CN111371551A - Quantum key synchronous relay device - Google Patents
Quantum key synchronous relay device Download PDFInfo
- Publication number
- CN111371551A CN111371551A CN202010171198.5A CN202010171198A CN111371551A CN 111371551 A CN111371551 A CN 111371551A CN 202010171198 A CN202010171198 A CN 202010171198A CN 111371551 A CN111371551 A CN 111371551A
- Authority
- CN
- China
- Prior art keywords
- key
- module
- quantum
- synchronization
- user access
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 230000001360 synchronised effect Effects 0.000 title abstract description 10
- 230000005540 biological transmission Effects 0.000 claims abstract description 20
- 230000006855 networking Effects 0.000 claims abstract description 16
- 238000004891 communication Methods 0.000 abstract description 10
- 238000011161 development Methods 0.000 abstract description 4
- 238000000034 method Methods 0.000 abstract description 2
- 238000012545 processing Methods 0.000 description 3
- 241000282414 Homo sapiens Species 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 238000011326 mechanical measurement Methods 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0852—Quantum cryptography
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
- H04L63/062—Network architectures or network communication protocols for network security for supporting key management in a packet data network for key distribution, e.g. centrally by trusted party
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0819—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
- H04L9/0822—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using key encryption key
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0852—Quantum cryptography
- H04L9/0855—Quantum cryptography involving additional nodes, e.g. quantum relays, repeaters, intermediate nodes or remote nodes
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Physics & Mathematics (AREA)
- Electromagnetism (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer And Data Communications (AREA)
Abstract
A quantum key synchronization relay device comprises a key storage database, a key pool management module, a networking module, a key synchronization module, a key acquisition module, a user access module, a quantum key generation module, an encryption and decryption module, a message queue, a network transmission module and a USB transmission module, wherein the key pool management module is respectively connected with the key storage database, the networking module, the key synchronization module, the key acquisition module, the user access module and the quantum key generation module. Compared with the prior art, the method and the device are used for realizing synchronous key sharing between the remote node which is not directly connected with the key center management server and the key center management server, so that the key center management server can send the session key to the corresponding node in a way of encrypting the session key by using the shared key, the safe communication of multiple nodes is realized, the way that each pair of nodes must be directly connected by using the sub-channel is abandoned, and a great opportunity is brought to the development of quantum encryption communication.
Description
Technical Field
The invention relates to the technical field of quantum key management, in particular to a quantum key synchronous relay device.
Background
With the wide spread of the internet, the amount and frequency of information transfer between human beings have reached unprecedented levels, and various kinds of private information are increasingly exposed on the internet, so that the need for secret communication for human beings has also reached unprecedented height. The principle of the existing encryption mode of internet information security is that a public key which is spread on a network and a private key which is left in a computer are generated through an encryption algorithm, and the two keys are matched to realize a complete encryption and decryption process.
The encryption standard used by modern internet is the RSA algorithm that was born in the 70's 20 th century, i.e. it is difficult to compute with prime factorization of large numbers to guarantee the security of the key.
Quantum key distribution was the BB84 protocol based on quantum mechanical measurement principle proposed by the physicist Bennett and the cryptologist Brassard in 1984, and the quantum key distribution can fundamentally ensure the security of the key.
At present, in the technical field of quantum encryption, the generation rate of a network key based on QKD is low, and the requirement of one packet and one secret is difficult to realize; in addition, a secret key acquired from the QKD network can only be shared between two adjacent nodes, and cannot be applied to a multi-party communication occasion in a large scale, which causes great limitation to the development of quantum encrypted communication.
Disclosure of Invention
The invention aims to provide a quantum key synchronous relay device to achieve the purpose that a remote node synchronizes a quantum key with a key center management server through an intermediate relay node.
The technical scheme of the invention is realized as follows:
a quantum key synchronization relay device comprises a key storage database, a key pool management module, a networking module, a key synchronization module, a key acquisition module, a user access module, a quantum key generation module, an encryption and decryption module, a message queue, a network transmission module and a USB transmission module, the key pool management module is respectively connected with the key storage database, the networking module, the key synchronization module, the key acquisition module, the user access module and the quantum key generation module, the networking module, the key synchronization module, the key acquisition module, the user access module and the quantum key generation module are respectively connected with the message queue, the message queue is also respectively connected with a network transmission module and a USB transmission module, and the encryption and decryption module is respectively connected with a networking module, a key synchronization module, a key acquisition module and a user access module.
Preferably, the key storage database comprises a plurality of sets of key storage units.
Preferably, the subscriber access module comprises a subscriber authentication unit.
Compared with the prior art, the invention has the following beneficial effects:
the quantum key synchronous relay device is used for realizing synchronous key sharing between the nodes which are not connected with the key center management server in a remote mode and the key center management server, so that shared keys exist between any node and the key center management server, the key center management server can send session keys to corresponding nodes in a mode of encrypting the session keys by the shared keys, multi-node safe communication is realized, a mode that each pair of nodes must be connected with a quantum channel in a direct mode is abandoned, and a great opportunity is brought to the development of quantum encrypted communication.
Drawings
Fig. 1 is a schematic block diagram of a quantum key synchronous relay device according to the present invention.
In the figure: the system comprises a key storage database 1, a key pool management module 2, a networking module 3, a key synchronization module 4, a key acquisition module 5, a user access module 6, a quantum key generation module 7, an encryption and decryption module 8, a message queue 9, a network transmission module 10 and a USB transmission module 11.
Detailed Description
The present invention will now be described more fully hereinafter with reference to the accompanying drawings, in which embodiments of the invention are shown.
As shown in fig. 1, a quantum key synchronization relay device includes a key storage database 1, a key pool management module 2, a networking module 3, a key synchronization module 4, a key acquisition module 5, a user access module 6, a quantum key generation module 7, an encryption and decryption module 8, a message queue 9, a network transmission module 10 and a USB transmission module 11, where the key pool management module 2 is connected to the key storage database 1, the networking module 3, the key synchronization module 4, the key acquisition module 5, the user access module 6 and the quantum key generation module 7 respectively, the networking module 3, the key synchronization module 4, the key acquisition module 5, the user access module 6 and the quantum key generation module 7(QKD device) are connected to the message queue 9 respectively, the message queue 9 is further connected to the network transmission module 10 and the USB transmission module 11 respectively, the encryption and decryption module 8 is respectively connected with the networking module 3, the key synchronization module 4, the key acquisition module 5 and the user access module 6. The key storage database 1 is used for storing keys, and storing the keys in different tables according to the key IDs; the key pool management module 2 is used for adding, deleting, modifying and checking keys; the networking module 3 is used for realizing the network joining and quitting functions of the communication nodes; the key synchronization module 4 is used for synchronizing the key of the remote node to the key center management server; the key obtaining module 5 reads the key from the key pool, submits the key to the caller, and updates the key state in the key pool; the user access module 6 is used for realizing the authentication of the user; the quantum key generation module 7 is used for generating a new quantum key, writing the new quantum key into a key pool, and simultaneously informing the key synchronization module to perform key synchronization; the encryption and decryption module 8 is used for encrypting and decrypting data; the message queue 9 is used for distributing data received from the network transmission module 10 and the USB transmission module 11 to each processing module (the networking module 3, the key synchronization module 4, the key acquisition module 5, the user access module 6, and the quantum key generation module 7), receiving messages from each processing module, and sending the messages to the network; the network transmission module 10 is used for transmitting and receiving data through a network; the USB transmission module 11 is used for reading and writing data. The key storage database 1 comprises a plurality of groups of key storage units, and the byte length of the key ID can be reduced by adopting key grouping processing, so that the storage space of the key pool occupied by the key ID is reduced.
By combining the structure of the invention, the quantum key synchronous relay device is used for realizing synchronous key sharing between the nodes which are not remotely connected with the key center management server and the key center management server, so that shared keys exist between any node and the key center management server, the key center management server can send session keys to corresponding nodes in a mode of encrypting the session keys by the shared keys, multi-node safe communication is realized, a mode that each pair of nodes must be directly connected by using quantum channels is abandoned, and a great opportunity is brought to the development of quantum encryption communication.
Claims (3)
1. A quantum key synchronization relay device, characterized in that: the system comprises a key storage database, a key pool management module, a networking module, a key synchronization module, a key acquisition module, a user access module, a quantum key generation module, an encryption and decryption module, a message queue, a network transmission module and a USB transmission module, wherein the key pool management module is respectively connected with the key storage database, the networking module, the key synchronization module, the key acquisition module, the user access module and the quantum key generation module are respectively connected with the message queue, the message queue is also respectively connected with the network transmission module and the USB transmission module, and the encryption and decryption module is respectively connected with the networking module, the key synchronization module, the key acquisition module and the user access module.
2. A quantum key synchronization relay device as claimed in claim 1, wherein the key storage database comprises sets of key storage units.
3. The quantum key synchronization relay apparatus of claim 2, wherein the user access module comprises a user authentication unit.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202010171198.5A CN111371551A (en) | 2020-03-12 | 2020-03-12 | Quantum key synchronous relay device |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202010171198.5A CN111371551A (en) | 2020-03-12 | 2020-03-12 | Quantum key synchronous relay device |
Publications (1)
Publication Number | Publication Date |
---|---|
CN111371551A true CN111371551A (en) | 2020-07-03 |
Family
ID=71208896
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202010171198.5A Pending CN111371551A (en) | 2020-03-12 | 2020-03-12 | Quantum key synchronous relay device |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN111371551A (en) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN112887086A (en) * | 2021-01-19 | 2021-06-01 | 北京邮电大学 | Quantum key synchronization method and system |
CN114697011A (en) * | 2020-12-30 | 2022-07-01 | 科大国盾量子技术股份有限公司 | Method for improving quantum key relay service quality |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107040378A (en) * | 2017-06-01 | 2017-08-11 | 浙江九州量子信息技术股份有限公司 | A kind of key dispatching system and method based on Multi-user Remote Communication |
CN107094078A (en) * | 2017-06-01 | 2017-08-25 | 浙江九州量子信息技术股份有限公司 | A kind of quantum key synchronization system and synchronous method based on multilevel relay |
CN107147492A (en) * | 2017-06-01 | 2017-09-08 | 浙江九州量子信息技术股份有限公司 | A kind of cipher key service System and method for communicated based on multiple terminals |
-
2020
- 2020-03-12 CN CN202010171198.5A patent/CN111371551A/en active Pending
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107040378A (en) * | 2017-06-01 | 2017-08-11 | 浙江九州量子信息技术股份有限公司 | A kind of key dispatching system and method based on Multi-user Remote Communication |
CN107094078A (en) * | 2017-06-01 | 2017-08-25 | 浙江九州量子信息技术股份有限公司 | A kind of quantum key synchronization system and synchronous method based on multilevel relay |
CN107147492A (en) * | 2017-06-01 | 2017-09-08 | 浙江九州量子信息技术股份有限公司 | A kind of cipher key service System and method for communicated based on multiple terminals |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN114697011A (en) * | 2020-12-30 | 2022-07-01 | 科大国盾量子技术股份有限公司 | Method for improving quantum key relay service quality |
CN112887086A (en) * | 2021-01-19 | 2021-06-01 | 北京邮电大学 | Quantum key synchronization method and system |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN106452741B (en) | The communication system and communication means of the transmission of information encryption and decryption are realized based on quantum network | |
CN108540436B (en) | Communication system and communication method for realizing information encryption and decryption transmission based on quantum network | |
CN109981584B (en) | Block chain-based distributed social contact method | |
CN107040378A (en) | A kind of key dispatching system and method based on Multi-user Remote Communication | |
CN113114460B (en) | Quantum encryption-based power distribution network information secure transmission method | |
CN108667607A (en) | A kind of quantum key synchronous method with electric terminal | |
CN108847928B (en) | Communication system and communication method for realizing information encryption and decryption transmission based on group type quantum key card | |
CN106452739A (en) | Quantum network service station and quantum communication network | |
CN107147492A (en) | A kind of cipher key service System and method for communicated based on multiple terminals | |
CN111835997B (en) | Cloud video conference system based on quantum key encryption and decryption method thereof | |
WO2021082077A1 (en) | Asymmetric cryptographic terminal based on quantum random number, and communication system and method | |
CN106230585A (en) | A kind of method that quantum key Fast synchronization updates | |
CN102088352B (en) | Data encryption transmission method and system for message-oriented middleware | |
CN109462471A (en) | The method of information transmission encryption based on national secret algorithm in conjunction with Technique on Quantum Communication | |
CN111371551A (en) | Quantum key synchronous relay device | |
CN114826593B (en) | Quantum security data transmission method and digital certificate authentication system | |
CN206042014U (en) | Quantum network service station and quantum communication network | |
CN109889329A (en) | Anti- quantum calculation wired home quantum communications method and system based on quantum key card | |
CN100438614C (en) | Method for realizing distributing asymmetric video conference safety system | |
CN111526131B (en) | Anti-quantum-computation electronic official document transmission method and system based on secret sharing and quantum communication service station | |
CN112019553B (en) | Data sharing method based on IBE/IBBE | |
CN114499862A (en) | Symmetric key pool encryption and transmission method based on quantum key distribution | |
CN115694791A (en) | QKD-based distribution network and method | |
CN116233767B (en) | Cluster intercom communication method, device, equipment and storage medium | |
CN107040921A (en) | One kind is based on point-to-point SMS encryption system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
WD01 | Invention patent application deemed withdrawn after publication | ||
WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20200703 |