CN212463227U - Vehicle-mounted communication device based on quantum encryption - Google Patents
Vehicle-mounted communication device based on quantum encryption Download PDFInfo
- Publication number
- CN212463227U CN212463227U CN202021479605.0U CN202021479605U CN212463227U CN 212463227 U CN212463227 U CN 212463227U CN 202021479605 U CN202021479605 U CN 202021479605U CN 212463227 U CN212463227 U CN 212463227U
- Authority
- CN
- China
- Prior art keywords
- module
- quantum
- qkd
- interface
- key
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The utility model discloses a vehicle-mounted communication device based on quantum encryption, which comprises an IPSec VPN daughter card, a key management module, an isolation module, a QKD module, a wavelength division multiplexing module and a light quantum exchange module; the IPSec VPN sub-card is connected with the isolation module and used for constructing a virtual communication private network; the key management module is connected with the isolation module and used for receiving the quantum key from the QKD module through the isolation module and managing the quantum key; the isolation module is connected with the QKD module and is used for isolating the IPSec VPN sub-card, the key management module and the QKD module; the wavelength division multiplexing module is connected with the IPSec VPN sub-card, the key management module and the QKD module; the optical quantum exchange module is connected with the wavelength division multiplexing module. The utility model provides an on-vehicle communication device can realize quantum communication node's on-vehicle change and removal.
Description
Technical Field
The utility model relates to a quantum communication technology field, concretely relates to vehicle-mounted communication device based on quantum is encrypted.
Background
Quantum encrypted communication is a new communication technology, which utilizes the physical characteristics of quantum to ensure the unconditional security of communication. Quantum encryption is a new research field combining disciplines of quantum physics, mathematics, computers and the like, and related research contents comprise quantum key distribution, quantum secret sharing, quantum invisible transmission, quantum secure direct communication and the like, wherein the quantum key distribution realizes long-distance secure communication by taking optical fibers as transmission media, and is mature in technical aspect.
Fig. 1 is a schematic diagram of a networking structure of a quantum communication system. In the existing quantum communication system, networking nodes are relatively fixed, quantum equipment is generally fixedly installed in a data center or a communication machine room of a user, and the field, the space, the electric power and the temperature and the humidity in the environment meet the operation requirements of the quantum equipment. A pair of quantum links is established between the node A and the node B, and quantum encryption protection data transmission is started; a pair of quantum links is established between the node A and the node C, and quantum encryption protection data transmission is started; and a pair of quantum links is established between the node B and the node C, and quantum encryption protection data transmission is enabled.
The application scene of the quantum communication system is fixed, important temporary activities such as exhibitions, meetings or exercises are not considered, and the requirements of related safety guarantees cannot be well met. Moreover, because the networking is single, a pair of quantum links are needed among the nodes to generate the quantum key, and the requirement on a multi-user node channel is high.
SUMMERY OF THE UTILITY MODEL
The utility model aims to solve the problem that the application scene of the present quantum communication system is fixed, the requirement is more for multi-user node channel.
The utility model discloses a following technical scheme realizes:
a vehicle-mounted communication device based on quantum encryption comprises an IPSec VPN sub-card, a key management module, an isolation module, a QKD module, a wavelength division multiplexing module and a light quantum exchange module;
the IPSec VPN sub-card is connected with the isolation module and used for constructing a virtual private communication network, and a quantum key is requested to the key management module through the isolation module when the virtual private communication network is constructed;
the key management module is connected with the isolation module and used for receiving the quantum key from the QKD module through the isolation module and managing the quantum key;
the isolation module is connected with the QKD module and is used for isolating the IPSec VPN sub-card, the key management module and the QKD module;
the QKD module is used for generating a quantum key and sending the quantum key to the key management module through the isolation module;
the wavelength division multiplexing module is connected with the IPSec VPN sub-card, the key management module and the QKD module, and is used for performing wavelength division multiplexing on a data signal of the IPSec VPN sub-card, a data signal of the key management module and a key negotiation signal and a single-photon signal of the QKD module;
the optical quantum exchange module is connected with the wavelength division multiplexing module and is used for realizing time division multiplexing of quantum channels.
Optionally, the IPSec VPN daughter card includes a central processing unit, and a PHY module, a secure storage module, a memory module, an operation chip, and an interface module connected to the central processing unit.
Optionally, the interface module includes an SGMII interface, a PCIE interface, a UART interface, a Combo interface, and a GE electrical interface.
Optionally, the IPSec VPN daughter card is connected to the isolation module through an SGMII interface and a PCIE interface.
Optionally, the key management module is connected to the isolation module through a UART interface and an FE network interface.
Optionally, the QKD module is connected to the isolation module through a UART interface.
Optionally, the wavelength division multiplexing module is connected to the IPSec VPN daughter card, the key management module, and the QKD module through an optical fiber LC/FC interface.
Optionally, the optical quantum switching module is connected to the wavelength division multiplexing module through an optical fiber FC/LC interface.
Compared with the prior art, the utility model, following advantage and beneficial effect have:
the utility model provides an on-vehicle communication device based on quantum is encrypted, to the fixed problem of present quantum communication system application scene, adopt to integrate the quantum gateway after fusing IPSec VPN daughter card, key management module, isolation module, QKD module and wavelength division multiplexing module, reduce the demand that occupies the equipment space, can fuse with power supply system, air conditioning system and shock mitigation system, realize quantum communication node's on-vehicle ization and removal. By carrying the quantum communication equipment and the system on a vehicle, the application problem of quantum security guarantee in important temporary work is well solved, and the availability of the whole system is improved. Aiming at the problem of single networking of the existing quantum communication system, the optical quantum switching equipment is modularized and integrated into a vehicle-mounted communication device, so that the sharing of quantum channels is realized, one-to-many optical path switching is finally realized, and the quantum key sharing of multi-user nodes is realized, thereby reducing the requirements of the system on optical fiber pairs and saving the related implementation and maintenance cost.
Drawings
The accompanying drawings, which are included to provide a further understanding of the embodiments of the invention and are incorporated in and constitute a part of this application, illustrate embodiment(s) of the invention and together with the description serve to explain the principles of the invention. In the drawings:
fig. 1 is a schematic diagram of a networking structure of a conventional quantum communication system;
fig. 2 is a schematic circuit diagram of the vehicle-mounted communication device according to the embodiment of the present invention;
fig. 3 is a schematic diagram of an in-vehicle communication device according to an embodiment of the present invention applied in a mobile device;
fig. 4 is a schematic diagram of networking by using the vehicle-mounted communication device according to the embodiment of the present invention.
Detailed Description
To make the objects, technical solutions and advantages of the present invention more apparent, the present invention is further described in detail below with reference to the following examples and drawings, and the exemplary embodiments and descriptions thereof of the present invention are only used for explaining the present invention, and are not intended as limitations of the present invention.
The embodiment of the utility model provides a vehicle communication device based on quantum is encrypted, figure 2 is vehicle communication device's circuit structure schematic diagram, vehicle communication device includes IPSec VPN daughter card 11, key management module 12, keeps apart module 13, QKD module 14, wavelength division multiplexing module 15 and light quantum exchange module 16.
Specifically, the IPSec VPN daughter card 11 is connected to the isolation module 13, and is configured to construct a private virtual communication network, and request the quantum key from the key management module 12 through the isolation module 13 when constructing the private virtual communication network. A VPN (Virtual Private Network) is a logical channel established over a public Network using tunneling, defined as a temporary, secure connection established over a public Network, usually the internet, as a secure, stable tunnel through the public Network. Virtual private networks are extensions to the intranet of an enterprise that can help foreign users, corporate branches, business partners and suppliers establish trusted secure connections with the company's intranet and ensure secure transmission of data.
In the embodiment of the present invention, the IPSec VPN daughter card 11 includes a central processing unit and a PHY module, a secure storage module, a memory module, an operation chip and an interface module connected to the central processing unit. The central processing unit may be a multi-core network processor XLR732, which is connected to the secure storage module through a USB interface, where the secure storage module is used to store a quantum key, and the central processing unit provides control and forwarding functions of an IPSec VPN function, and completes a protocol stack and forwarding functions of data communication. The PHY module may provide a physical layer and a link layer function of a service interface by using a realtektrl 8208 chip, and is used for receiving and transmitting a message. The operation module can comprise an SM1 chip, an SM2 chip, an SM3 chip and an SM4 chip, wherein the SM1 chip, the SM2 chip, the SM3 chip and the SM4 chip are respectively connected with the central processing unit. The interface module comprises an SGMII interface, a PCIE interface, a UART interface, a Combo interface and a GE electric interface, and the IPSec VPN daughter card 11 is connected with the isolation module 13 through the SGMII interface and the PCIE interface. It should be noted that, the IPSec VPN daughter card 11 is a board-to-board implementation of the IPSec VPN device, and those skilled in the art know how to board-to-board the IPSec VPN device, and the specific structure of the IPSec VPN daughter card 11 is not an improvement point of the present invention, so that the specific structure of the IPSec VPN daughter card 11 is not described herein.
The key management module 12 is connected to the isolation module 13, and configured to receive the quantum key from the QKD module 14 through the isolation module 13 and manage the quantum key. In the embodiment of the present invention, the key management module 12 is connected to the isolation module 13 through a UART interface and an FE gateway. The isolation module 13 is connected to the QKD module 14, and configured to isolate the IPSec VPN daughter card 11, the key management module 12, and the QKD module 14. The QKD module 14 is configured to generate a quantum key and send the quantum key to the key management module 12 through the isolation module 13. In the embodiment of the present invention, the QKD module 14 is connected to the isolation module 13 through a UART interface. It should be noted that the key management module 12, the isolation module 13, and the QKD module 14 can be implemented by using existing chips and peripheral circuits thereof, and the specific structures of the key management module 12, the isolation module 13, and the QKD module 14 are not an improvement of the present invention, so that the specific structures of the key management module 12, the isolation module 13, and the QKD module 14 are not described herein too much.
The wavelength division multiplexing module 15 is connected to the IPSec VPN daughter card 11, the key management module 12, and the QKD module 14, and is configured to perform wavelength division multiplexing on the data signal of the IPSec VPN daughter card 11, the data signal of the key management module 12, and the key negotiation signal and the single photon signal of the QKD module 14. Wavelength Division Multiplexing (WDM) is a technology in which optical carrier signals of two or more different wavelengths are combined together at a transmitting end via a multiplexer and coupled to the same optical fiber of an optical line for transmission. At the receiving end, the optical carriers of the various wavelengths are separated by a demultiplexer and then further processed by an optical receiver to recover the original signal. In the existing quantum communication equipment, an IPsec VPN line requires a pair of optical fiber lines for classical data communication, a quantum channel transmits a single photon, and a quantum classical channel transmits quantum key negotiation information, that is, at least three pairs of optical fiber lines are required. And in the embodiment of the utility model provides an in, adopt and carry out the modularization with wavelength division multiplexing equipment, integrated to quantum equipment in, can reduce the demand to the fiber circuit. In the embodiment of the present invention, the wdm module 15 is connected to the IPSec VPN daughter card 11, the key management module 12, and the QKD module 14 through an optical fiber LC/FC interface. It should be noted that the wavelength division multiplexing module 15 is a module of the wavelength division multiplexing device, and those skilled in the art know how to integrate the wavelength division multiplexing device into the quantum device, and the specific structure of the wavelength division multiplexing module 15 is not an improvement of the present invention, so that the detailed structure of the wavelength division multiplexing module 15 will not be described herein too much.
The optical quantum switching module 16 is connected to the wavelength division multiplexing module 15, and is configured to implement time division multiplexing of quantum channels. In quantum communication networks, optical quantum switching is a key technology for realizing quantum channel sharing. The optical quantum switching equipment is positioned at a central node of a network topology, and centralized management of channel resources is realized. The optical quantum switch adopts the cross-type optical fiber link for switching, is mostly used in quantum key relay, realizes the capacity expansion and backup of a key distribution terminal, has the characteristics of low insertion loss and high isolation, can effectively solve the problems of complex quantum channel networking, high use cost of users and the like, and greatly promotes the industrialization of the quantum communication technology. It should be noted that the optical quantum switching module 16 is a module of an optical quantum switch, and those skilled in the art know how to integrate an optical quantum switching module into a quantum device, and the specific structure of the optical quantum switching module 16 is not an improvement of the present invention, so that the detailed structure of the optical quantum switching module 16 will not be described herein too much. In the embodiment of the present invention, the optical quantum switching module 16 is connected to the wavelength division multiplexing module 15 through an optical fiber FC/LC interface.
The embodiment of the utility model provides an on-vehicle communication device, to the fixed problem of present quantum communication system application scene, adopt will IPSec VPN daughter card 11 secret key management module 12 keep apart module 13 QKD module 14 and wavelength division multiplexing module 15 integrates the quantum gateway after fusing, reduces the demand that occupies the equipment space. Referring to fig. 3, the vehicle-mounted communication device may be integrated with a power supply system, an air conditioning system, and a damping system, so as to implement vehicle-mounting and moving of the quantum communication node. By carrying the quantum communication equipment and the system on a vehicle, the application problem of quantum security guarantee in important temporary work is well solved, and the availability of the whole system is improved.
Aiming at the problem of single networking of the existing quantum communication system, the light quantum exchange module 16 is integrated into the vehicle-mounted communication device, so that the sharing of quantum channels is realized, the one-to-many light path exchange is finally realized, and the quantum key sharing of multi-user nodes is realized, thereby reducing the requirements of the system on optical fiber pairs and saving the related implementation and maintenance cost. Referring to fig. 4, adopt the embodiment of the utility model provides an on-vehicle communication device networks, can all establish a pair of quantum link between node a and the node B and between node a and the node C, through light quantum exchange module 16 switches, realizes the establishment of node a and node B quantum link, produces and uses the quantum key. Under the control of the system, the establishment of the quantum links of the node A and the node C is realized, and the quantum key is generated and used. The key between the node B and the node C can be generated indirectly through the key between the node A and the node B and the key between the node A and the node C. Therefore, quantum keys are arranged among the node A, the node B and the node C, and quantum encryption protection data transmission is started.
The above-mentioned embodiments, further detailed description of the objects, technical solutions and advantages of the present invention, it should be understood that the above description is only the embodiments of the present invention, and is not intended to limit the scope of the present invention, and any modifications, equivalent substitutions, improvements, etc. made within the spirit and principle of the present invention should be included in the scope of the present invention.
Claims (8)
1. A vehicle-mounted communication device based on quantum encryption is characterized by comprising an IPSec VPN sub-card, a key management module, an isolation module, a QKD module, a wavelength division multiplexing module and a light quantum exchange module;
the IPSec VPN sub-card is connected with the isolation module and used for constructing a virtual private communication network, and a quantum key is requested to the key management module through the isolation module when the virtual private communication network is constructed;
the key management module is connected with the isolation module and used for receiving the quantum key from the QKD module through the isolation module and managing the quantum key;
the isolation module is connected with the QKD module and is used for isolating the IPSec VPN sub-card, the key management module and the QKD module;
the QKD module is used for generating a quantum key and sending the quantum key to the key management module through the isolation module;
the wavelength division multiplexing module is connected with the IPSec VPN sub-card, the key management module and the QKD module, and is used for performing wavelength division multiplexing on a data signal of the IPSec VPN sub-card, a data signal of the key management module and a key negotiation signal and a single-photon signal of the QKD module;
the optical quantum exchange module is connected with the wavelength division multiplexing module and is used for realizing time division multiplexing of quantum channels.
2. The vehicle-mounted communication device based on quantum cryptography according to claim 1, wherein the IPSec VPN daughter card comprises a central processing unit, and a PHY module, a secure storage module, a memory module, an operation chip and an interface module which are connected with the central processing unit.
3. The vehicle-mounted communication device based on quantum cryptography according to claim 2, wherein the interface module comprises an SGMII interface, a PCIE interface, a UART interface, a Combo interface, and a GE electrical interface.
4. The vehicle-mounted communication device based on quantum encryption of claim 3, wherein the IPSec VPN daughter card is connected with the isolation module through an SGMII interface and a PCIE interface.
5. The vehicle-mounted communication device based on quantum cryptography according to claim 1, wherein the key management module is connected with the isolation module through a UART interface and an FE port.
6. The quantum cryptography-based vehicle communication apparatus according to claim 1, wherein the QKD module is connected to the isolation module through a UART interface.
7. The quantum encryption-based vehicle-mounted communication device as claimed in claim 1, wherein the wavelength division multiplexing module is connected with the IPSec VPN sub-card, the key management module and the QKD module through an optical fiber LC/FC interface.
8. The vehicle-mounted communication device based on quantum cryptography according to claim 1, wherein the optical quantum exchange module is connected with the wavelength division multiplexing module through an optical fiber FC/LC interface.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202021479605.0U CN212463227U (en) | 2020-07-23 | 2020-07-23 | Vehicle-mounted communication device based on quantum encryption |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202021479605.0U CN212463227U (en) | 2020-07-23 | 2020-07-23 | Vehicle-mounted communication device based on quantum encryption |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN212463227U true CN212463227U (en) | 2021-02-02 |
Family
ID=74475154
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202021479605.0U Active CN212463227U (en) | 2020-07-23 | 2020-07-23 | Vehicle-mounted communication device based on quantum encryption |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN212463227U (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2023072329A1 (en) * | 2021-10-27 | 2023-05-04 | Elmos Semiconductor Se | Device and method for free space quantum key distribution |
-
2020
- 2020-07-23 CN CN202021479605.0U patent/CN212463227U/en active Active
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2023072329A1 (en) * | 2021-10-27 | 2023-05-04 | Elmos Semiconductor Se | Device and method for free space quantum key distribution |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| Cao et al. | KaaS: Key as a service over quantum key distribution integrated optical networks | |
| JP2777194B2 (en) | Optical transmission system | |
| JP2783164B2 (en) | Communication network | |
| CN111555864B (en) | Satellite-ground integrated quantum key distribution network and networking method thereof | |
| CN109428665A (en) | Wavelength-division multiplex sending device, receiving device, trunking and Transmission system | |
| CN110808834B (en) | Quantum key distribution method and quantum key distribution system | |
| CN109842442B (en) | Quantum key service method taking airport as regional center | |
| CN110611572A (en) | Asymmetric password terminal based on quantum random number, communication system and method | |
| CN212463227U (en) | Vehicle-mounted communication device based on quantum encryption | |
| CN107579820A (en) | Sychronisation and synchronous method for multichannel quantum key distribution system | |
| CN103023785A (en) | MAC (media access control) address acquisition method and device | |
| CN206498408U (en) | For the net mate device in the networks of bus-type FC AE 1553 | |
| CN109245887B (en) | Relay device for quantum secret communication network system and communication network system comprising the same | |
| CN110049387A (en) | A kind of wildcard-filter style multi-user photon communication network secrecy dedicated router | |
| CN103957477A (en) | Power-grid-service-oriented optical switching method and network | |
| CN111245618B (en) | Internet of things secret communication system and method based on quantum key | |
| CN114978477A (en) | Open type key distribution network architecture based on physical system | |
| Takahashi et al. | A high-speed key management method for quantum key distribution network | |
| CN112423276A (en) | Encrypted communication system and method for Internet of things | |
| Cao et al. | Software-defined heterogeneous quantum key distribution chaining: an enabler for multi-protocol quantum networks | |
| CN112737698B (en) | Networking design method of optical fiber quantum communication system | |
| JP5368519B2 (en) | Optical line termination device and key switching method | |
| CN103516515A (en) | Encryption/decryption seamless switch achieving method, OLT and ONU in GPON system | |
| EP2928090B1 (en) | Optical network element, electric network element and signaling establishment method when electric relay is in electric network element | |
| Lord et al. | London quantum-secured metro network |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| GR01 | Patent grant | ||
| GR01 | Patent grant |