CN111475822B - Quantum key management method and device based on database - Google Patents
Quantum key management method and device based on database Download PDFInfo
- Publication number
- CN111475822B CN111475822B CN202010144415.1A CN202010144415A CN111475822B CN 111475822 B CN111475822 B CN 111475822B CN 202010144415 A CN202010144415 A CN 202010144415A CN 111475822 B CN111475822 B CN 111475822B
- Authority
- CN
- China
- Prior art keywords
- quantum key
- key
- quantum
- comparison
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/20—Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
- G06F16/22—Indexing; Data structures therefor; Storage structures
- G06F16/2228—Indexing structures
- G06F16/2255—Hash tables
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/20—Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
- G06F16/22—Indexing; Data structures therefor; Storage structures
- G06F16/2282—Tablespace storage structures; Management thereof
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04B—TRANSMISSION
- H04B10/00—Transmission systems employing electromagnetic waves other than radio-waves, e.g. infrared, visible or ultraviolet light, or employing corpuscular radiation, e.g. quantum communication
- H04B10/70—Photonic quantum communication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0852—Quantum cryptography
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0894—Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
Abstract
The invention relates to a quantum key management method and device based on a database. The quantum key management device may receive the quantum key uploaded by the quantum key distribution device and include a quantum key storage table, a quantum key comparison table, and a quantum key data table. Wherein the quantum key storage table is configured to store quantum key information; the quantum key data table is configured to store quantum key data; and the quantum key alignment table is configured to store alignment information. By optimizing the quantum key management device configuration from the database perspective, on one hand, continuous storage reading is changed into random storage reading, and on the other hand, storage and comparison flow Cheng Jieou are carried out, so that the quantum key reading and writing speed, reliability and fault tolerance are enhanced.
Description
Technical Field
The invention relates to the field of quantum communication, in particular to a quantum key management method and device based on a database.
Background
The quantum key distribution is realized by preparing light quanta at one end point and measuring the light quanta at the other end point, so that a shared quantum key is formed between the two end points, and then the shared quantum key and key information are respectively uploaded to quantum key management devices at the two ends. In the prior art, a quantum key management device compares a received quantum key with key information, and stores the compared quantum key and key information in a disk in a file form. When a user initiates a quantum key output flow, the quantum key management device reads a quantum key from a file of a magnetic disk and outputs the quantum key.
The above prior art solutions have mainly three drawbacks: 1. the quantum key data is stored in a disk file in a continuous mode, so that the read-write speed can not be improved; 2. the quantum key data can be stored only after comparison flow, and the comparison after storage can not be realized; 3. the expandability is not high, the data synchronization depends on the disk information synchronization, and only one master and one slave can be realized.
Disclosure of Invention
Aiming at the defects in the prior art, the invention provides a quantum key management method and a device based on a database, which are used for improving the reading and writing speed, reliability and fault tolerance of the quantum key by innovatively optimizing the structure of the quantum key management device based on the database, changing continuous storage reading into random storage reading on one hand and storing and comparing the storage and comparison flow Cheng Jieou on the other hand.
In particular, a first aspect of the invention relates to a database-based quantum key management device arranged to receive a quantum key uploaded by a quantum key distribution device and comprising a quantum key storage table, a quantum key comparison table and a quantum key data table; wherein, the liquid crystal display device comprises a liquid crystal display device,
the quantum key storage table is configured to store quantum key information;
the quantum key data table is configured to store quantum key data; the method comprises the steps of,
the quantum key alignment table is arranged to store alignment information.
Further, the quantum key management device of the present invention further includes a quantum key management table configured to store the encryption pool key amount and the decryption pool key amount.
Further, the quantum key management table is further configured to store local quantum key distribution device ID information and counterpart quantum key distribution device ID information; and/or the quantum key management table is further configured to store a key type of the quantum key.
Further, the quantum key is encrypted upon uploading; and/or the quantum key management device is further configured to receive the local quantum key distribution device ID information and the opposite quantum key distribution device ID information uploaded by the quantum key distribution device.
Further, the quantum key data comprises a key ciphertext generated by encrypting the quantum key in a key fob by storing an encryption key; and/or the quantum key data table is further arranged to store quantum key hash values.
Still further, the quantum key storage table also stores therein an index of a stored encryption key for obtaining the stored encryption key for the quantum key in the key fob.
Furthermore, the quantum key data table also stores a stored encryption key ciphertext, and the stored encryption key ciphertext is generated by encrypting the stored encryption key by a key in the key fob. The quantum key storage table also stores an index of keys for encrypting storage encryption keys for obtaining the keys for the storage encryption keys in the key fob.
Further, the quantum key information includes local quantum key distribution device ID information, opposite quantum key distribution device ID information, and a quantum key hash value.
Further, the quantum key information further includes at least one of a current receiving sequence number, a key type, a storage time, and a key pool to which the quantum key belongs.
Further, the comparison information comprises a quantum key hash value and a comparison state.
Further, the quantum key comparison table is further configured to store at least one of a current reception sequence number, a reception state, and a comparison time.
Further, the quantum key management device of the invention also comprises a quantum key receiving interface, a quantum key comparison interface and a quantum key output interface; wherein, the liquid crystal display device comprises a liquid crystal display device,
the quantum key receiving interface is arranged to receive the quantum key from the quantum key distribution device;
the quantum key comparison interface is configured for consistent comparison of the quantum keys stored between the quantum key management devices;
the quantum key output interface is configured to output the quantum keys that are aligned.
A second aspect of the invention relates to a database-based quantum key management method comprising the steps of:
establishing a quantum key storage table, a quantum key data table and a quantum key comparison table in the quantum key management device A and the quantum key management device B;
when the quantum key management device a and the quantum key management device B receive quantum keys from the quantum key distribution device a and the quantum key distribution device B, respectively, storing the quantum keys in the quantum key data table, and storing quantum key information in the quantum key storage table;
the quantum key management device A takes out comparison information from the quantum key comparison table and sends the comparison information to the quantum key management device B;
when the quantum key management device B receives the comparison information, the comparison information is compared with the comparison information in a quantum key comparison table of the quantum key management device B; when the comparison is successful, modifying the comparison state to be compared, and replying a comparison result to the quantum key management device A;
after the quantum key management device A receives the comparison result, the comparison state in the quantum key comparison table of the quantum key management device A is modified.
Further, the quantum key management method of the present invention further includes a step of updating the decryption pool key amount and the encryption pool key amount in the quantum key management table according to the comparison state.
Further, the quantum key information includes local side quantum key distribution device ID information and counterpart side quantum key distribution device ID information.
Further, the quantum key management method of the present invention further includes a step of updating the local side quantum key distribution device ID information and the opposite side quantum key distribution device ID information, and/or the key type in the quantum key management table according to the comparison state.
Further, the alignment information includes a quantum key hash value.
Further, the comparing further includes comparing the local quantum key distribution device ID information with the counterpart quantum key distribution device ID information.
Further, the quantum key in the quantum key data table is in the form of a key ciphertext generated by encrypting the quantum key in a key fob by a stored encryption key.
Further, the quantum key storage table stores therein an index of a stored encryption key for obtaining the stored encryption key in the key fob; alternatively, the stored encryption key is stored in the quantum key data table in encrypted form by means of a key, and an index of the key for encrypting the stored encryption key is stored in the quantum key storage table for obtaining the key for the stored encryption key in the key fob.
The quantum key management method of the present invention is preferably realized based on the quantum key management apparatus of the present invention.
Drawings
The following describes the embodiments of the present invention in further detail with reference to the drawings.
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings that are required in the embodiments or the description of the prior art will be briefly described, it being obvious that the drawings in the following description are only some embodiments of the present invention, and that other drawings may be obtained according to these drawings without inventive effort for a person skilled in the art.
Fig. 1 schematically illustrates a data upload process of a database-based quantum key management method according to the present invention;
fig. 2 schematically shows a schematic structural diagram of a database-based quantum key management device according to the present invention.
Detailed Description
Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings. The following examples are provided by way of illustration to fully convey the spirit of the invention to those skilled in the art to which the invention pertains. Thus, the present invention is not limited to the embodiments disclosed herein.
As shown in fig. 1, in the quantum key management method of the present invention, after quantum keys are generated at the quantum key distribution apparatuses a and B, the quantum keys may be uploaded to the quantum key management apparatuses a and B by the quantum key distribution apparatuses a and B, respectively.
In a preferred example, the quantum key uploaded by the quantum key distribution device to the quantum key management device may be cryptographically processed. Accordingly, the encrypted quantum key uploaded into the quantum key management device can be subjected to decryption processing in the key fob.
In addition, the quantum key distribution device may upload contents such as the local side quantum key distribution device ID information (i.e., the "local side ID") and the opposite side quantum key distribution device ID information (i.e., the "opposite side ID") to the quantum key management device at the same time as uploading the quantum key. Preferably, the content may also be encrypted during the uploading process.
The working principle of the quantum key management method of the present invention will be further described with reference to the description of the database-based quantum key management device of fig. 2.
As shown in fig. 2, the database-based quantum key management device of the present invention may include a quantum key management table, a quantum key storage table, a quantum key comparison table, and a quantum key data table.
The quantum key management table is used to store an encryption pool key amount (i.e., "key amount of quantum key for encryption operation") and a decryption pool key amount (i.e., "key amount of quantum key for decryption operation").
In a preferred example, the quantum key management table may further store ID information of the local side quantum key distribution device and ID information of the counterpart side quantum key distribution device to facilitate the subsequent management operation. For example, ID information of the quantum key distribution apparatuses a and B may be stored in the quantum key management table.
The quantum key management table may also store key types for quantum keys including, but not limited to, generation keys, relay keys, secondary keys, and the like.
The quantum key storage table is used for storing quantum key information, and comprises local quantum key distribution device ID information, opposite quantum key distribution device ID information, quantum key hash values (namely 'key hash values'), a key pool to which the quantum key belongs (namely 'key pool to which the quantum key belongs'), and the like. The key pool to which the quantum key belongs can comprise a quantum key decryption key pool and a quantum key encryption key pool, and the quantum key decryption key pool is used for indicating the purpose of the quantum key.
As an example, the quantum key storage table may also store the current reception order number and the key order number. The receiving sequence number is used for indicating the sequence of the receiving operation in all receiving operations; the key sequence number is used for indicating the storage position of the quantum key received at this time. Further, the quantum key storage table may also store a storage time of the quantum key.
The quantum key data table is used to store quantum keys.
In one example, an encrypted quantum key uploaded by a quantum key distribution device is first buffered in a key fob and decrypted in the key fob to obtain a quantum key, and then stored encrypted in the key fob using a preset stored encryption key to obtain a key ciphertext that is stored in a quantum key data table, i.e., the quantum key is stored in the quantum key data table after being encrypted in the key fob. Accordingly, it is also possible to store an index of the storage encryption key in the quantum key storage table, so that a storage encryption key for storage encryption of the quantum key can be obtained from the index in the key fob, and the key ciphertext in the quantum key data table is decrypted using the storage encryption key to obtain the quantum key for output to the outside (e.g., a user).
Preferably, the storage encryption key itself used to store the encryption of the quantum key may also be stored in encrypted form in the quantum key data table. That is, in this preferred example, the quantum key data table may also have stored therein a stored encryption key ciphertext. Accordingly, an index of a key for encrypting the stored encryption key may also be stored in the quantum key storage table, so that a key for encrypting the stored encryption key may be obtained in the key fob based on the index, and the stored encryption key ciphertext in the quantum key data table may be decrypted using the key to obtain the stored encryption key, and further the key ciphertext in the quantum key data table may be decrypted in the key fob to obtain the quantum key for output to the outside (e.g., a user).
By means of the arrangement in the quantum key data table, plaintext of the quantum key (and the stored encryption key) cannot appear in the database layer, all encryption and decryption processes are carried out in the key fob, encryption of the quantum key original text can be safely realized in the quantum key management device, and confidentiality of the quantum key management process is greatly enhanced.
In the invention, the quantum key hash value is not only used for verifying the correctness of the quantum key, but also used as an index of the quantum key in the quantum key data table. Accordingly, the quantum key data table may also have stored therein a quantum key hash value to provide an index to the quantum key.
The quantum key alignment table is used to store alignment information, which may include quantum key hash values (i.e., "key hash values") and alignment states for use by the quantum key alignment process. As an example, the quantum key comparison table may also store one or more of the current receive sequence number, receive status, and comparison time.
In the quantum key management device, related field contents related to quantum key storage management are innovatively subjected to sub-table management on the basis of a database, so that the storage reading rate is improved, the storage and comparison flow is decoupled, the service complexity is reduced, continuous storage reading can be changed into random storage reading, and the problem that quantum key data can only be stored in a disk file in a continuous mode and is compared and then stored in the prior art is solved, thereby enhancing the reading and writing rate, the reliability and the fault tolerance of the quantum key. For example, in the related field content related to the quantum key storage management, the quantum key data such as the key ciphertext and the storage encryption key ciphertext often have larger data volume and higher reading frequency requirement, and the content of the two fields only relates to the quantum key receiving and outputting process of the quantum key management device, and does not participate in the comparison process; the local quantum key distribution device ID, the opposite quantum key distribution device ID, the key hash value and other sub key information are field contents which need to be used in the comparison process, and the data volume is relatively smaller. Therefore, the invention proposes to separately set a quantum key data table (for indexing and other purposes, a key hash value is also stored in the quantum key data table) for two contents of the key ciphertext and the stored encryption key ciphertext in the database, and simultaneously separately set a quantum key storage table for sub-key information such as a local terminal ID, an opposite terminal ID, a key hash value and the like. Therefore, the content in the quantum key data table requiring high reading frequency can be minimized, useless operation on the quantum key data table is reduced as much as possible, and the reading efficiency of the quantum key data table is improved. Meanwhile, by means of the sub-table setting, the quantum key storage process and the comparison process are decoupled, so that the limitation that the quantum key storage process in the prior art is required to be completed after the comparison process is completed is avoided. By changing continuous storage reading into random storage reading, the reliability and fault tolerance of quantum key storage can be effectively enhanced, and the loss caused by the fact that the whole quantum key cannot be successfully stored due to error comparison of a certain quantum key in the prior art is avoided, so that the method is very beneficial to improving the storage efficiency of the quantum key.
In order to realize the data exchange between the quantum key management device and the outside, the quantum key management device of the invention can also comprise a quantum key receiving interface, a quantum key comparison interface and a quantum key output interface.
The quantum key receiving interface may be arranged to receive the quantum key from the quantum key distribution device.
The quantum key comparison interface may be configured for quantum key consistency comparison of stored between quantum key management devices.
The quantum key output interface may be arranged to output a comparably identical quantum key to the outside (e.g. to a user).
The basic flow of the management method of the present invention will be described with reference to the quantum key management device shown in fig. 2.
First, a quantum key storage table, a quantum key data table, and a quantum key comparison table are created based on a database in a quantum key management apparatus.
Next, when the quantum key management apparatuses a and B receive the quantum key (which may be, for example, encrypted) from the quantum key distribution apparatuses a and B, respectively, the quantum key may be stored in a quantum key data table, and quantum key information (for example, a home ID and an opposite ID) may be stored in the quantum key storage table, and a key comparison record may be newly added in the quantum key comparison table. The quantum key management device may also generate and cache the current key receiving sequence number (i.e. "current receiving sequence number").
When the present quantum key reception is completed, the quantum key management device a extracts comparison information (e.g., a key hash value or the like) from a quantum key comparison table (which is built in a local database, for example), and transmits the comparison information to the quantum key management device B.
When the quantum key management device B receives the alignment information, the alignment information from device a is aligned with the alignment information (e.g., key hash value, etc.) in its quantum key alignment table (which is, for example, established in a local database). After the comparison is successful, the comparison state is modified to be compared, and then the comparison result is returned to the quantum key management device A.
After receiving the comparison result, the quantum key management device A modifies the comparison state in the quantum key comparison table.
Finally, the decryption pool key amount and the encryption pool key amount in the quantum key management table are updated.
In a preferred example, the comparison process may also utilize the local end ID and the opposite end ID in the quantum key storage table for comparison.
In a preferred example, when the quantum key management table is updated, the local ID and the peer ID, and/or the key type, etc., may also be updated accordingly.
It can be seen that in the quantum key management method of the present invention, the storage of the quantum key is decoupled from the comparison implementation, and the comparison process may not be performed before the quantum key is stored.
Further, in the present invention, if the comparison is unsuccessful, the corresponding quantum key may be deleted in the database, or the corresponding quantum key may be temporarily reserved in the database and the deletion timing thereof may be decided according to the quantum key data amount stored in the database and the quantum key storage time.
In one example, the quantum key uploaded into the quantum key management device is first cached in the key fob (when the uploaded quantum key is in encrypted form, the encrypted quantum key may be decrypted first in the key fob to obtain the plaintext of the quantum key). Then, the key fob is stored and encrypted by using a preset storage encryption key, so that the obtained key ciphertext is stored in the quantum key data table. Accordingly, an index of the stored encryption key may also be stored in the quantum key storage table, so that a stored encryption key for storing and encrypting the quantum key may be obtained in the key fob from the index, and the key ciphertext in the quantum key data table may be decrypted using the stored encryption key to obtain the quantum key for output to the outside (e.g., a user).
Preferably, a storage encryption key for storage encryption of the quantum key may be stored in an encrypted form in the quantum key data table. That is, in this preferred example, the quantum key data table may also have stored therein a stored encryption key ciphertext. Accordingly, an index of a key for encrypting the stored encryption key may also be stored in the quantum key storage table, so that a key for encrypting the stored encryption key may be obtained in the key fob according to the index, and the stored encryption key ciphertext in the quantum key data table may be decrypted by using the key to obtain the stored encryption key, and further the key ciphertext in the quantum key data table may be decrypted in the key fob to obtain the quantum key for output to the outside (e.g., a user).
While the invention has been described in connection with the specific embodiments illustrated in the drawings, it will be readily appreciated by those skilled in the art that the above embodiments are merely illustrative of the principles of the invention, which are not intended to limit the scope of the invention, and various combinations, modifications and equivalents of the above embodiments may be made by those skilled in the art without departing from the spirit and scope of the invention.
Claims (19)
1. A database-based quantum key management device arranged to receive a quantum key uploaded by a quantum key distribution device and comprising a quantum key storage table, a quantum key comparison table and a quantum key data table, and a quantum key receiving interface and a quantum key comparison interface; wherein, the liquid crystal display device comprises a liquid crystal display device,
the quantum key storage table is used for storing quantum key information and comprises local quantum key distribution device ID information and opposite quantum key distribution device ID information;
the quantum key data table is configured to store quantum key data, which is a quantum key; the method comprises the steps of,
the quantum key comparison table is used for storing comparison information, and comprises a quantum key hash value and a comparison state;
the quantum key receiving interface is arranged to receive the quantum key from the quantum key distribution device;
the quantum key comparison interface is configured for consistent comparison of the quantum keys stored between the quantum key management devices.
2. The quantum key management device of claim 1, further comprising a quantum key management table configured to store an encrypted pool key quantity and a decrypted pool key quantity.
3. The quantum key management device of claim 2, wherein the quantum key management table is further configured to store local side quantum key distribution device ID information and counterpart side quantum key distribution device ID information; and/or the quantum key management table is further configured to store a key type of the quantum key.
4. The quantum key management device of claim 1, wherein the quantum key is encrypted at upload; and/or the quantum key management device is further configured to receive the local quantum key distribution device ID information and the opposite quantum key distribution device ID information uploaded by the quantum key distribution device.
5. The quantum key management apparatus of claim 1, wherein the quantum key data comprises a key ciphertext generated by encrypting the quantum key in a key fob by a stored encryption key; and/or the quantum key data table is further arranged to store quantum key hash values.
6. The quantum key management apparatus of claim 5, wherein the quantum key storage table further stores therein an index of a stored encryption key for obtaining the stored encryption key for the quantum key in the key fob.
7. The quantum key management apparatus of claim 5, wherein the quantum key data table further stores therein a stored encryption key ciphertext generated by encrypting the stored encryption key by a key in the key fob.
8. The quantum key management apparatus of claim 7, wherein the quantum key storage table further stores an index of keys for encrypting storage encryption keys for obtaining the keys for the storage encryption keys in the key fob.
9. The quantum key management apparatus of claim 1, wherein the quantum key information further comprises a quantum key hash value.
10. The quantum key management apparatus of claim 9, wherein the quantum key information further includes at least one of a current reception order number, a key type, a storage time, and a key pool to which the quantum key belongs.
11. The quantum key management apparatus of claim 1, wherein the quantum key comparison table is further configured to store at least one of a current reception sequence number, a reception state, and a comparison time.
12. The quantum key management device of claim 1, further comprising a quantum key output interface; wherein, the liquid crystal display device comprises a liquid crystal display device,
the quantum key output interface is configured to output the quantum keys that are aligned.
13. A database-based quantum key management method, comprising the steps of:
establishing a quantum key storage table, a quantum key data table and a quantum key comparison table in the quantum key management device A and the quantum key management device B;
when the quantum key management device a and the quantum key management device B receive quantum keys from the quantum key distribution device a and the quantum key distribution device B, respectively, storing the quantum keys in the quantum key data table, and storing quantum key information in the quantum key storage table, wherein the quantum key information comprises local side quantum key distribution device ID information and opposite side quantum key distribution device ID information;
the quantum key management device A takes out comparison information from the quantum key comparison table and sends the comparison information to the quantum key management device B, wherein the comparison information comprises a quantum key hash value and a comparison state;
when the quantum key management device B receives the comparison information, the comparison information is compared with the comparison information in a quantum key comparison table of the quantum key management device B; when the comparison is successful, modifying the comparison state to be compared, and replying a comparison result to the quantum key management device A;
after the quantum key management device A receives the comparison result, the comparison state in the quantum key comparison table of the quantum key management device A is modified.
14. The quantum key management method of claim 13, further comprising the step of updating a decryption pool key amount and an encryption pool key amount in a quantum key management table according to the alignment state.
15. The quantum key management method of claim 14, further comprising the step of updating the home quantum key distribution device ID information and the peer quantum key distribution device ID information, and/or the key type, in a quantum key management table according to the alignment state.
16. The quantum key management method of claim 13, wherein the quantum key in the quantum key data table is in the form of a key ciphertext generated by encrypting the quantum key in a key fob by a stored encryption key.
17. The quantum key management method of claim 13, wherein the comparing further comprises comparing the local side quantum key distribution device ID information and the counterpart side quantum key distribution device ID information.
18. The quantum key management method of claim 16, wherein the quantum key storage table stores therein an index of a stored encryption key for obtaining the stored encryption key in the key fob; alternatively, the stored encryption key is stored in the quantum key data table in encrypted form by means of a key, and an index of the key for encrypting the stored encryption key is stored in the quantum key storage table for obtaining the key for the stored encryption key in the key fob.
19. A quantum key management method according to any of claims 13-18, implemented based on a quantum key management device according to any of claims 1-12.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010144415.1A CN111475822B (en) | 2020-03-04 | 2020-03-04 | Quantum key management method and device based on database |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010144415.1A CN111475822B (en) | 2020-03-04 | 2020-03-04 | Quantum key management method and device based on database |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN111475822A CN111475822A (en) | 2020-07-31 |
| CN111475822B true CN111475822B (en) | 2023-07-07 |
Family
ID=71748046
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010144415.1A Active CN111475822B (en) | 2020-03-04 | 2020-03-04 | Quantum key management method and device based on database |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111475822B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112838928A (en) * | 2021-02-05 | 2021-05-25 | 安徽华典大数据科技有限公司 | Quantum key management method based on database |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2010037576A1 (en) * | 2008-10-01 | 2010-04-08 | Hewlett-Packard Development Company, L.P. | Qkd transmitter and transmission method |
| CN106301769A (en) * | 2015-06-08 | 2017-01-04 | 阿里巴巴集团控股有限公司 | Quantum key output intent, storage consistency verification method, Apparatus and system |
| CN106656490A (en) * | 2016-12-26 | 2017-05-10 | 浙江神州量子网络科技有限公司 | Quantum whiteboard data storage method |
| CN107800537A (en) * | 2017-11-27 | 2018-03-13 | 安徽问天量子科技股份有限公司 | Encrypting database system and method, storage method and querying method based on quantum key distribution technology |
| CN109150519A (en) * | 2018-09-20 | 2019-01-04 | 如般量子科技有限公司 | Anti- quantum calculation cloud storage method of controlling security and system based on public keys pond |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7227955B2 (en) * | 2003-02-07 | 2007-06-05 | Magiq Technologies, Inc. | Single-photon watch dog detector for folded quantum key distribution system |
| EP2697931B1 (en) * | 2011-04-15 | 2017-12-13 | Quintessencelabs Pty Ltd | Qkd key management system |
-
2020
- 2020-03-04 CN CN202010144415.1A patent/CN111475822B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2010037576A1 (en) * | 2008-10-01 | 2010-04-08 | Hewlett-Packard Development Company, L.P. | Qkd transmitter and transmission method |
| CN106301769A (en) * | 2015-06-08 | 2017-01-04 | 阿里巴巴集团控股有限公司 | Quantum key output intent, storage consistency verification method, Apparatus and system |
| CN106656490A (en) * | 2016-12-26 | 2017-05-10 | 浙江神州量子网络科技有限公司 | Quantum whiteboard data storage method |
| CN107800537A (en) * | 2017-11-27 | 2018-03-13 | 安徽问天量子科技股份有限公司 | Encrypting database system and method, storage method and querying method based on quantum key distribution technology |
| CN109150519A (en) * | 2018-09-20 | 2019-01-04 | 如般量子科技有限公司 | Anti- quantum calculation cloud storage method of controlling security and system based on public keys pond |
Non-Patent Citations (1)
| Title |
|---|
| 基于量子密钥和云服务的身份加密方案;韩家伟等;《吉林大学学报(工学版)》;20180228(第02期);全文 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN111475822A (en) | 2020-07-31 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11743043B2 (en) | Encrypted search | |
| CN108809932A (en) | A kind of deposit system, method and readable medium based on block chain | |
| US20230396594A1 (en) | File Encryption and Transmission Method and Apparatus | |
| CN108833361A (en) | A kind of identity identifying method and device based on virtual account | |
| CN105279254A (en) | Layout data stream file system, operation apparatus for system and realization method for apparatus | |
| CN111523133A (en) | Block chain and cloud data collaborative sharing method | |
| US9397984B1 (en) | Apparatus and method for secure file transfer | |
| US20180091301A1 (en) | Method and system for switching public keys in ciphertexts | |
| CN108123934A (en) | A kind of data integrity verifying method towards mobile terminal | |
| CN111475822B (en) | Quantum key management method and device based on database | |
| CN105763333A (en) | Method and system for negotiating asymmetric key | |
| Yan et al. | Placement delivery array design for combination networks with edge caching | |
| CN110719164A (en) | Quantum offline key synchronization time service method | |
| CN105430017B (en) | Data safety communication means | |
| CN108846671B (en) | Online secure transaction method and system based on block chain | |
| CN114297728A (en) | Cloud edge collaborative federated learning integrity authentication method based on Merkle tree | |
| Wang et al. | Private federated submodel learning via private set union | |
| CN110881019A (en) | Secure communication terminal, secure communication system and communication method thereof | |
| CN114499857A (en) | Method for realizing data correctness and consistency in big data quantum encryption and decryption | |
| CN107360259A (en) | A kind of new ease for use of HTML5 mobile clients storage solves method | |
| CN112732839A (en) | Data synchronization method and device | |
| Gürgens et al. | Security analysis of efficient (Un-) fair non-repudiation protocols | |
| CN115860932B (en) | Cross-fragment transaction method, device and medium | |
| CN116455593A (en) | Sensitive information synchronization method and device | |
| US11973867B2 (en) | Encrypted search |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |