CN113132089B - Quantum key parallel comparison method, device and system - Google Patents

Quantum key parallel comparison method, device and system Download PDF

Info

Publication number
CN113132089B
CN113132089B CN201911412100.4A CN201911412100A CN113132089B CN 113132089 B CN113132089 B CN 113132089B CN 201911412100 A CN201911412100 A CN 201911412100A CN 113132089 B CN113132089 B CN 113132089B
Authority
CN
China
Prior art keywords
key
comparison
management layer
key management
data
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201911412100.4A
Other languages
Chinese (zh)
Other versions
CN113132089A (en
Inventor
尹飞
姜胜广
于林
王学富
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shandong Institute Of Quantum Science And Technology Co ltd
Quantumctek Co Ltd
Original Assignee
Shandong Institute Of Quantum Science And Technology Co ltd
Quantumctek Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shandong Institute Of Quantum Science And Technology Co ltd, Quantumctek Co Ltd filed Critical Shandong Institute Of Quantum Science And Technology Co ltd
Priority to CN201911412100.4A priority Critical patent/CN113132089B/en
Publication of CN113132089A publication Critical patent/CN113132089A/en
Application granted granted Critical
Publication of CN113132089B publication Critical patent/CN113132089B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0852Quantum cryptography
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0852Quantum cryptography
    • H04L9/0858Details about key distillation or coding, e.g. reconciliation, error correction, privacy amplification, polarisation coding or phase coding

Landscapes

  • Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Electromagnetism (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)

Abstract

The invention relates to a method, a device and a system for quantum key parallel comparison, wherein the method comprises the following steps: the key management layer equipment receives the key data and sequentially and continuously sends key comparison information to the opposite-end key management layer equipment; receiving a confirmation response of the key comparison of the key management layer equipment of the opposite terminal, and performing response processing to complete the key comparison; wherein the process of sending the key comparison information and the process of receiving the confirmation response of the key comparison are performed in parallel. The invention changes the serial comparison in the traditional key comparison process into a parallel comparison mode, and can quickly complete the key comparison process under the condition of high-speed key generation by combining the key comparison process with a window mechanism.

Description

Quantum key parallel comparison method, device and system
Technical Field
The invention belongs to the technical field of quantum communication, and particularly relates to a method, a device and a system for comparing quantum keys in parallel.
Background
Along with the development of network information, the network affects various aspects of people's life, the requirement for security is higher and higher, the requirement for confidentiality of people on network activities is higher and higher, the encryption or authentication technology of service data ensures the requirement for confidentiality of data and some related data of people in network activities, and the security and confidentiality of the network are ensured. The quantum communication brings revolutionary development to information security because of the characteristics of unconditional security, high efficiency and the like, and is the main research direction of data secret transmission at present.
The main form of quantum communication is quantum secure communication based on quantum key distribution. After the quantum key is generated and uploaded to the key management machine, the two key management machines carry out consistency confirmation on the uploaded key through a key comparison process.
In the conventional quantum key comparison method, in order to ensure the sequence of key file writing, the key comparison process of each fixed size key data is serial, as shown in fig. 1, each time a key management layer device receives a fixed size key data, key comparison information is generated and sent to a key management layer device of an opposite end for confirmation; after receiving the confirmation response of the key management layer equipment of the opposite terminal, writing the key data into the key file, and then starting the comparison of the subsequent key data.
However, in a high-speed key generation environment, the low-speed serial comparison in the conventional quantum key comparison method becomes a performance barrier for key storage.
Disclosure of Invention
In order to solve the above problems, the present invention provides a method, an apparatus, and a system for comparing quantum keys in parallel, which can effectively realize fast key comparison under the condition of high-speed key generation, and overcome the problem that serial comparison in the existing quantum key comparison method cannot satisfy the environment of high-speed key generation.
The first purpose of the invention is to provide a quantum key parallel comparison method.
In order to achieve the purpose, the invention adopts the following technical scheme:
a quantum key parallel comparison method comprises the following steps:
the key management layer equipment receives the key data and sequentially and continuously sends key comparison information to the opposite-end key management layer equipment; receiving a confirmation response of the key comparison of the key management layer equipment of the opposite terminal, and performing response processing to complete the key comparison; wherein the process of sending the key comparison information and the process of receiving the confirmation response of the key comparison are performed in parallel.
As a further preferred scheme, the key management layer device sets a sending identifier and a response identifier corresponding to the key comparison information;
the sending identification is identification data of key data of which the corresponding key comparison information is sent to the opposite-end key management layer equipment;
and the response identifier is identifier data of the key data to be responded, which does not receive the confirmation response of the key comparison of the corresponding opposite terminal key management layer equipment.
As a further preferable scheme, the key management layer device may dynamically adjust the sending speed in real time according to the receiving speed; the number of the key comparison information which is sent at one time can be dynamically adjusted in real time according to the number of the key comparison information which is not sent; the key comparison information of the key data which does not receive the key comparison confirmation response after the preset time is exceeded can be retransmitted; and after receiving the error sequence confirmation response, retransmitting the key comparison information of the key data which has not received the key comparison confirmation response before.
As a further preferred scheme, the specific steps of the key management layer device receiving the key data and sequentially and continuously sending the key comparison information to the opposite-end key management layer device include:
the key management layer equipment receives a group of key data with appointed size, generates key comparison information according to the key data, sends the generated key comparison information to the opposite terminal key management layer equipment, and records data group information, a sending identifier and a response identifier of the key data;
and when the key management layer equipment receives the next group of key data with the appointed size, immediately sending key comparison information generated according to the key data to the opposite key management layer equipment, recording the corresponding data group information of the key data for key comparison, and updating the sending identifier.
As a further preferable scheme, the receiving a confirmation response of the opposite-end key management layer device key comparison, and performing response processing includes: sequentially receiving confirmation responses of key comparison of the key management layer equipment of the opposite terminal, and performing response processing; or receiving a confirmation response of the combined multiple groups of key comparison sent by the opposite-end key management layer equipment, and performing response processing.
As a further preferred scheme, the step of sequentially receiving confirmation responses of the device key comparison of the opposite-end key management layer, and the specific step of performing response processing includes:
and the key management layer equipment receives a confirmation response of key comparison sent by the opposite-end key management layer equipment, writes the data group information of the key data recorded corresponding to the confirmation response into the key file, and updates the response identifier.
As a further preferred scheme, the receiving a confirmation response of the combined multiple groups of key comparison sent by the peer key management layer device, and the specific step of performing response processing includes:
and the key management layer equipment receives confirmation responses of the combined multiple groups of key comparison sent by the opposite-end key management layer equipment, and updates response identifications after respectively writing the data group information of the key data recorded corresponding to the group of confirmation responses into the key file in sequence.
As a further preferable scheme, the specific step of dynamically adjusting the sending speed by the key management layer device according to the receiving speed in real time includes:
the key management layer equipment receives a group of key data with appointed size, and judges the size relation between the difference value of the currently recorded sending identification and response identification and the key range to be responded;
if the difference value between the currently recorded sending identifier and the response identifier is larger than the preset key range to be responded, the key management layer equipment stops sending key comparison information to the opposite-end key management layer equipment, waits for receiving a confirmation response of key comparison of the opposite-end key management layer equipment, and updates the response identifier;
until the difference value between the currently recorded sending identifier and the updated response identifier is smaller than the preset key range to be responded.
As a further preferred scheme, the specific step of dynamically adjusting the number of one-time transmissions according to the number of unsent key comparison information in real time includes:
the key management layer equipment judges the relation between the number of key comparison information which is not sent currently and a preset number threshold;
if the number of the key comparison information which is not sent currently is larger than a preset number threshold, dynamically adjusting the range of the key to be responded, combining a plurality of groups of key comparison information into one message, and determining the number of the key comparison information combinations according to the adjusted range of the key to be responded;
and sending the combined message to the opposite-end key management layer equipment, respectively recording data group information of a plurality of groups of key data for key comparison, and updating the sending identification according to the adjusted key range to be responded.
As a further preferable scheme, the specific step of retransmitting the key comparison information of the key data for which the key comparison confirmation response is not received more than the preset time includes:
the key management layer equipment judges whether a confirmation response of key comparison corresponding to the key comparison information sent by the opposite terminal key management layer equipment is not received after the key comparison information is sent by exceeding a preset time threshold;
and when the time exceeds the preset time threshold, combining the comparison information of the key data to be responded into a message, and retransmitting the message.
As a further preferable scheme, the specific step of retransmitting the key comparison information of the key data for which the key comparison confirmation response is not received before after the sending of the received error sequence confirmation response includes:
when the key management layer device receives the wrong sequence confirmation response sent by the opposite key management layer device, the wrong sequence confirmation response identification is recorded, and the key comparison information of the key data between the wrong sequence confirmation response identification and the response identification is retransmitted.
It is a second object of the present invention to provide a computer-readable storage medium.
In order to achieve the purpose, the invention adopts the following technical scheme:
a computer-readable storage medium, wherein a plurality of instructions are stored, and the instructions are adapted to be loaded by a processor of a terminal device and execute any one of the above quantum key parallel comparison methods.
A third object of the present invention is to provide a terminal device.
In order to achieve the purpose, the invention adopts the following technical scheme:
a terminal device comprising a processor and a computer readable storage medium, the processor being configured to implement instructions; the computer readable storage medium is used for storing a plurality of instructions, and the instructions are suitable for being loaded by a processor and executing any one of the quantum key parallel comparison methods.
The fourth purpose of the invention is to provide a quantum key parallel comparison system.
In order to achieve the purpose, the invention adopts the following technical scheme:
a quantum key parallel comparison system is based on any one of the quantum key parallel comparison methods and comprises two key management layer devices for confirming key consistency.
The invention has the beneficial effects that:
1. according to the quantum key parallel comparison method, device and system, serial comparison in the traditional key comparison process is changed into a parallel comparison mode, and the key comparison process can be rapidly completed under the condition of high-speed key generation through combining the key comparison process with a window mechanism.
2. According to the quantum key parallel comparison method, device and system, the range of the key to be responded is dynamically adjusted, the sending speed is dynamically adjusted according to the receiving speed in real time, and the number of the key comparison information which is sent at one time is dynamically adjusted according to the number of the key comparison information which is not sent in real time, so that the key data accumulation caused by the mismatching of the sending speed and the receiving speed is effectively avoided, and the key storage performance is improved.
3. According to the quantum key parallel comparison method, device and system, the retransmission mechanism is arranged, the key data which does not receive the key comparison confirmation response within the preset time and the key comparison information of the key data before the wrong order confirmation response are received are retransmitted, and the situation that the key data is not subjected to key comparison is effectively avoided.
Drawings
FIG. 1 is a diagram illustrating a conventional quantum key comparison method;
FIG. 2 is a flowchart of a method of example 1 of the present invention;
FIG. 3 is a first schematic view of embodiment 2 of the present invention;
FIG. 4 is a second schematic view of embodiment 2 of the present invention;
FIG. 5 is a third schematic view of embodiment 2 of the present invention;
FIG. 6 is a first schematic view of embodiment 3 of the present invention;
FIG. 7 is a first schematic view of embodiment 4 of the present invention;
FIG. 8 is a first schematic view of embodiment 5 of the present invention;
FIG. 9 is a first schematic view of embodiment 6 of the present invention;
fig. 10 is a first schematic view of embodiment 7 of the present invention.
The specific implementation mode is as follows:
it should be noted that the following detailed description is exemplary and is intended to provide further explanation of the disclosure. Unless defined otherwise, all technical and scientific terms used herein have the same meaning as commonly understood by one of ordinary skill in the art to which this application belongs.
It is noted that the terminology used herein is for the purpose of describing particular embodiments only and is not intended to be limiting of example embodiments according to the present application. As used herein, the singular forms "a", "an" and "the" are intended to include the plural forms as well, and it should be understood that when the terms "comprises" and/or "comprising" are used in this specification, they specify the presence of stated features, steps, operations, devices, components, and/or combinations thereof, unless the context clearly indicates otherwise.
The embodiments and features of the embodiments in the present application may be combined with each other without conflict. The invention is further described with reference to the following figures and examples.
Examples are illustrated in the following figures:
the key management layer device takes a key manager as an example, and quantum keys are shared among the key managers;
the key management machine A is a key management machine for receiving quantum keys and generating key comparison information;
and the key management machine B is an opposite-end key management machine which receives the key comparison information sent by the key management machine A, performs key comparison and generates a confirmation response.
Example 1:
the purpose of this embodiment 1 is to provide a method for parallel comparison of quantum keys.
In order to achieve the purpose, the invention adopts the following technical scheme:
as shown in figure 2 of the drawings, in which,
a quantum key parallel comparison method comprises the following steps:
step (1): the key management layer equipment receives the key data and sequentially and continuously sends key comparison information to the opposite-end key management layer equipment;
step (2): receiving a confirmation response of the key comparison of the key management layer equipment of the opposite terminal, and performing response processing to complete the key comparison;
wherein the process of sending the key comparison information and the process of receiving the confirmation response of the key comparison are performed in parallel.
The key comparison information may include a key sequence number, a hash value of key data, and the like. For example, the key management layer device a sends the key serial number corresponding to the received key data and the hash value of the key data to the opposite-end key management layer device B; the opposite-end key management layer device B searches the received key data corresponding to the key sequence number according to the key sequence number, compares the hash value of the key data with the hash value sent by the key management layer device A, stores the key data corresponding to the key sequence number if the hash value of the key data is consistent with the hash value sent by the key management layer device A, and sends a confirmation response of consistent key comparison to the key management layer device A; and the key management layer device A receives the confirmation response sent by the opposite-end key management layer device B, stores the key data corresponding to the key sequence number and completes key comparison.
In the step (1), the raw material is processed,
the key management layer equipment can dynamically adjust the sending speed in real time according to the receiving speed;
the key management layer equipment can also dynamically adjust the number of the key comparison information which is sent at one time according to the number of the key comparison information which is not sent in real time;
the key management layer equipment can also retransmit key comparison information of the key data which does not receive the key comparison confirmation response in more than preset time;
the key management layer device may further retransmit the key comparison information of the key data for which the key comparison confirmation response was not received before, after receiving the mis-sequence confirmation response.
In the step (2), the receiving a confirmation response of the opposite-end key management layer device key comparison, and performing response processing includes:
the key management layer equipment sequentially receives confirmation response of key comparison of the opposite terminal key management layer equipment and carries out response processing; or
And the key management layer equipment receives the combined confirmation response of the comparison of the multiple groups of keys sent by the opposite-end key management layer equipment and carries out response processing.
In this embodiment, the key management layer device sets a sending identifier and a response identifier corresponding to the key comparison information;
the sending identification is identification data of key data of which the corresponding key comparison information is sent to the opposite-end key management layer equipment;
and the response identifier is identifier data of the key data to be responded, which does not receive the confirmation response of the key comparison of the corresponding opposite terminal key management layer equipment.
The sending identifier and the response identifier may be a key sequence number, a key pointer, or the like.
Example 2:
the purpose of this embodiment 2 is to provide a specific method for parallel comparison of quantum keys, which is based on the method for parallel comparison of quantum keys in the foregoing embodiment 1.
The new parallel key comparison method of this embodiment 2 can initiate comparison of multiple sets of key data at the same time. The specific process is as follows:
step (a): the method comprises the steps that a key management machine A receives a group of key data with appointed size, the key management machine A generates key comparison information according to the key data, sends the generated key comparison information to a key management machine B, and records data group information, sending identification and response identification of the key data in a one-to-one correspondence mode in a key pool of the key management machine A; as shown in fig. 3.
Step (b): the key management machine A receives a group of key data with appointed size, the key management machine A generates key comparison information according to the key data, does not need to receive the response of the key management machine B to the previous key comparison information, immediately sends the key comparison information to the key management machine B, records the corresponding data group information of the key data for key comparison at the next position in a key pool of the key management machine A, and updates a sending identifier; as shown in fig. 4.
Step (c): the key management machine A receives a confirmation response of key comparison sent by the key management machine B, writes the data group information of the key data correspondingly recorded by the confirmation response into the key file, and updates the response identification;
step (d): and the key management machine A sends a group of key comparison information of the key data which is not compared to the key management machine B according to the sending sequence, records the data group information of the key data which is subjected to key comparison, and updates the sending identifier. As shown in fig. 5.
Example 3:
the purpose of this embodiment 3 is to provide a specific method for parallel comparison of quantum keys, which is based on the method for parallel comparison of quantum keys in the foregoing embodiments 1-2.
In the brand new parallel key comparison method of this embodiment 3, the key manager a dynamically adjusts the sending speed in real time according to the receiving speed, and the specific process is as follows:
step (a): the key management machine A receives a group of key data with appointed size, and judges the size relation between the difference value of the currently recorded sending identification and response identification and the key range to be responded;
step (b): when the difference value of the currently recorded sending identification and the response identification is larger than the preset key range to be responded, the key management machine A stops sending key comparison information to the key management machine B, waits for receiving a confirmation response of key comparison of the key management machine B, and updates the response identification; as shown in fig. 6;
step (c): and (c) repeating the steps (a) to (b) until the difference value between the currently recorded sending identifier and the updated response identifier of the key management machine A is smaller than the preset key range to be responded.
The key range to be responded is a configuration value.
Example 4:
the purpose of this embodiment 4 is to provide a specific method for parallel comparison of quantum keys, which is based on the method for parallel comparison of quantum keys in the above embodiments 1-2.
The new parallel key comparison method of this embodiment 4 can initiate comparison of multiple sets of key data at the same time. The specific process is as follows:
as shown in figure 7 of the drawings,
step (a): the key management machine A judges the relationship between the number of key comparison information which is not sent currently and a preset number threshold;
step (b): if the number of the key comparison information which is not sent currently by the key management machine A is larger than a preset number threshold, dynamically adjusting the range of the key to be responded, combining a plurality of groups of key comparison information into a message, wherein the message comprises a plurality of pieces of comparison information corresponding to each group of keys, and the combination number of the key comparison information is determined according to the adjusted range of the key to be responded;
step (c): and the key management machine A sends the combined message to the key management machine B, the key management machine A respectively records data group information of a plurality of groups of key data for key comparison, and the sending identification is updated according to the adjusted key range to be responded.
Example 5:
the purpose of this embodiment 5 is to provide a specific quantum key parallel comparison method, which is based on the quantum key parallel comparison method in the above embodiment 1-2.
In the brand new parallel key comparison method of this embodiment 5, after receiving the mis-sequence confirmation response, the key comparison information of the key data that has not received the key comparison confirmation response before is retransmitted. The specific process is as follows:
as shown in figure 8 of the drawings,
when the key management layer device receives the wrong sequence confirmation response sent by the opposite key management layer device, the wrong sequence confirmation response identification is recorded, and the key comparison information of the key data between the wrong sequence confirmation response identification and the response identification is retransmitted.
Example 6:
the purpose of this embodiment 6 is to provide a specific method for parallel comparison of quantum keys, which is based on the method for parallel comparison of quantum keys in the above embodiments 1-2.
In a novel parallel key comparison method of this embodiment 6, the key comparison information of the key data that has not received the key comparison confirmation response more than the predetermined time is retransmitted. The specific process is as follows:
as shown in the figure 9 of the drawings,
a step (a): the key management machine A judges whether a confirmation response of key comparison corresponding to the key comparison information sent by the key management machine B is not received after the key comparison information is sent over a preset time threshold;
step (b): and when the preset time threshold is exceeded, combining the comparison information of the key data to be responded into a message and sending the message to the key management machine B again. The message comprises a plurality of pieces of comparison information corresponding to each group of keys, and the combination number of the key comparison information is determined according to the adjusted range of the keys to be responded.
Example 7:
the purpose of this embodiment 7 is to provide a specific method for parallel comparison of quantum keys, which is based on the method for parallel comparison of quantum keys in the above embodiments 1-2.
In this embodiment 7, a novel parallel key comparison method can simultaneously perform comparison of multiple sets of key data. The specific process is as follows:
as shown in the figure 10 of the drawings,
and the key management machine A receives the combined confirmation responses of the comparison of the plurality of groups of keys sent by the key management machine B, and updates the response identifications after respectively writing the data group information of the key data recorded corresponding to the group of confirmation responses into the key file in sequence.
Example 8:
the object of this embodiment 8 is to provide a computer-readable storage medium.
In order to achieve the purpose, the invention adopts the following technical scheme:
a computer-readable storage medium, wherein a plurality of instructions are stored, and the instructions are adapted to be loaded by a processor of a terminal device and execute a method for parallel comparison of quantum keys according to any one of embodiments 1 to 7.
Example 9:
the purpose of this embodiment 9 is to provide a terminal device.
In order to achieve the purpose, the invention adopts the following technical scheme:
a terminal device comprising a processor and a computer readable storage medium, the processor being configured to implement instructions; the computer-readable storage medium is used for storing a plurality of instructions, and the instructions are suitable for being loaded by a processor and executing a quantum key parallel comparison method described in any one of embodiment 1 to embodiment 7.
Example 10:
the purpose of this embodiment 10 is to provide a system for parallel comparison of quantum keys.
In order to achieve the purpose, the invention adopts the following technical scheme:
a system for parallel comparison of quantum keys, which is based on the method for parallel comparison of quantum keys described in any one of embodiments 1 to 7, and includes a key manager a and a key manager B for performing key consistency confirmation.
The invention has the beneficial effects that:
1. according to the quantum key parallel comparison method, device and system, serial comparison in the traditional key comparison process is changed into a parallel comparison mode, and the key comparison process can be rapidly completed under the condition of high-speed key generation by combining the key comparison process with a window mechanism.
2. According to the quantum key parallel comparison method, device and system, the range of the key to be responded is dynamically adjusted, the sending speed is dynamically adjusted according to the receiving speed in real time, and the number of the key comparison information which is sent at one time is dynamically adjusted according to the number of the key comparison information which is not sent in real time, so that the key data accumulation caused by the mismatching of the sending speed and the receiving speed is effectively avoided, and the key storage performance is improved.
3. According to the quantum key parallel comparison method, device and system, a retransmission mechanism is arranged, the key data which does not receive the key comparison confirmation response within the preset time and the key comparison information of the key data before receiving the wrong sequence confirmation response are retransmitted, and the situation that the key data is not subjected to key comparison is effectively avoided.
Although the embodiments of the present invention have been described with reference to the accompanying drawings, it is not intended to limit the scope of the present invention, and it should be understood by those skilled in the art that various modifications and variations can be made without inventive efforts by those skilled in the art based on the technical solution of the present invention.

Claims (13)

1. A method for parallel comparison of quantum keys is characterized in that the method comprises the following steps:
the key management layer equipment receives the key data and sequentially and continuously sends key comparison information to the opposite-end key management layer equipment; receiving a confirmation response of the key comparison of the key management layer equipment of the opposite terminal, and performing response processing to complete the key comparison; wherein the process of sending the key comparison information and the process of receiving the confirmation response of the key comparison are carried out in parallel;
the key management layer equipment sets a sending identifier and a response identifier corresponding to the key comparison information;
the sending identification is identification data of key data of which the corresponding key comparison information is sent to the opposite-end key management layer equipment;
and the response identifier is identifier data of the key data to be responded, which does not receive the confirmation response of the key comparison of the corresponding opposite-end key management layer equipment.
2. The method of claim 1, wherein the key management layer device dynamically adjusts the sending speed according to the receiving speed in real time; or/and
the key management layer equipment dynamically adjusts the number of the key comparison information which is sent at one time according to the number of the key comparison information which is not sent in real time; or/and
the key management layer equipment retransmits the key comparison information of the key data which does not receive the key comparison confirmation response in excess of the preset time; or/and
and after receiving the wrong-sequence confirmation response, the key management layer equipment retransmits the key comparison information of the key data which does not receive the key comparison confirmation response before.
3. The method as claimed in claim 1, wherein the specific steps of the key management layer device receiving the key data and sequentially and continuously sending the key comparison information to the opposite key management layer device include:
the key management layer equipment receives a group of key data with appointed size, generates key comparison information according to the key data, sends the generated key comparison information to the opposite terminal key management layer equipment, and records data group information, sending identification and response identification of the key data;
and after receiving the next group of key data with the appointed size, the key management layer equipment immediately sends key comparison information generated according to the key data to the opposite-end key management layer equipment, records the corresponding data group information of the key data for key comparison, and updates the sending identifier.
4. The method as claimed in claim 1, wherein the receiving a confirmation response of the peer key management layer device key comparison, the responding includes: sequentially receiving confirmation responses of key comparison of opposite-end key management layer equipment, and performing response processing; or receiving a confirmation response of the combined multiple groups of key comparison sent by the opposite-end key management layer equipment, and performing response processing.
5. The method as claimed in claim 4, wherein the step of sequentially receiving the confirmation response of the device key comparison of the peer key management layer, and the step of performing response processing includes:
and the key management layer equipment receives a confirmation response of key comparison sent by the opposite-end key management layer equipment, writes the data group information of the key data recorded corresponding to the confirmation response into the key file, and updates the response identifier.
6. The method according to claim 4, wherein the receiving of the combined confirmation response of the multiple key comparison sent by the peer key management layer device, and the specific step of performing response processing includes:
and the key management layer equipment receives confirmation responses of the combined multiple groups of key comparison sent by the opposite-end key management layer equipment, and updates response identifications after respectively writing the data group information of the key data recorded corresponding to the group of confirmation responses into the key file in sequence.
7. The method as claimed in claim 2, wherein the step of dynamically adjusting the sending speed of the key management layer device according to the receiving speed in real time comprises:
the key management layer equipment receives a group of key data with appointed size, and judges the size relation between the difference value of the currently recorded sending identification and response identification and the key range to be responded;
if the difference value between the currently recorded sending identifier and the response identifier is larger than the preset key range to be responded, the key management layer equipment stops sending key comparison information to the opposite-end key management layer equipment, waits for receiving a confirmation response of key comparison of the opposite-end key management layer equipment, and updates the response identifier;
until the difference value between the currently recorded sending identifier and the updated response identifier is smaller than the preset key range to be responded.
8. The method of claim 2, wherein the step of dynamically adjusting the number of one-time transmissions in real time based on the number of unsent key comparison messages comprises:
the key management layer equipment judges the relation between the number of key comparison information which is not sent currently and a preset number threshold;
if the number of the key comparison information which is not sent currently is larger than a preset number threshold, dynamically adjusting the range of the key to be responded, combining a plurality of groups of key comparison information into one message, and determining the number of the key comparison information combinations according to the adjusted range of the key to be responded;
and sending the combined message to the opposite-end key management layer equipment, respectively recording data group information of a plurality of groups of key data for key comparison, and updating the sending identification according to the adjusted key range to be responded.
9. The method of claim 2, wherein the step of retransmitting the key comparison information of the key data for which the key comparison confirmation response is not received for more than a predetermined time comprises:
the key management layer equipment judges whether a confirmation response of key comparison corresponding to the key comparison information sent by the opposite terminal key management layer equipment is not received after the key comparison information is sent by exceeding a preset time threshold;
and when the time exceeds the preset time threshold, combining the comparison information of the key data to be responded into a message, and retransmitting the message.
10. The method of claim 2, wherein the step of retransmitting the key comparison information of the key data for which the key comparison acknowledgement response was not received before after receiving the mis-sequence acknowledgement response comprises:
when the key management layer device receives the wrong sequence confirmation response sent by the opposite key management layer device, the wrong sequence confirmation response identification is recorded, and the key comparison information of the key data between the wrong sequence confirmation response identification and the response identification is retransmitted.
11. A computer-readable storage medium having stored thereon a plurality of instructions, characterized in that said instructions are adapted to be loaded by a processor of a terminal device and to perform the method according to any one of claims 1-10.
12. A terminal device comprising a processor and a computer readable storage medium, the processor for implementing instructions; a computer-readable storage medium for storing a plurality of instructions adapted to be loaded by a processor and to perform the method according to any one of claims 1-10.
13. A system for parallel comparison of quantum keys, based on the method of any one of claims 1 to 10, comprising two key management layer devices for performing key consistency validation.
CN201911412100.4A 2019-12-31 2019-12-31 Quantum key parallel comparison method, device and system Active CN113132089B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201911412100.4A CN113132089B (en) 2019-12-31 2019-12-31 Quantum key parallel comparison method, device and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201911412100.4A CN113132089B (en) 2019-12-31 2019-12-31 Quantum key parallel comparison method, device and system

Publications (2)

Publication Number Publication Date
CN113132089A CN113132089A (en) 2021-07-16
CN113132089B true CN113132089B (en) 2022-09-23

Family

ID=76770202

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201911412100.4A Active CN113132089B (en) 2019-12-31 2019-12-31 Quantum key parallel comparison method, device and system

Country Status (1)

Country Link
CN (1) CN113132089B (en)

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107508672A (en) * 2017-09-07 2017-12-22 浙江神州量子网络科技有限公司 A kind of cipher key synchronization method and key synchronization device based on pool of symmetric keys, key synchronization system
CN109936445A (en) * 2017-12-18 2019-06-25 科大国盾量子技术股份有限公司 A kind of key error correction method and quantum key distribution system

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106301769B (en) * 2015-06-08 2020-04-10 阿里巴巴集团控股有限公司 Quantum key output method, storage consistency verification method, device and system

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107508672A (en) * 2017-09-07 2017-12-22 浙江神州量子网络科技有限公司 A kind of cipher key synchronization method and key synchronization device based on pool of symmetric keys, key synchronization system
CN109936445A (en) * 2017-12-18 2019-06-25 科大国盾量子技术股份有限公司 A kind of key error correction method and quantum key distribution system

Also Published As

Publication number Publication date
CN113132089A (en) 2021-07-16

Similar Documents

Publication Publication Date Title
KR101374680B1 (en) Apparatus and method for arq feedback message generating in wireless communication system
TWI646814B (en) Data transmission method and related equipment
CN109076475B (en) Method and system for maintaining synchronization in connectionless transmission
US20120011566A1 (en) System and method for sensor network authentication based on xor chain
CN110506403A (en) Flow control for wireless device
TW201737107A (en) Data synchronization method and apparatus
CN111262660A (en) Data transmission method, equipment and system
CN103684707A (en) Server-side and user-side message transmission processing method, message transmission method and message transmission system
US20220377783A1 (en) Control information indicating method, communication node and computer readable storage medium
CN107359972B (en) A kind of data receiver method and device
US10630479B2 (en) Network communication method having function of recovering terminal session
CN113132089B (en) Quantum key parallel comparison method, device and system
US20080212505A1 (en) Method and receiving apparatus for processing arq block in wibro system
CN107027136B (en) Data processing method and device
CN106850153B (en) Data retransmission method and system
CN107360594B (en) Information processing method and device
CN102752189B (en) A kind of method and apparatus processing message
CN112672390B (en) RRC (radio resource control) connection reconfiguration message transmission method, device and communication equipment
CN112423277B (en) Security certificate recovery in bluetooth mesh networks
US8051200B1 (en) Forming multi-user packet based groups using response behavior
CA2905607C (en) System and method for reliable messaging between application sessions across volatile networking conditions
CN113141263A (en) Upgrading method, device, system and storage medium
CN110995612A (en) Message processing method, system and communication equipment
CN105656605B (en) Interrupt the continuous transmission method and server of HARQ process
US11665588B2 (en) Extended sequence control for fragmented frames in WLAN

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant