CN117041946A - Quantum safety communication system of unmanned aerial vehicle - Google Patents
Quantum safety communication system of unmanned aerial vehicle Download PDFInfo
- Publication number
- CN117041946A CN117041946A CN202311146790.XA CN202311146790A CN117041946A CN 117041946 A CN117041946 A CN 117041946A CN 202311146790 A CN202311146790 A CN 202311146790A CN 117041946 A CN117041946 A CN 117041946A
- Authority
- CN
- China
- Prior art keywords
- quantum
- key
- data
- unit
- security module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000004891 communication Methods 0.000 title claims abstract description 79
- 238000012545 processing Methods 0.000 claims abstract description 15
- 238000001914 filtration Methods 0.000 claims description 14
- 238000002955 isolation Methods 0.000 claims description 14
- 238000012544 monitoring process Methods 0.000 claims description 10
- 238000012423 maintenance Methods 0.000 claims description 8
- 238000004364 calculation method Methods 0.000 claims description 7
- 238000004806 packaging method and process Methods 0.000 claims description 3
- 230000009469 supplementation Effects 0.000 claims description 3
- 238000013467 fragmentation Methods 0.000 claims 1
- 238000006062 fragmentation reaction Methods 0.000 claims 1
- 230000005540 biological transmission Effects 0.000 abstract description 9
- 238000005516 engineering process Methods 0.000 abstract description 2
- 238000009434 installation Methods 0.000 abstract description 2
- 238000007726 management method Methods 0.000 description 7
- 238000000034 method Methods 0.000 description 6
- 238000010586 diagram Methods 0.000 description 5
- 238000005259 measurement Methods 0.000 description 2
- 208000035473 Communicable disease Diseases 0.000 description 1
- 230000002159 abnormal effect Effects 0.000 description 1
- 230000006978 adaptation Effects 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000005336 cracking Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000005538 encapsulation Methods 0.000 description 1
- 238000005265 energy consumption Methods 0.000 description 1
- 208000015181 infectious disease Diseases 0.000 description 1
- 238000007689 inspection Methods 0.000 description 1
- 238000013507 mapping Methods 0.000 description 1
- 230000001360 synchronised effect Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/03—Protecting confidentiality, e.g. by encryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04B—TRANSMISSION
- H04B7/00—Radio transmission systems, i.e. using radiation field
- H04B7/14—Relay systems
- H04B7/15—Active relay systems
- H04B7/185—Space-based or airborne stations; Stations for satellite systems
- H04B7/18502—Airborne stations
- H04B7/18506—Communications with or from aircraft, i.e. aeronautical mobile service
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0852—Quantum cryptography
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/04—Key management, e.g. using generic bootstrapping architecture [GBA]
- H04W12/041—Key generation or derivation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/04—Key management, e.g. using generic bootstrapping architecture [GBA]
- H04W12/043—Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
- H04W12/0431—Key distribution or pre-distribution; Key agreement
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02D—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
- Y02D30/00—Reducing energy consumption in communication networks
- Y02D30/70—Reducing energy consumption in communication networks in wireless communication networks
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Physics & Mathematics (AREA)
- Electromagnetism (AREA)
- Theoretical Computer Science (AREA)
- Astronomy & Astrophysics (AREA)
- Aviation & Aerospace Engineering (AREA)
- General Physics & Mathematics (AREA)
- Selective Calling Equipment (AREA)
Abstract
The application discloses a quantum security communication system of an unmanned aerial vehicle, which comprises an airborne quantum security module, a ground quantum security module and quantum key generation equipment; the system comprises an unmanned aerial vehicle, an airborne quantum security module, a data link terminal, a data link module and a data link module, wherein the airborne quantum security module is deployed in the unmanned aerial vehicle and is used for transmitting airborne communication data between airborne equipment of the unmanned aerial vehicle and the data link terminal and carrying out quantum encryption and decryption processing on the airborne communication data; the ground quantum security module is deployed in the ground station and is used for transmitting ground communication data between the antenna array module and the control end and carrying out quantum encryption and decryption processing on the ground communication data; the quantum encryption transmission of the communication data between the aircraft and the ground station is realized through the deployed quantum security module, and compared with the traditional unmanned aerial vehicle encryption technology, the quantum security module has higher security and confidentiality, and can better ensure the security of an unmanned aerial vehicle system; meanwhile, the communication interface of the quantum security module can be matched with the communication interface of the existing unmanned aerial vehicle, the overall hardware is changed little, and the installation and the deployment are convenient.
Description
Technical Field
The application relates to the technical field of quantum encryption, in particular to a quantum security communication system of an unmanned aerial vehicle.
Background
The unmanned aerial vehicle is an unmanned aerial vehicle operated by using radio remote control equipment and a self-provided program control device, and can be particularly divided into military unmanned aerial vehicles and civil unmanned aerial vehicles. For military purposes, unmanned aerial vehicles are classified into reconnaissance and drones. In the civil aspect, the unmanned plane can be applied to the fields of aerial photography, agriculture, plant protection, miniature self-timer shooting, express delivery transportation, disaster rescue, wild animal observation, infectious disease monitoring, mapping, news reporting, electric power inspection, disaster relief, film and television shooting and the like.
In the various fields of the above-mentioned unmanned aerial vehicle applications, the transmission and storage of data is unavoidable. However, the data collected by the onboard equipment carried by the drone may include secrets such as geographic information, images, video, and the like. Such data, if transmitted unencrypted, may be stolen or tampered with by hackers, posing a significant threat to commercial interests. Therefore, the encryption of the unmanned aerial vehicle communication data transmission is of great significance.
At present, the conventional encryption algorithm, such as a symmetric encryption algorithm and an asymmetric encryption algorithm in the encryption algorithm, is mainly relied on in the aspect of unmanned aerial vehicle communication security. However, with the continuous improvement of computer computing power, especially the development of quantum computers, the possibility of rapidly cracking the traditional encryption algorithm is gradually improved, and the security of unmanned aerial vehicle communication data protected by the traditional encryption algorithm is gradually reduced, so that quantum encryption transmission is carried out on unmanned aerial vehicle-to-ground data in a quantum encryption manner, and the aim of realizing higher-level unmanned aerial vehicle data security protection is the technical problem to be solved by the application.
Disclosure of Invention
In order to solve the problems of the prior art, the application provides a quantum security module and an encryption method. The technical scheme is as follows: the system comprises an airborne quantum security module, a ground quantum security module and quantum key generation equipment; the airborne quantum security module is deployed in the unmanned aerial vehicle and is used for transmitting airborne communication data between airborne equipment of the unmanned aerial vehicle and a data link terminal and carrying out quantum encryption and decryption processing on the airborne communication data;
the ground quantum security module is deployed in the ground station and is used for transmitting ground communication data between the antenna array module and the control end and carrying out quantum encryption and decryption processing on the ground communication data;
the machine-mounted quantum security module and the ground quantum security module share a quantum key group, the quantum key group is a key source for quantum encryption and decryption processing, and the quantum key group is generated by the quantum key generation equipment.
In the above scheme, the system further comprises a key distribution device, wherein the key distribution device is used for receiving and storing the quantum key group generated by the key generation device, and distributing the quantum key group to the onboard quantum security module and the ground quantum security module.
In the above scheme, the key distribution device comprises an information acquisition unit, an authentication unit and a key calculation unit, wherein the information acquisition unit is used for acquiring authentication information, the authentication unit is used for generating authentication information for being sent to the airborne quantum security module and the ground quantum security module according to the authentication information, judging whether authentication is successful or not according to authentication response information from the airborne quantum security module and the ground quantum security module, and the key calculation unit is used for calculating and generating an authentication key according to an authentication password from the information acquisition unit and a preset rule, and the authentication key is used for encrypting the authentication information.
In the above scheme, the authentication information includes an authentication password, a key distribution object device identifier, and a key distribution device identifier; the key distribution device identification is stored in the key distribution device, the authentication password is generated by the key distribution device, and the key distribution object device identification is determined at the time of distributing the quantum key group.
In the above scheme, the key distribution device identifier is stored in the key distribution device in the form of ciphertext, and the key distribution device decrypts the ciphertext according to the input decryption key to obtain the key distribution device identifier.
In the above scheme, the airborne quantum security module is provided with a communication interface corresponding to the unmanned aerial vehicle airborne equipment and the data link terminal, and the communication interface is used for transmitting airborne communication data between the unmanned aerial vehicle airborne equipment and the data link terminal.
In the scheme, the airborne quantum security module and the ground quantum security module both comprise an isolation module and a quantum encryption and decryption module, the isolation module is in communication connection with the quantum encryption and decryption module, the isolation module is used for receiving and transmitting data and filtering the data, and the quantum encryption and decryption module is used for executing quantum encryption and decryption operations.
In the above scheme, the quantum encryption and decryption module further comprises a quantum encryption and decryption unit, a key management unit, a key distribution unit, a data slicing and reorganizing unit, an external logic communication unit and an access and authentication unit; the quantum encryption and decryption unit is used for executing quantum encryption and decryption operation of data based on the data stream and the corresponding encryption proportion; the key management unit is used for carrying out key management according to the relation between the key file and the data stream; the key distribution unit is used for receiving and storing the key during offline key supplementation; the data slicing and reassembling unit is used for slicing and reassembling based on the characteristics of the communication data frames; the external logic communication unit is used for packaging corresponding data according to the opposite-end communication mode; the access and authentication unit is used for executing an access authentication flow.
In the above scheme, the isolation module further includes a data transceiver unit, a data filtering unit and a power control unit, where the data transceiver unit is configured to transceiver data according to a corresponding communication interface; the data filtering unit is used for performing data filtering based on a specific data format; the power supply control unit is used for providing corresponding power supply access and power supply control according to the scene.
In the above scheme, the quantum encryption and decryption module further comprises an operation and maintenance and monitoring unit, and the operation and maintenance and monitoring unit is used for system maintenance and monitoring.
The beneficial effects of the application are as follows:
according to the application, the airborne quantum security module is deployed in the unmanned aerial vehicle so as to transmit airborne communication data between the airborne equipment of the unmanned aerial vehicle and the data link terminal and perform quantum encryption and decryption processing on the airborne communication data; the ground quantum security module is deployed in the ground station, ground communication data are transmitted between the antenna array module and the control end, and quantum encryption and decryption processing is carried out on the ground communication data; the quantum encryption transmission of communication data between the unmanned aerial vehicle and the ground station is realized, and compared with the traditional unmanned aerial vehicle encryption technology, the communication data encrypted through the quantum security module has higher security and confidentiality, and the security of an unmanned aerial vehicle system can be better ensured; meanwhile, the communication interface of the quantum security module is matched with the communication interface of the existing unmanned aerial vehicle, the hardware is changed little, and the installation and deployment are more convenient and quicker.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present application, the drawings that are needed in the description of the embodiments will be briefly described below, it will be apparent that the drawings in the following description are only some embodiments of the present application, and that other drawings can be obtained according to these drawings without inventive effort for a person skilled in the art.
Fig. 1 is a schematic structural diagram of a quantum security communication system of an unmanned aerial vehicle according to an embodiment of the present application;
fig. 2 is a schematic diagram of communication connection of an airborne quantum security module according to an embodiment of the present application;
fig. 3 is a schematic diagram of communication connection of a ground quantum security module according to an embodiment of the present application;
fig. 4 is a schematic structural diagram of an isolation module and a quantum encryption/decryption module in an airborne quantum security module and a ground quantum security module provided by the application;
fig. 5 is a schematic structural diagram of a key distribution device according to an embodiment of the present application.
Detailed Description
In order to make the objects, technical solutions and advantages of the present application more apparent, the present application will be described in further detail below with reference to the accompanying drawings, and it is apparent that the described embodiments are only some embodiments of the present application, not all embodiments. All other embodiments, which can be made by those skilled in the art based on the embodiments of the application without making any inventive effort, are intended to be within the scope of the application.
Example 1: the quantum safety communication system of the unmanned aerial vehicle comprises an airborne quantum safety module, a ground quantum safety module and quantum key generation equipment; the system comprises an unmanned aerial vehicle, an airborne quantum security module, a data link terminal, a data link module and a data link module, wherein the airborne quantum security module is deployed in the unmanned aerial vehicle and is used for transmitting airborne communication data between airborne equipment of the unmanned aerial vehicle and the data link terminal and carrying out quantum encryption and decryption processing on the airborne communication data; the airborne quantum security module is provided with a communication interface corresponding to the unmanned aerial vehicle airborne equipment and the data link terminal, and the communication interface is used for transmitting airborne communication data between the unmanned aerial vehicle airborne equipment and the data link terminal; wherein unmanned aerial vehicle airborne equipment is mainly for can installing the relevant equipment of adaptation on unmanned aerial vehicle, for example: visible light cameras, CCD cameras, infrared cameras, hyperspectral imagers, sensors, and the like;
taking the next unmanned aerial vehicle as an example, the airborne communication data of the unmanned aerial vehicle comprises two data, namely video data and telemetry/remote control data, which are interacted with a ground station through a data link terminal in an RS422 mode, referring to FIG. 2, wherein the communication interface type of the video data is a J30J rectangular interface, and the interface protocol is synchronous RS422; the communication interface type of the telemetry/remote control data is a J30J rectangular interface, and the interface protocol is asynchronous RS422; the two types of data transmission are carried out through the RS422 protocol interface, so that the airborne quantum security module can be provided with 4 communication interfaces supporting the RS422 protocol, the 4 RS422 communication interfaces are in groups, and the communication interfaces in each group are respectively connected with the unmanned aerial vehicle airborne equipment and the data link terminal to transmit airborne communication data;
the ground quantum security module is deployed in the ground station and is used for transmitting ground communication data between the antenna array module and the control end and carrying out quantum encryption and decryption processing on the ground communication data; the control end can be an unmanned aerial vehicle control console or an unmanned aerial vehicle control center and the like;
a traditional unmanned aerial vehicle data link system is arranged between the data link terminal and the antenna array module; for example, a data link system is formed by a radio measurement and control radio station and an antenna, and the radio measurement and control radio station adopts a duplex data transmission radio station and is responsible for the transmission of remote control instructions and the reception of telemetry data.
After the antenna array module receives data through the unmanned aerial vehicle data link, two data combining ways are broadcasted to the console in a wired Ethernet mode, and referring to FIG. 3, the antenna array module corresponds to the airborne quantum security module in FIG. 2, a pair of kilomega Ethernet ports of RJ45 are arranged in the ground quantum security module and are respectively connected with the antenna array module and the control end; the antenna array module can be used for supplying power to the ground quantum security module during deployment.
The system comprises an airborne quantum security module, a ground quantum security module, a quantum key group and a quantum key generation device, wherein the airborne quantum security module and the ground quantum security module share the quantum key group, the quantum key group is a key source for quantum encryption and decryption processing, and the quantum key group is generated by the quantum key generation device; referring to fig. 1, in the working process of an unmanned aerial vehicle, video data generated by the unmanned aerial vehicle is sent to an airborne quantum security module, the airborne quantum security module encrypts the video data by using a quantum key to obtain quantum security video data, the quantum security video data is forwarded to a data link terminal, the data link terminal transmits the quantum security video data to an antenna array module of a ground station through a traditional unmanned aerial vehicle data link, and after receiving the quantum security video data through the antenna array module, the ground quantum security module performs quantum decryption on the quantum security video data through the quantum key to obtain video data, and the video data is forwarded to a control terminal; in the process, a quantum key for quantum encryption and decryption is generated by key generation equipment and is respectively preset in an airborne quantum security module and a ground quantum security module in an off-line mode; a key generation device is a device that generates a quantum key, e.g., a Quantum Random Number Generator (QRNG) or a quantum random number server; when a quantum key is generated, generating a plurality of quantum key files to form a quantum key group, and distributing the quantum key group to an airborne quantum security module and a ground quantum security module respectively; when the airborne quantum security module or the ground quantum security module encrypts data, the corresponding data is encrypted in an exclusive or mode through a quantum key file in the quantum key group to obtain quantum security data, and an index which is used for indicating the corresponding quantum key file for encryption is generated at the same time, wherein the index is used for indicating the position of the quantum key file in the quantum key group; after carrying out quantum encryption on the data, synchronously transmitting the quantum security data and the index to an opposite terminal, and after receiving the quantum security data and the index, searching and determining a corresponding quantum key file from a quantum key group stored by the opposite terminal according to the index, so as to decrypt ciphertext data to obtain corresponding plaintext data;
unpredictable, unrepeatable and high-quality random numbers can be generated through a Quantum Random Number Generator (QRNG), the random numbers are used as keys, a one-time-pad mode is adopted during encryption, and after quantum key files in a quantum key group are used, the quantum key files are supplemented in an offline mode through key generation equipment, and safety protection of unmanned aerial vehicle communication data can be achieved through combination of the two modes, so that safety of an unmanned aerial vehicle system is better guaranteed.
The machine-mounted quantum security module and the ground quantum security module both comprise an isolation module and a quantum encryption and decryption module, the isolation module is in communication connection with the quantum encryption and decryption module, the isolation module is used for receiving and transmitting data and filtering the data, and the quantum encryption and decryption module is used for executing quantum encryption and decryption operations;
the isolation module specifically comprises a data receiving and transmitting unit, a data filtering unit and a power supply control unit, wherein the data receiving and transmitting unit is used for receiving and transmitting data according to a corresponding communication interface; receiving corresponding data, for example, based on a serial port and an Ethernet port;
the data filtering unit is used for performing data filtering based on a specific data format; the isolation module can adopt programmable chips such as FPGA and the like, can be based on a white list rule during filtering, and can only allow the service data meeting the rule to pass through, for example, when adopting a filtering rule based on a serial port communication protocol type, can filter the data of an RS422 protocol type, thereby filtering out the data which does not accord with the protocol type, improving the safety and reducing the possibility of attack on the communication data;
the power supply control unit is used for providing corresponding power supply access and power supply control according to the scene; for example, in order to save energy consumption, when the unmanned aerial vehicle does not shoot and the processing data volume is small, the unmanned aerial vehicle operates in a low-power mode; when performing other job tasks such as shooting, the camera operates in a high power mode.
The quantum encryption and decryption module is used for executing quantum encryption and decryption operations; the quantum encryption and decryption module can adopt an ARM/X86 processing chip; in this embodiment, the quantum encryption and decryption module further includes a quantum encryption and decryption unit, a key management unit, a key distribution unit, a data slicing and reorganizing unit, an external logic communication unit, and an access and authentication unit;
the quantum encryption and decryption unit is used for executing quantum encryption and decryption operation of data based on the data stream and the corresponding encryption proportion; for example, in order to improve encryption and decryption performance, the length of a quantum key and the length of video data to be used can be equal to 1:2,1:4, encrypting in a mode of the like, so that the using amount of the quantum key is saved; whereas telemetry/remote data is typically small, 1 may be used for specific encryption: 1, encrypting the encryption proportion;
the key management unit is used for carrying out key management according to the relation between the key file and the data stream; each data stream can be correspondingly allocated with a corresponding key file for encryption so as to facilitate operation and management;
the key distribution unit is used for receiving and storing the key during offline key supplementation; in particular for receiving and storing a quantum key set generated from a key generating device. In the key distribution process, keys are distributed to the airborne quantum security module and the ground quantum security module respectively, so that the airborne quantum security module and the ground quantum security module share the same quantum key group for subsequent quantum encryption and decryption.
The data slicing and reassembling unit is used for slicing and reassembling based on the characteristics of the communication data frames; for example, the current data chain forwarding format of the unmanned aerial vehicle is fixed to 256 bytes, in order to ensure that the data encapsulation and the data chain of the unmanned aerial vehicle are not modified as much as possible, the additionally installed airborne quantum security module and ground quantum security module can continue to communicate in the current data chain, the airborne quantum security module and the ground quantum security module can be adapted to the data chain, the data frames are split and assembled, the frames are split and encrypted according to the data chain requirement before the data is sent, and an encryption head is encapsulated, decrypted and reassembled after the data is received, and the original frames are restored;
the external logic communication unit is used for packaging corresponding data according to the opposite-end communication mode; for example, when the antenna array module of the ground station receives airborne communication data, serial communication protocol data is converted into Ethernet type data when the ground station communicates, so that the communication requirement is adapted;
the access and authentication unit is used for executing an access authentication flow, and when the quantum key group is distributed to the airborne quantum security module and the ground quantum security module, security access authentication can be carried out on the legitimacy of the equipment according to equipment identification and the like so as to avoid the access of illegal equipment.
In addition, the quantum encryption and decryption module further comprises an operation and maintenance and monitoring unit, wherein the operation and maintenance and monitoring unit is used for system maintenance and monitoring; the running condition and the abnormal log are recorded locally and offline, so that the offline log can be checked through an offline distribution machine, and maintenance and monitoring can be carried out on the offline log.
Embodiment 2, unlike embodiment 1, is that, in order to facilitate the distribution of the quantum key group generated by the key generating device to the on-board quantum security module and the ground quantum security module, the system further includes a key distribution device, which may be a device such as a notebook computer or an all-in-one machine, and when distributing the key, the on-board quantum security module and the ground quantum security module may be connected through an RJ45 interface so as to fill the quantum key group;
the key distribution device is used for receiving and storing the quantum key group generated by the key generation device and distributing the quantum key group to the airborne quantum security module and the ground quantum security module;
the key distribution equipment specifically comprises an information acquisition unit, a key calculation unit and an authentication unit, wherein the information acquisition unit is used for acquiring authentication information, and in order to ensure the legality of the equipment during key distribution, the authentication information comprises an authentication password, a key distribution object equipment identifier and a key distribution equipment identifier; the key distribution device identification is stored in the key distribution device; in order to further improve the security of the storage of the key distribution equipment identification, the key distribution equipment identification is stored in the key distribution equipment in a ciphertext form, and the key distribution equipment obtains the key distribution equipment identification by decrypting the ciphertext according to the input decryption key; the decryption key may be a login key for logging in the key distribution device system and is set manually;
the authentication password is generated by the key distribution device; when the key generation device generates a quantum key group, synchronously generating an authentication password corresponding to the quantum key group, wherein the authentication password can be a string of random numbers, then synchronously distributing the authentication password to a key distribution person and the key distribution device, when the key is distributed, inputting the authentication password to an information acquisition unit by the key distribution person, checking the input authentication password by the key distribution device, and performing the key distribution operation after the authentication password passes the check;
the key distribution object device identifier is a device identifier of an airborne quantum security module and a device identifier of a ground quantum security module, specifically can be the device identifiers of the airborne quantum security module and the ground quantum security module, is determined when a quantum key group is distributed, and can be determined by manually inputting the key distribution object device identifier or selecting the key distribution object device identifier prestored in the key distribution device when the quantum key group is specifically distributed;
in order to avoid the access of illegal equipment, the authentication unit is used for generating authentication information which is used for being sent to the airborne quantum security module and the ground quantum security module according to the authentication information, and judging whether authentication is successful according to authentication response information from the airborne quantum security module and the ground quantum security module; specifically, the airborne quantum security module and the ground quantum security module determine whether to match according to the key distribution object device identifier and the key distribution device identifier in the authentication message, and when determining legal, generate an authentication response message for indicating successful access authentication and return the authentication response message to the key distribution device.
In order to ensure the security of the key distribution process, the key calculation unit is further used for calculating and generating an authentication key according to the authentication password from the information acquisition unit and a preset rule, wherein the authentication key is used for encrypting the authentication message; for example, the length of the authentication password is 128 bits, the length of the authentication key is 256 bits, after the key distribution device determines that the authentication password is correct, the key distribution device expands the authentication password to generate an authentication key with the length of 256 bits according to an AES key expansion algorithm, and then the authentication key encrypts authentication messages transmitted between the key distribution device and the airborne quantum security module and the ground quantum security module through the authentication key, when the authentication messages are transmitted, the authentication password is synchronously transmitted, and after the airborne quantum security module and the ground quantum security module receive the authentication password, the decryption key is calculated and generated according to the same preset rule so as to decrypt the authentication key; the authentication information is transmitted in an encryption mode, the authentication password can be obtained by further rule calculation, and even if the authentication password is leaked, the content of the authentication information is difficult to crack, and the confidentiality of the authentication information transmission is greatly improved by combining the authentication password with the content of the authentication information, so that the security of the key distribution process is ensured.
Claims (10)
1. The quantum safety communication system of the unmanned aerial vehicle is characterized by comprising an airborne quantum safety module, a ground quantum safety module and quantum key generation equipment; the airborne quantum security module is deployed in the unmanned aerial vehicle and is used for transmitting airborne communication data between airborne equipment of the unmanned aerial vehicle and a data link terminal and carrying out quantum encryption and decryption processing on the airborne communication data;
the ground quantum security module is deployed in the ground station and is used for transmitting ground communication data between the antenna array module and the control end and carrying out quantum encryption and decryption processing on the ground communication data;
the machine-mounted quantum security module and the ground quantum security module share a quantum key group, the quantum key group is a key source for quantum encryption and decryption processing, and the quantum key group is generated by the quantum key generation equipment.
2. The system of claim 1, further comprising a key distribution device for receiving and storing the quantum key set generated by the key generation device and distributing the quantum key set to the on-board quantum security module and the ground quantum security module.
3. The system according to claim 2, wherein the key distribution device includes an information acquisition unit for acquiring authentication information, an authentication unit, and a key calculation unit; the authentication unit is used for generating authentication information which is used for being sent to the airborne quantum security module and the ground quantum security module according to the authentication information, and judging whether authentication is successful or not according to authentication response information from the airborne quantum security module and the ground quantum security module; the key calculation unit is used for calculating and generating an authentication key according to the authentication password from the information acquisition unit and a preset rule, wherein the authentication key is used for encrypting the authentication message.
4. The system of claim 3, wherein the authentication information includes an authentication password, a key distribution object device identifier, and a key distribution device identifier; the key distribution device identification is stored in the key distribution device, the authentication password is generated by the key distribution device, and the key distribution object device identification is determined at the time of distributing the quantum key group.
5. The system of claim 4, wherein the key distribution device identification is stored in the key distribution device in the form of ciphertext, the key distribution device obtaining the key distribution device identification from an input decryption key to decrypt the ciphertext.
6. The system of claim 1, wherein the on-board quantum security module has a communication interface corresponding to an unmanned aerial vehicle on-board device and a data link terminal, the communication interface for transmitting on-board communication data between the unmanned aerial vehicle on-board device and the data link terminal.
7. The system of claim 1, wherein the onboard quantum security module and the ground quantum security module each comprise an isolation module and a quantum encryption and decryption module, the isolation module is in communication connection with the quantum encryption and decryption module, the isolation module is used for receiving and transmitting data and filtering the data, and the quantum encryption and decryption module is used for executing quantum encryption and decryption operations.
8. The system of claim 7, wherein the quantum encryption and decryption module further comprises a quantum encryption and decryption unit, a key management unit, a key distribution unit, a data fragmentation and reassembly unit, an out-of-pair logic communication unit, and an access and authentication unit; the quantum encryption and decryption unit is used for executing quantum encryption and decryption operation of data based on the data stream and the corresponding encryption proportion; the key management unit is used for carrying out key management according to the relation between the key file and the data stream; the key distribution unit is used for receiving and storing the key during offline key supplementation; the data slicing and reassembling unit is used for slicing and reassembling based on the characteristics of the communication data frames; the external logic communication unit is used for packaging corresponding data according to the opposite-end communication mode; the access and authentication unit is used for executing an access authentication flow.
9. The system of claim 7 or 8, wherein the isolation module further comprises a data transceiver unit, a data filter unit, and a power control unit, the data transceiver unit configured to transceiver data according to a corresponding communication interface; the data filtering unit is used for performing data filtering based on a specific data format; the power supply control unit is used for providing corresponding power supply access and power supply control according to the scene.
10. The system of claim 8, wherein the quantum cryptography module further comprises an operation and monitoring unit for system maintenance and monitoring.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202311146790.XA CN117041946A (en) | 2023-09-06 | 2023-09-06 | Quantum safety communication system of unmanned aerial vehicle |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202311146790.XA CN117041946A (en) | 2023-09-06 | 2023-09-06 | Quantum safety communication system of unmanned aerial vehicle |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN117041946A true CN117041946A (en) | 2023-11-10 |
Family
ID=88624659
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202311146790.XA Pending CN117041946A (en) | 2023-09-06 | 2023-09-06 | Quantum safety communication system of unmanned aerial vehicle |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN117041946A (en) |
-
2023
- 2023-09-06 CN CN202311146790.XA patent/CN117041946A/en active Pending
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11753180B2 (en) | Sensor network | |
| US20200162434A1 (en) | Secure and encrypted heartbeat protocol | |
| CN104994112A (en) | Method for encrypting communication data chain between unmanned aerial vehicle and ground station | |
| CN113872762B (en) | Quantum encryption communication system based on power distribution terminal equipment and use method thereof | |
| CN101990748A (en) | Method and device for transmitting messages in real time | |
| CN111372056A (en) | Video data encryption and decryption processing method and device | |
| CN112270020A (en) | Terminal equipment safety encryption device based on safety chip | |
| CN114500064B (en) | Communication security verification method and device, storage medium and electronic equipment | |
| CN109152091B (en) | Communication system for unmanned aerial vehicle cluster control | |
| CN114301939A (en) | Non-public network area environment monitoring method based on Internet of things satellite | |
| CN111555879B (en) | Satellite communication network management channel message encryption and decryption method and system | |
| CN111245618A (en) | Internet of things secret communication system and method based on quantum key | |
| KR102531876B1 (en) | Intelligent smart low-power encryption method and system for secure communication of unmanned weapon system | |
| CN117041946A (en) | Quantum safety communication system of unmanned aerial vehicle | |
| KR102087498B1 (en) | Method for encrypting high-speed video data of LTE-based swarm UAS | |
| CN108111515B (en) | End-to-end secure communication encryption method suitable for satellite communication | |
| Wagner et al. | Retrofitting Integrity Protection into Unused Header Fields of Legacy Industrial Protocols | |
| CN114786151A (en) | Multi-path end-to-end transmission system based on air-ground communication and application method | |
| KR101578910B1 (en) | Different Units Same Security For Visual Observation System | |
| WO2005057842A1 (en) | A wireless lan system | |
| CN114826748A (en) | Audio and video stream data encryption method and device based on RTP, UDP and IP protocols | |
| AU2021221217A1 (en) | Improved packet transfer | |
| KR101886367B1 (en) | Generation of device individual session key in inter-object communication network and verification of encryption and decryption function between devices using it | |
| KR20210101304A (en) | communication module | |
| CN219181539U (en) | Quantum security industrial Internet gateway and platform |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |