (en) Asymmetric cryptographic terminal based on quantum random number, and communication system and method
CN106230585A (en) A kind of method that quantum key Fast synchronization updates
CN102088352B (en) Data encryption transmission method and system for message-oriented middleware
CN109462471A (en) The method of information transmission encryption based on national secret algorithm in conjunction with Technique on Quantum Communication
CN111371551A (en) Quantum key synchronous relay device
CN114826593B (en) Quantum security data transmission method and digital certificate authentication system
CN206042014U (en) Quantum network service station and quantum communication network
CN109889329A (en) Anti- quantum calculation wired home quantum communications method and system based on quantum key card
CN100438614C (en) Method for realizing distributing asymmetric video conference safety system
CN111526131B (en) Anti-quantum-computation electronic official document transmission method and system based on secret sharing and quantum communication service station
CN112019553B (en) Data sharing method based on IBE/IBBE
CN114499862A (en) Symmetric key pool encryption and transmission method based on quantum key distribution
CN115694791A (en) QKD-based distribution network and method
CN116233767B (en) Cluster intercom communication method, device, equipment and storage medium
CN107040921A (en) One kind is based on point-to-point SMS encryption system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WD01 Invention patent application deemed withdrawn after publication
WD01 Invention patent application deemed withdrawn after publication

Application publication date: 20200703