CN112804059A - Internet of things communication system based on quantum technology - Google Patents

Internet of things communication system based on quantum technology Download PDF

Info

Publication number
CN112804059A
CN112804059A CN202110317558.2A CN202110317558A CN112804059A CN 112804059 A CN112804059 A CN 112804059A CN 202110317558 A CN202110317558 A CN 202110317558A CN 112804059 A CN112804059 A CN 112804059A
Authority
CN
China
Prior art keywords
key
internet
things
secret key
encrypted
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202110317558.2A
Other languages
Chinese (zh)
Inventor
王振宇
徐征
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shanghai Qishu Network Technology Co ltd
Original Assignee
Shanghai Qishu Network Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shanghai Qishu Network Technology Co ltd filed Critical Shanghai Qishu Network Technology Co ltd
Priority to CN202110317558.2A priority Critical patent/CN112804059A/en
Publication of CN112804059A publication Critical patent/CN112804059A/en
Priority to PCT/CN2021/142718 priority patent/WO2022199186A1/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0852Quantum cryptography
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/12Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0877Generation of secret information including derivation or calculation of cryptographic keys or passwords using additional device, e.g. trusted platform module [TPM], smartcard, USB or hardware security module [HSM]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
    • H04L9/0897Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage involving additional devices, e.g. trusted platform module [TPM], smartcard or USB

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Theoretical Computer Science (AREA)
  • Electromagnetism (AREA)
  • Physics & Mathematics (AREA)
  • Health & Medical Sciences (AREA)
  • General Health & Medical Sciences (AREA)
  • Medical Informatics (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The invention discloses an internet of things communication system based on quantum technology, which comprises: the cloud platform comprises an encryption center, secret keys are stored in the U-key and the encryption center in advance, the U-key acquires messages to be encrypted of the Internet of things terminal for encryption, and the encrypted messages and secret key serial numbers are sent to the Internet of things terminal through a U-key interface; the internet of things terminal receives the encrypted message and the encrypted key serial number, and sends the encrypted message and the encrypted key serial number to the cloud platform; and the cloud platform takes out the secret key pre-stored in the encryption center according to the secret key sequence number to decrypt the encrypted message to obtain a plaintext message. By implementing the method and the device, the secret key is stored in the U-key, and when the data interaction is carried out between the terminal of the Internet of things and the cloud platform, the secret key in the U-key is adopted for carrying out data encryption, so that ciphertext transmission is realized. The technical problem of poor safety in a mode of adopting a preset key and issuing the key through a short message is solved.

Description

Internet of things communication system based on quantum technology
Technical Field
The invention relates to the technical field of communication, in particular to an internet of things communication system based on a quantum technology.
Background
With the continuous evolution of urban intellectualization and digitalization, the application of the internet of things becomes more and more popular. Accordingly, the control and cooperative operation of large-scale internet of things equipment and the serious consequences possibly caused by the loss of control are more and more paid attention. The security of the internet of things is becoming one of the basic problems that people need to solve. In order to realize the security of the data to and from the internet of things terminal and the internet of things platform, the data to and from the internet of things terminal is usually encrypted.
At present, the encryption transmission of the data to and from the internet of things terminal and the internet of things platform generally adopts the following modes: firstly, a key is negotiated in advance by the Internet of things terminal and the Internet of things platform, the key is preset in the Internet of things terminal and the Internet of things platform at the same time, and encryption transmission of data to and from the Internet of things terminal and the Internet of things platform is realized by the preset key; and secondly, the key is distributed by the Internet of things platform, the key is issued to the Internet of things terminal through a short message, and the distributed key is used for realizing encrypted transmission of the data between the Internet of things terminal and the Internet of things platform. However, both the preset key and the key issuing mode through short message make the key easy to leak, and the security is poor.
Disclosure of Invention
In view of this, the embodiment of the present invention provides an internet of things communication system based on a quantum technology, so as to solve the technical problems in the prior art that a secret key is easy to leak and has poor security both by means of a preset secret key and a secret key issuing short message when encryption transmission of data to and from a terminal of the internet of things and a platform of the internet of things is performed.
The technical scheme provided by the invention is as follows:
the embodiment of the invention provides an Internet of things communication system based on quantum technology, which comprises: the cloud platform comprises an encryption center, the U-key and a secret key generated by a quantum random number generator are stored in the encryption center in advance, the U-key is used for acquiring a message to be encrypted through a U-key interface of the Internet of things terminal, the message to be encrypted is encrypted by adopting the prestored secret key, and the encrypted message and a secret key serial number are sent to the Internet of things terminal through the U-key interface; the internet of things terminal receives the encrypted message and the secret key serial number and sends the encrypted message and the secret key serial number to the cloud platform; and the cloud platform takes out the secret key pre-stored in the encryption center according to the secret key serial number to decrypt the encrypted message to obtain a plaintext message.
Optionally, the U-key is further configured to obtain parameter information of the internet of things terminal through the U-key interface before obtaining the message to be encrypted, encrypt the parameter information by using a pre-stored secret key, and send the encrypted parameter, secret key serial number, and U-key number to the internet of things terminal through the U-key interface; the internet of things terminal receives the encrypted parameters, the encrypted key serial number and the encrypted U-key number, and sends the encrypted parameters, the encrypted key serial number and the encrypted U-key number to the cloud platform; and the cloud platform takes out the secret key pre-stored in the encryption center according to the secret key serial number to decrypt the encrypted parameters, binds the plaintext parameters and the U-key number to obtain binding information, saves the binding information, and sends the binding information to the Internet of things terminal.
Optionally, when the internet of things terminal sends the encrypted message and the key sequence number to the cloud platform, the internet of things terminal also sends the binding information to the cloud platform; and the cloud platform receives the binding information, verifies the binding information and the stored binding information, and after the verification is passed, takes out the secret key stored in the encryption center in advance according to the secret key serial number to decrypt the encrypted message to obtain a plaintext message.
Optionally, the quantum-technology-based internet of things communication system further includes: and the Internet of things subsystem gateway is respectively connected with the Internet of things terminal and the cloud platform, and forwards the encrypted message output by the Internet of things terminal and the secret key sequence number to the cloud platform.
Optionally, the quantum-technology-based internet of things communication system further includes: the gateway U-key is stored with a secret key generated by a quantum random number generator in advance, the gateway U-key is connected with the gateway of the IOT subsystem through a U-key interface of the gateway of the IOT subsystem, the gateway of the IOT subsystem receives the encrypted message output by the IOT terminal and the secret key serial number, and the secret key stored in the gateway U-key in advance is taken out according to the secret key serial number to decrypt the encrypted message to obtain a plaintext message.
Optionally, the quantum-technology-based internet of things communication system further includes: the edge server is respectively connected with the Internet of things terminal and the cloud platform, and forwards the encrypted message output by the Internet of things terminal and the key sequence number to the cloud platform.
Optionally, the quantum-technology-based internet of things communication system further includes: the edge U-key is stored with a secret key generated by a quantum random number generator in advance, the edge U-key is connected with the edge server through a U-key interface of the edge server, the edge server receives the encrypted message and the secret key serial number output by the Internet of things terminal, and the secret key stored in the edge U-key in advance is taken out according to the secret key serial number to decrypt the encrypted message to obtain a plaintext message.
Optionally, the encryption center includes: the quantum random number generator is arranged in the secret key generation unit, the U-key and the secret key storage unit are connected with the secret key generation unit, the secret key generated by the quantum random number generator is acquired and stored, and the sequence of the U-key and the secret key stored in the secret key storage unit is consistent.
Optionally, the encryption center further includes: and the secret key management unit is used for managing the secret key in the gateway U-key, so that the secret key in the gateway U-key is consistent with the secret key in the U-key connected with the terminal of the Internet of things.
Optionally, the key management unit in the encryption center is further configured to manage a key in the edge U-key, so that the key in the edge U-key is consistent with a key in a U-key connected to the terminal of the internet of things.
The technical scheme provided by the invention has the following effects:
according to the quantum technology-based Internet of things communication system provided by the embodiment of the invention, the U-key is arranged, and the secret key generated by the quantum random number generator is stored in the U-key in advance, so that when the Internet of things terminal and the cloud platform carry out data interaction, the Internet of things platform can be connected with the U-key, and the secret key stored in the U-key is adopted for carrying out data encryption, and meanwhile, the secret key is also stored in the cloud platform in advance, so that the data sent to the cloud platform can be decrypted to obtain the plaintext. In addition, because quantum is nonspeerable and indivisible, the random code generated based on the quantum is a true random code, and the random code is used as a secret key and has theoretical undecipherable performance, so that the quantum-technology-based internet of things communication system provided by the embodiment of the invention can further ensure the security of data transmission by encrypting and decrypting the secret key generated by the quantum random number generator, and solves the technical problems of poor encryption and decryption security in a mode of presetting the secret key and issuing the secret key through short messages.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, and it is obvious that the drawings in the following description are some embodiments of the present invention, and other drawings can be obtained by those skilled in the art without creative efforts.
Fig. 1 is a block diagram of a communication system of the internet of things based on quantum technology according to an embodiment of the invention;
fig. 2 is a block diagram of a communication system of the internet of things based on quantum technology according to another embodiment of the invention;
fig. 3 is a block diagram of a communication system of the internet of things based on quantum technology according to another embodiment of the invention.
Detailed Description
The technical solutions of the present invention will be described clearly and completely with reference to the accompanying drawings, and it should be understood that the described embodiments are some, but not all embodiments of the present invention. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
In the description of the present invention, it should be noted that the terms "center", "upper", "lower", "left", "right", "vertical", "horizontal", "inner", "outer", etc., indicate orientations or positional relationships based on the orientations or positional relationships shown in the drawings, and are only for convenience of description and simplicity of description, but do not indicate or imply that the device or element being referred to must have a particular orientation, be constructed and operated in a particular orientation, and thus, should not be construed as limiting the present invention. Furthermore, the terms "first," "second," and "third" are used for descriptive purposes only and are not to be construed as indicating or implying relative importance.
In the description of the present invention, it should be noted that, unless otherwise explicitly specified or limited, the terms "mounted," "connected," and "connected" are to be construed broadly, e.g., as meaning either a fixed connection, a removable connection, or an integral connection; can be mechanically or electrically connected; the two elements may be directly connected or indirectly connected through an intermediate medium, or may be communicated with each other inside the two elements, or may be wirelessly connected or wired connected. The specific meanings of the above terms in the present invention can be understood in specific cases to those skilled in the art.
In addition, the technical features involved in the different embodiments of the present invention described below may be combined with each other as long as they do not conflict with each other.
An embodiment of the present invention provides a quantum technology based communication system of internet of things, as shown in fig. 1, the quantum technology based communication system of internet of things includes: the cloud platform 30 comprises an encryption center, secret keys generated by a quantum random number generator are stored in the U-key 20 and the encryption center in advance, the U-key 20 is used for acquiring messages to be encrypted through a U-key 20 interface of the Internet of things terminal 10, the messages to be encrypted are encrypted through the prestored secret keys, and the encrypted messages and secret key serial numbers are sent to the Internet of things terminal 10 through a U-key 20 interface; the internet of things terminal 10 receives the encrypted message and the encrypted key serial number, and sends the encrypted message and the encrypted key serial number to the cloud platform 30; the cloud platform 30 takes out the secret key pre-stored in the encryption center according to the secret key sequence number to decrypt the encrypted message, so as to obtain a plaintext message. In a specific embodiment, the U-key 20 interface may be a USB type interface, or may be other types of interfaces, which is not limited in the present invention.
According to the quantum technology-based internet of things communication system provided by the embodiment of the invention, the U-key 20 is arranged, and the secret key generated by the quantum random number generator is stored in the U-key 20 in advance, so that when the internet of things terminal 10 and the cloud platform 30 perform data interaction, the internet of things platform can be connected with the U-key 20, and the secret key stored in the U-key 20 is adopted for data encryption, and meanwhile, the secret key is also stored in the cloud platform 30 in advance, so that the data sent to the cloud platform 30 can be decrypted to obtain a plaintext. In addition, because quantum is nonspeerable and indivisible, the random code generated based on the quantum is a true random code, and the random code is used as a secret key and has theoretical undecipherable performance, so that the quantum-technology-based internet of things communication system provided by the embodiment of the invention can further ensure the security of data transmission by encrypting and decrypting the secret key generated by the quantum random number generator, and solves the technical problems of poor encryption and decryption security in a mode of presetting the secret key and issuing the secret key through short messages.
In an embodiment, as shown in fig. 1, when the cloud platform 30 sends data to the internet of things terminal 10, the above manner may also be adopted, that is, the cloud platform 30 encrypts the data to be transmitted by using a key pre-stored in an encryption center, then sends the encrypted data and a corresponding key serial number to the internet of things terminal 10, and the internet of things terminal 10 takes out the corresponding key from the U-key 20 according to the key serial number to decrypt the corresponding key, so as to obtain a plaintext.
For one cloud platform 30, there may be a plurality of internet of things terminals 10 in communication therewith. In order to ensure that the secret key in the U-key 20 is not detected, one internet of things terminal 10 may be bound to one U-key 20, that is, the internet of things terminal 10 and the U-key 20 are set in a one-to-one correspondence. In an embodiment, before the data transmission between the internet of things terminal 10 and the cloud platform 30, the U-key 20 and the internet of things terminal 10 may be bound through the following process. Specifically, the U-key 20 is further configured to obtain parameter information of the internet of things terminal 10 through a U-key interface before obtaining the message to be encrypted, encrypt the parameter information by using a pre-stored key, and send the encrypted parameter, the key serial number, and the U-key number to the internet of things terminal 10 through the U-key interface; the internet of things terminal 10 receives the encrypted parameters, the key serial number and the U-key number, and sends the encrypted parameters, the key serial number and the U-key number to the cloud platform 30; the cloud platform 30 takes out the key pre-stored in the encryption center according to the key serial number to decrypt the encrypted parameters, binds the plaintext parameters and the U-key number to obtain binding information, stores the binding information, and sends the binding information to the internet of things terminal 10. The parameter information includes information such as a unique hardware number and a user number of the internet of things terminal 10.
In an embodiment, after the U-key 20 and the internet of things terminal 10 are bound, the internet of things terminal 10 may perform data transmission with the help of the bound U-key 20 and the cloud platform 30. Specifically, the internet of things terminal 10 encrypts data through a secret key in the U-key 20, and when sending the encrypted message and the secret key serial number to the cloud platform 30, also sends the binding information to the cloud platform 30; the cloud platform 30 receives the binding information, verifies the binding information and the stored binding information, and after the verification is passed, takes out the secret key stored in the encryption center in advance according to the secret key sequence number to decrypt the encrypted message to obtain a plaintext message.
In one embodiment, the encryption center comprises: the quantum random number generator is arranged in the secret key generating unit, the U-key 20 and the secret key storage unit are connected with the secret key generating unit, the secret key generated by the quantum random number generator is acquired and stored, and the sequence of the secret key stored in the U-key 20 and the secret key stored in the secret key storage unit is consistent. In a specific embodiment, before distributing the U-key 20 to the user and the internet of things terminal 10 binding, the U-key 20 may be key-annotated in the encryption center, that is, the key is stored in the U-key 20, and specifically, the key annotated in the U-key 20 of different internet of things terminal 10 bindings may be different.
In an embodiment, in order to ensure the flexibility of the system and the requirements of the encryption level, when encryption is performed in the U-key 20, keys may be obtained in sequence, or keys may be obtained randomly, as long as it is ensured that the sequence of the keys stored in the U-key 20 and the key storage unit is consistent, and the key sequence numbers are transmitted simultaneously during data transmission, so that an accurate key may be obtained; meanwhile, under the scene with strict encryption requirements, one-time encryption can be supported, namely, one secret key is discarded after being used once, and the other secret key is replaced for encryption next time. Meanwhile, in the scenario of one-time pad, the keys in the key pool are consumed, so that the key set of the encryption center can be updated to the U-key 20 on line at preset time intervals.
When data is transmitted between the terminal 10 of the internet of things and the cloud platform 30, other structures may be further required to forward the data, so that the transmitted data can be smoothly sent to the cloud platform 30. Therefore, in an embodiment, as shown in fig. 2, the quantum technology based internet of things communication system further includes: the internet of things subsystem gateway 40 is connected with the internet of things terminal 10 and the cloud platform 30, and the internet of things subsystem gateway 40 forwards the encrypted message and the key sequence number output by the internet of things terminal 10 to the cloud platform 30. In an embodiment, in addition to the internet of things subsystem gateway 40, the quantum technology based internet of things communication system further includes: the edge server 50, the edge server 50 is connected to the internet of things terminal 10 and the cloud platform 30, respectively, and the edge server 50 forwards the encrypted message and the key sequence number output by the internet of things terminal 10 to the cloud platform 30.
It should be noted that, both the internet of things subsystem gateway 40 and the edge server 50 may be arranged in the communication system according to actual needs, and at this time, when data transmission is performed, data output by the internet of things terminal 10 may be forwarded through the internet of things subsystem gateway 40 first, and then forwarded through the edge server 50 to the cloud platform 30. In addition, only the internet of things subsystem gateway 40 or the edge server 50 may be provided according to actual needs. It should be further noted that the internet of things subsystem gateway 40 or the edge server 50 can only forward data without having a data decryption function when performing data transmission.
In order to enable the internet of things subsystem gateway 40 to decrypt data when passing through the forwarded data, as shown in fig. 3, in an embodiment, the quantum technology based internet of things communication system further includes: the gateway U-key 41 and the gateway U-key 41 are pre-stored with a secret key generated by a quantum random number generator, the gateway U-key 41 is connected with the gateway 40 of the IOT subsystem through a U-key interface of the gateway 40 of the IOT subsystem, the gateway 40 of the IOT subsystem receives an encrypted message and a secret key serial number output by the terminal 10 of the IOT, and the secret key pre-stored in the gateway U-key 41 is taken out according to the secret key serial number to decrypt the encrypted message, so that a plaintext message is obtained. In a specific embodiment, different internet of things terminals 10 may communicate with the cloud platform 30 through different internet of things subsystem gateways 40, and therefore, when the gateway U-key 41 performs key injection in the encryption center, only the key stored in the U-key bound by the internet of things terminal 10 connected to the gateway U-key 41 may be stored. Specifically, a key management unit may be disposed in the encryption center, and the key management unit is configured to manage the key in the gateway U-key 41, so that the key in the gateway U-key 41 is consistent with the key in the U-key connected to the internet of things terminal 10.
In addition, in order to enable the edge server 50 to decrypt the data through the forwarded data, in an embodiment, as shown in fig. 3, the communication system of the internet of things based on the quantum technology further includes: the edge U-key 51 and the edge U-key 51 are pre-stored with keys generated by a quantum random number generator, the edge U-key 51 is connected with the edge server 50 through a U-key interface of the edge server 50, the edge server 50 receives encrypted messages and key serial numbers output by the Internet of things terminal 10, and the keys pre-stored in the edge U-key 51 are taken out according to the key serial numbers to decrypt the encrypted messages to obtain plaintext messages. Like the gateway 40 of the internet of things subsystem, the key management unit in the encryption center may also manage the keys in the edge U-key 51, so that the keys in the edge U-key 51 are consistent with the keys in the U-key connected to the terminal 10 of the internet of things. Specifically, the key management unit may enable the gateway U-key 41 to only store the key stored in the U-key bound by the internet of things terminal 10 connected to the gateway U-key 41 correspondingly when the encryption center performs key injection.
In one embodiment, due to the arrangement of the gateway U-key 41 and the edge U-key 51, the secure session between the terminal 10 of the internet of things and the subsystem gateway of the internet of things or between the terminal 10 of the internet of things and the edge server 50 does not need to be encrypted. In addition, for atypical internet of things, for example, data transmission between the terminal 10 of the internet of things and the edge server 50, or the terminal 10 of the internet of things is directly connected to the subsystem gateway 40 of the internet of things, and a multilayer subsystem gateway 40 or a multilayer edge server 50 is provided, the communication mode in the communication system provided by the embodiment of the present invention may be used for transmission.
The embodiments in the present description are described in a progressive manner, each embodiment focuses on differences from other embodiments, and the same and similar parts among the embodiments are referred to each other. It is clear to those skilled in the art that, for convenience and brevity of description, the specific working processes of the above-described systems, apparatuses and units may refer to the corresponding processes in the foregoing method embodiments, and are not described herein again.
In the several embodiments provided in the present application, it should be understood that the disclosed system, apparatus and method may be implemented in other manners. For example, the above-described apparatus embodiments are merely illustrative, and for example, the division of the units is only one logical division, and other divisions may be realized in practice, for example, a plurality of units or components may be combined or integrated into another system, or some features may be omitted, or not executed. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection through some interfaces, devices or units, and may be in an electrical, mechanical or other form.
The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment.
In addition, functional units in the embodiments of the present invention may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit. The integrated unit can be realized in a form of hardware, and can also be realized in a form of a software functional unit.
The integrated unit, if implemented in the form of a software functional unit and sold or used as a stand-alone product, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present invention may be embodied in the form of a software product, which is stored in a storage medium and includes instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute all or part of the steps of the method according to the embodiments of the present invention. And the aforementioned storage medium includes: a U-disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk, and other various media capable of storing program codes.
In summary, the above embodiments are only used for illustrating the technical solutions of the present invention, and not for limiting the same; although the present invention has been described in detail with reference to the foregoing embodiments, it will be understood by those of ordinary skill in the art that: the technical solutions described in the foregoing embodiments may still be modified, or some technical features may be equivalently replaced; and such modifications or substitutions do not depart from the spirit and scope of the corresponding technical solutions of the embodiments of the present invention.

Claims (10)

1. A communication system of the Internet of things based on quantum technology is characterized by comprising: an Internet of things terminal, a U-key and a cloud platform,
the cloud platform comprises an encryption center, the U-key and a secret key generated by a quantum random number generator are prestored in the encryption center, the U-key is used for acquiring a message to be encrypted through a U-key interface of the Internet of things terminal, the message to be encrypted is encrypted by adopting the prestored secret key, and the encrypted message and a secret key serial number are sent to the Internet of things terminal through the U-key interface;
the internet of things terminal receives the encrypted message and the secret key serial number and sends the encrypted message and the secret key serial number to the cloud platform;
and the cloud platform takes out the secret key pre-stored in the encryption center according to the secret key serial number to decrypt the encrypted message to obtain a plaintext message.
2. The quantum-technology-based internet-of-things communication system according to claim 1, wherein the U-key is further configured to obtain parameter information of the internet-of-things terminal through the U-key interface before obtaining a message to be encrypted, encrypt the parameter information by using a pre-stored key, and send the encrypted parameter, key serial number, and U-key number to the internet-of-things terminal through the U-key interface;
the internet of things terminal receives the encrypted parameters, the encrypted key serial number and the encrypted U-key number, and sends the encrypted parameters, the encrypted key serial number and the encrypted U-key number to the cloud platform;
and the cloud platform takes out the secret key pre-stored in the encryption center according to the secret key serial number to decrypt the encrypted parameters, binds the plaintext parameters and the U-key number to obtain binding information, saves the binding information, and sends the binding information to the Internet of things terminal.
3. The quantum-technology-based Internet of things communication system as claimed in claim 2,
when the internet of things terminal sends the encrypted message and the secret key serial number to the cloud platform, the internet of things terminal also sends the binding information to the cloud platform;
and the cloud platform receives the binding information, verifies the binding information and the stored binding information, and after the verification is passed, takes out the secret key stored in the encryption center in advance according to the secret key serial number to decrypt the encrypted message to obtain a plaintext message.
4. The quantum-technology-based internet of things communication system of claim 1, further comprising: an IOT subsystem gateway respectively connected with the IOT terminal and the cloud platform,
and the gateway of the Internet of things subsystem forwards the encrypted message and the key sequence number output by the terminal of the Internet of things to the cloud platform.
5. The quantum-technology-based internet of things communication system as claimed in claim 4, further comprising: the gateway U-key is stored with a secret key generated by a quantum random number generator in advance and is connected with the gateway of the IOT subsystem through a U-key interface of the gateway of the IOT subsystem,
and the gateway of the IOT subsystem receives the encrypted message and the secret key serial number output by the IOT terminal, and takes out the secret key pre-stored in the gateway U-key according to the secret key serial number to decrypt the encrypted message to obtain a plaintext message.
6. The quantum-technology-based internet of things communication system of claim 5, further comprising: an edge server connected to the Internet of things terminal and the cloud platform respectively,
and the edge server forwards the encrypted message and the key sequence number output by the terminal of the Internet of things to the cloud platform.
7. The quantum-technology-based internet of things communication system as claimed in claim 6, further comprising: an edge U-key, in which a secret key generated by a quantum random number generator is stored in advance, and the edge U-key is connected with the edge server through a U-key interface of the edge server,
and the edge server receives the encrypted message and the secret key serial number output by the Internet of things terminal, and takes out the secret key prestored in the edge U-key according to the secret key serial number to decrypt the encrypted message to obtain a plaintext message.
8. The quantum-technology-based internet of things communication system as claimed in claim 1, wherein the encryption center comprises: the quantum random number generator is arranged in the secret key generation unit, the U-key and the secret key storage unit are connected with the secret key generation unit, the secret key generated by the quantum random number generator is acquired and stored, and the sequence of the U-key and the secret key stored in the secret key storage unit is consistent.
9. The quantum-technology-based internet of things communication system as claimed in claim 7, wherein the encryption center further comprises: and the secret key management unit is used for managing the secret key in the gateway U-key, so that the secret key in the gateway U-key is consistent with the secret key in the U-key connected with the terminal of the Internet of things.
10. The quantum-technology-based internet-of-things communication system according to claim 9, wherein the key management unit in the encryption center is further configured to manage keys in the edge U-key, so that the keys in the edge U-key are consistent with keys in a U-key connected to the terminal of the internet of things.
CN202110317558.2A 2021-03-24 2021-03-24 Internet of things communication system based on quantum technology Pending CN112804059A (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN202110317558.2A CN112804059A (en) 2021-03-24 2021-03-24 Internet of things communication system based on quantum technology
PCT/CN2021/142718 WO2022199186A1 (en) 2021-03-24 2021-12-29 Internet-of-things communication system based on quantum technology

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202110317558.2A CN112804059A (en) 2021-03-24 2021-03-24 Internet of things communication system based on quantum technology

Publications (1)

Publication Number Publication Date
CN112804059A true CN112804059A (en) 2021-05-14

Family

ID=75815770

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202110317558.2A Pending CN112804059A (en) 2021-03-24 2021-03-24 Internet of things communication system based on quantum technology

Country Status (2)

Country Link
CN (1) CN112804059A (en)
WO (1) WO2022199186A1 (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113708929A (en) * 2021-08-26 2021-11-26 东南大学 Method for pushing quantum key at fixed time by edge gateway of Internet of things
CN113922956A (en) * 2021-10-09 2022-01-11 天翼物联科技有限公司 Quantum key based Internet of things data interaction method, system, device and medium
CN114448629A (en) * 2022-03-25 2022-05-06 中国电信股份有限公司 Identity authentication method and device, storage medium and electronic equipment
WO2022199186A1 (en) * 2021-03-24 2022-09-29 嘉兴企树网络科技有限公司 Internet-of-things communication system based on quantum technology
CN116318689A (en) * 2023-05-25 2023-06-23 天津市城市规划设计研究总院有限公司 Method and system for improving information transmission safety of Internet of things equipment by utilizing quantum key

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN117119449B (en) * 2023-10-20 2024-01-19 长江量子(武汉)科技有限公司 Vehicle cloud safety communication method and system
CN117544308B (en) * 2024-01-09 2024-04-19 广东广宇科技发展有限公司 Quantum key-based data transmission verification method

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109150835A (en) * 2018-07-20 2019-01-04 国科量子通信网络有限公司 Method, apparatus, equipment and the computer readable storage medium of cloud data access
RU2695487C1 (en) * 2018-09-26 2019-07-23 Олег Дмитриевич Гурин Method and system for interaction of devices of the internet of things (iot)
CN110190952A (en) * 2019-05-09 2019-08-30 浙江神州量子通信技术有限公司 It is a kind of based on quantum random number to the encrypted transmission method of Internet of Things safety

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11431498B2 (en) * 2019-02-12 2022-08-30 Nxm Labs, Inc. Quantum-augmentable hybrid encryption system and method
CN112543189B (en) * 2020-11-27 2023-05-09 北京中电飞华通信有限公司 Data security transmission method and system
CN112804059A (en) * 2021-03-24 2021-05-14 上海企树网络科技有限公司 Internet of things communication system based on quantum technology

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109150835A (en) * 2018-07-20 2019-01-04 国科量子通信网络有限公司 Method, apparatus, equipment and the computer readable storage medium of cloud data access
RU2695487C1 (en) * 2018-09-26 2019-07-23 Олег Дмитриевич Гурин Method and system for interaction of devices of the internet of things (iot)
CN110190952A (en) * 2019-05-09 2019-08-30 浙江神州量子通信技术有限公司 It is a kind of based on quantum random number to the encrypted transmission method of Internet of Things safety

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2022199186A1 (en) * 2021-03-24 2022-09-29 嘉兴企树网络科技有限公司 Internet-of-things communication system based on quantum technology
CN113708929A (en) * 2021-08-26 2021-11-26 东南大学 Method for pushing quantum key at fixed time by edge gateway of Internet of things
CN113708929B (en) * 2021-08-26 2022-07-01 东南大学 Method for regularly pushing quantum key by edge gateway of Internet of things
CN113922956A (en) * 2021-10-09 2022-01-11 天翼物联科技有限公司 Quantum key based Internet of things data interaction method, system, device and medium
CN114448629A (en) * 2022-03-25 2022-05-06 中国电信股份有限公司 Identity authentication method and device, storage medium and electronic equipment
CN116318689A (en) * 2023-05-25 2023-06-23 天津市城市规划设计研究总院有限公司 Method and system for improving information transmission safety of Internet of things equipment by utilizing quantum key
CN116318689B (en) * 2023-05-25 2023-07-28 天津市城市规划设计研究总院有限公司 Method and system for improving information transmission safety of Internet of things equipment by utilizing quantum key

Also Published As

Publication number Publication date
WO2022199186A1 (en) 2022-09-29

Similar Documents

Publication Publication Date Title
CN112804059A (en) Internet of things communication system based on quantum technology
JP6641029B2 (en) Key distribution and authentication method and system, and device
CN107317674B (en) Key distribution and authentication method, device and system
CN101340443B (en) Session key negotiating method, system and server in communication network
KR101032016B1 (en) Constrained cryptographic keys
EP1886438B1 (en) Method for inclusive authentication and management of service provider, terminal and user identity module, and system and terminal device using the method
CN101102186B (en) Method for implementing general authentication framework service push
CN102082796B (en) Method for encrypting channels and simplified method and system for encrypting channels based on HTTP (hyper text transport protocol)
JP6145806B2 (en) Immediate communication method and system
CN111030814B (en) Secret key negotiation method and device
US9716591B2 (en) Method for setting up a secure connection between clients
CN109981584B (en) Block chain-based distributed social contact method
JP2013201537A (en) Key generation device and key generation method
CN112400299B (en) Data interaction method and related equipment
CN109639697A (en) Cloud mobile phone safe throws method, mobile terminal and the server of screen
CN110351276B (en) Data processing method, device and computer readable storage medium
CN104735484A (en) Method and device for playing video
JP2018523360A (en) Method and system for secure SMS communication
CN109962924B (en) Group chat construction method, group message sending method, group message receiving method and system
JP2006500861A (en) Method for multiple pairing control
EP2451133B1 (en) Method and system for transmitting delay media information in ip multimedia subsystem
CN109600631B (en) Video file encryption and publishing method and device
CN116248290A (en) Identity authentication method and device and electronic equipment
CN113452514B (en) Key distribution method, device and system
CN112769783B (en) Data transmission method, cloud server, receiving end and sending end

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination