CN217282956U - Monitoring system based on quantum secret communication network - Google Patents
Monitoring system based on quantum secret communication network Download PDFInfo
- Publication number
- CN217282956U CN217282956U CN202120383144.5U CN202120383144U CN217282956U CN 217282956 U CN217282956 U CN 217282956U CN 202120383144 U CN202120383144 U CN 202120383144U CN 217282956 U CN217282956 U CN 217282956U
- Authority
- CN
- China
- Prior art keywords
- level
- quantum
- qkd
- unit
- qkd node
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Abstract
The utility model discloses a monitored control system based on secret communication network of quantum, control central unit, QKD node element, quantum key management server, terminal supervisory equipment unit and authority personnel database, ith grade p i Group user control center and ith level pth i The group QKD node modules are connected in a pairing mode, and the j-th-level QKD node unit is connected with the j + 1-th-level QKD node unit through a quantum communication channel; ith stage p i Passing between group QKD node modulesQuantum communication channel connection, ith stage, pth i The QKD nodes of the group QKD node module are connected through a quantum communication channel; ith stage p i Qth of a module of a group QKD node i QKD node and ith stage i Group q i The terminal monitoring equipment is connected through a quantum communication channel; the utility model discloses prevent revealing of data effectively, fine expansibility has simultaneously.
Description
Technical Field
The utility model relates to a quantum communication field especially relates to a monitored control system based on secret communication network of quantum.
Background
With the development of science and technology, people increasingly pay more attention to the space safety in cities, and especially in recent years, the monitoring becomes an effective method for improving the city safety in real time. At present, hundreds of high-definition monitoring cameras are distributed in almost every city, and the monitoring devices uninterruptedly monitor the surrounding environment 24 hours a day. Such a large number of high-density monitoring devices is almost a hole-free and non-intrusive everyday life of everyone of the photographer. The high-density camera device can ensure that criminal offenders are frightened and afraid, and can not dare to implement criminal offence activities in public, and in the daily investigation activities of public security organs, the monitoring equipment can also play a great role. However, these highly dense monitoring devices do give people such as needle felt because once these monitoring devices are broken by a person or data is leaked, they are a serious threat to everyone in the city. Therefore, how to realize the safe and stable operation of the skynet system and how to prevent the skynet system from being invaded maliciously or how to transmit data of the skynet system safely is a technical problem to be solved in the field.
In the prior art, the skynet system is mainly built by adopting a classical communication network, a special skynet network system is generally built by a public security department, and the system and a public network are isolated, so that certain resource waste can be caused. Certainly, under the prior art, the security of the public security network can be effectively guaranteed only by adopting a special network building mode. However, with the development of quantum communication technology, especially the development of current quantum secure communication technology, secure communication between two targets can be achieved through pairwise paired QKD devices without worrying about the risk of data leakage.
Quantum secret communication is based on the basic principle of quantum mechanics, has theoretically unconditional security, has already had practical application prospect at present (mainly based on QKD's quantum key distribution technology), and domestic multiple cities are all in corresponding application of overall arrangement. The quantum secret communication can be used for realizing the secret transmission of data, and the data leakage is effectively prevented.
The invention has the patent number of CN201611255339.1, the invention name is a secret key encryption method, a device and a system of a credible repeater and a quantum communication network, and discloses a QKD device which is divided into a transmitting end and a receiving end, wherein the transmitting end is responsible for transmitting an encoded quantum state, the receiving end is responsible for detecting the encoded state of the quantum state, then the two parties obtain a final quantum secret key through subsequent negotiation, error correction and privacy amplification, the transmitting end encrypts data by using the quantum secret key, transmits the encrypted data to a receiving party in a classical communication mode, and the receiving party decrypts the data by using the quantum secret key in a hand, so that the quantum communication from the transmitting end to the receiving party is realized.
SUMMERY OF THE UTILITY MODEL
Utility model purpose: in order to overcome exist not enough among the prior art, the utility model provides a prevent revealing of data effectively, have fine expansibility's monitored control system based on secret communication network of quantum simultaneously.
The technical scheme is as follows: in order to achieve the above object, the utility model adopts the following technical scheme:
a monitoring system based on quantum secret communication network comprises a user control center unit, a QKD node unit, a quantum key management server, a terminal monitoring device unit and an authority personnel database, wherein:
the user control center is divided into a level 1 user control center unit, a level 2 user control center unit, a level 3 user control center unit, … and an N level user control center unit according to the authority from large to small, wherein N is a positive integer and represents the authority level. The ith level user control center unit comprises P i In group i level user manipulationHeart, P i And the group number of the i-level user control centers of the i-th level user control center unit is represented, wherein i is 1,2, … and N.
The QKD node units are divided into a level 1 QKD node unit, a level 2 QKD node unit, a level 3 QKD node unit, … and an N level QKD node unit, wherein the level i QKD node unit comprises a P i Set of i-level QKD node modules, i-level p i The group QKD node module comprises Q i An i-level QKD node, Q i Represents the ith level of QKD node unit i The number of i-level QKD nodes of the group i-level QKD node module, i equals 1,2, …, N.
Ith stage p i Group user control center and ith level pth i Group QKD node module pairing connection, p i =1,2,…,P i 。
The j-th level QKD node unit and the j + 1-th level QKD node unit are connected through a quantum communication channel, and j is 1,2, … and N-1. Ith stage p i The QKD node modules are connected through quantum communication channels, i-th level p i The QKD nodes of the set of QKD node modules are connected by a quantum communication channel.
The terminal monitoring equipment unit comprises P i Group N stage Q i And (4) terminal monitoring equipment. Ith stage p i Qth of a module of a group QKD node i QKD node and ith stage i Group q i The terminal monitoring devices are connected through a quantum communication channel. And a quantum key storage chip and/or a QKD module are/is arranged in the terminal monitoring equipment.
The QKD node units are connected with a quantum key management server through a quantum communication channel.
And the authority personnel database is connected with the user control center unit and the QKD node unit.
Preferably: the quantum communication channel is an optical fiber quantum communication or free space quantum channel.
Preferably: and a telescope module is arranged in the terminal monitoring equipment.
Preferably: the system comprises a quantum satellite, wherein the quantum key management server is connected with the i-level QKD node unit through a quantum communication channel through the quantum satellite.
Preferably: when the terminal monitoring equipment is internally provided with the QKD module and the telescope module, the quantum key management server is connected with the terminal monitoring equipment internally provided with the QKD module through a quantum satellite through a free space quantum communication channel.
Preferably: and the quantum satellite is replaced by a high-altitude balloon, a high-altitude airship or a high-altitude unmanned aerial vehicle provided with the QKD equipment.
Compared with the prior art, the utility model, following beneficial effect has:
the utility model discloses in all adopt the secret mode of communicating of quantum to carry out data communication in controlling center, QKD node, prevented revealing of data effectively. In addition, the monitoring terminal adopts a quantum key storage chip mode to realize the secret communication between the three-level public security control center and the terminal monitoring device through a pre-issued quantum key. At some key monitoring points, the method and the system can also realize the secret communication between the terminal monitoring device and the control center by adopting a mode that the terminal monitoring device is matched with the QKD unit. In addition, at some special points, the terminal monitoring device can also adopt a free space communication mode and a quantum satellite to perform direct quantum key negotiation to realize secret communication, and various optional secret communication access modes can better meet the requirements of various actual scenes. In addition, in the application, a special classical communication network does not need to be built for the monitoring system to use, and each terminal of the monitoring system can be accessed to the existing public network nearby, so that the monitoring system has good expansibility.
Drawings
Fig. 1 is a schematic diagram of a monitoring system based on quantum secure communication according to the present application.
Fig. 2 is a schematic diagram of another monitoring system based on quantum secure communication according to the present application.
Detailed Description
The invention will be further elucidated with reference to the drawings and specific embodiments, it being understood that these examples are intended to illustrate the invention only and are not intended to limit the scope of the invention, and that modifications to the various equivalent forms of the invention, which may occur to those skilled in the art after reading the present invention, fall within the scope of the invention as defined in the claims appended hereto.
Example one
A monitoring system based on quantum secret communication network comprises a user control center unit, a QKD node unit, a quantum key management server, a terminal monitoring device unit and an authority personnel database, wherein:
the user control center is divided into a level 1 user control center unit, a level 2 user control center unit, a level 3 user control center unit, … and an N level user control center unit according to the authority from large to small, wherein N is a positive integer and represents the authority level. The ith level user control center unit comprises P i Group i level user control center, P i And the group number of the i-level user control centers of the i-th level user control center unit is represented, wherein i is 1,2, … and N.
The QKD node units are divided into a level 1 QKD node unit, a level 2 QKD node unit, a level 3 QKD node unit, … and an N level QKD node unit, wherein the level i QKD node unit comprises a P i Set of i-level QKD node modules, i-level p i The group QKD node module comprises Q i An i-level QKD node, Q i Represents the ith level of QKD node unit i The number of i-level QKD nodes of the group i-level QKD node module, i is 1,2, …, N.
Ith stage p i Group user control center and ith level pth i Group QKD node module pairing connection, p i =1,2,…,P i 。
The j-th level QKD node unit is connected with the j + 1-th level QKD node unit through a quantum communication channel, wherein j is 1,2, … and N-1. Ith stage p i The QKD node modules are connected through quantum communication channels, i-th level p i The QKD nodes of a group of QKD node modules are connected by quantum communication channels.
The terminal monitoring equipment unit comprises P i Group N stage Q i And (4) terminal monitoring equipment. Ith stage p i Qth of a module of a group QKD node i QKD node and ith stage i Group q i The terminal monitoring devices are connected through a quantum communication channel. A quantum secret is arranged in the terminal monitoring equipmentA key storage chip and/or a QKD module.
The QKD node units are connected with a quantum key management server through a quantum communication channel.
And the authority personnel database is connected with the user control central unit and the QKD node unit.
For convenience of description, the user operation center unit, the QKD node unit, and the terminal monitoring device unit are simplified, and with reference to fig. 1, the user operation center unit, the QKD node, the quantum key management server, the terminal monitoring device, and the authorized personnel database are mainly included. In fig. 1, the user control centers may be divided into a first-level user control center, a second-level user control center, and a third-level user control center, and belong to corresponding departments; in fig. 1, the QKD nodes may be divided into a first-level QKD node, a second-level QKD node, a third-level QKD node, and are connected in a pairing manner with corresponding user control centers, wherein each second-level QKD node is connected with the first-level QKD node through a quantum channel, the quantum communication channel may be an optical fiber quantum communication channel or a free space quantum channel, and quantum key agreement may be performed between two paired QKD nodes, thereby realizing quantum secret communication. The quantum key management server may be configured to generate a pre-issued quantum key, and the pre-issued quantum key may be pre-stored in a quantum key storage chip of the corresponding device. The terminal monitoring equipment is mainly used for monitoring each point position in a city and mainly comprises a quantum key storage chip and a camera module; or mainly comprises a camera module and a QKD module; or mainly comprises a quantum key storage chip, a camera module and a QKD module; or mainly comprises a telescope module, a QKD module and a camera module; the terminal monitoring equipment consisting of the camera module and the quantum key storage chip can be adopted in most monitoring positions in the city, and the method is low in cost; in addition, other terminal monitoring equipment composition modes can be selected according to corresponding requirements. The authority personnel database is mainly used for storing identity data of control personnel in the monitoring system, the control personnel of all levels of user control centers need to be authenticated by the authority personnel database before entering the system, for example, personnel of a certain three-level user control center need to enter the system, the personnel firstly send corresponding identity data to the authority personnel database, the sent data are encrypted by a QKD node, the authority personnel database receives the corresponding data and then sends an operating instruction in a quantum secret communication mode after passing comparison verification, and the personnel are allowed to access the control system through the three-level user control center.
Quantum communication between QKD nodes or QKD modules described herein can be a decoy-state-based BB84 quantum communication protocol.
In the application, a plurality of secondary QKQ nodes are arranged under a primary QKD node, a plurality of three-level QKD nodes are arranged under each secondary QKD node, corresponding QKD nodes are connected through quantum channels, and a plurality of terminal monitoring devices are arranged under each three-level QKD node. The QKD nodes of each stage are directly connected to the user manipulation centers of the corresponding stage, and are typically located in the user manipulation centers of the corresponding stages. All QKD nodes, user control centers and terminal monitoring equipment need to be accessed to the Internet, and for the application, all network access equipment can be accessed to a corresponding public network system nearby without additionally erecting a special classical network communication channel, because the communication among the user control centers and the communication of the user control centers to the terminal monitoring equipment can realize quantum secret communication.
In specific system work, the three-level user control center performs secret communication with a terminal monitoring device arranged below the node through a three-level QKD node through a pre-issued quantum key, for example, a certain three-level user control center needs to communicate with a certain terminal monitoring device arranged below the node, the terminal monitoring device adopts a quantum key storage chip mode, then the communication process is that the three-level user control center requests a pre-issued quantum key to a quantum key management server through the current-level QKD node, and then the pre-issued quantum key is utilized to perform quantum secret communication with the terminal monitoring device; when the terminal monitoring equipment needs to send secret information to the three-level user control center, the terminal monitoring equipment utilizes the pre-issued quantum key encrypted data to send the data to the three-level user control center through the classical network, and the user control center applies for the pre-issued quantum key through the phase quantum key management server of the current-level QKD equipment after receiving the data and then decrypts the data.
When the terminal monitoring device is internally provided with the QKD module, the secure communication between the terminal monitoring device and the user control center is directly quantum secure communication through the mutually matched QKD devices, for example, when the terminal monitoring device needs to send secure data to the user control center, the QKD devices of a sender and a receiver firstly carry out quantum key negotiation, the sender sends the encrypted data of the negotiated quantum key to the receiver through classical communication, and then the receiver decrypts the encrypted data by using the quantum key of the local terminal.
In some special scenes, a QKD module and a telescope module are arranged in the terminal monitoring equipment, so that the terminal monitoring equipment can perform free space quantum communication with a high-altitude quantum satellite, the high-altitude quantum satellite is generally provided with the QKD equipment and a corresponding signal receiving device, the quantum satellite is generally accessed to a quantum key management server through a ground station, and the quantum key management server is internally provided with the QKD equipment, so that the quantum key management server and the remote terminal monitoring equipment can perform indirect quantum secret communication through the quantum satellite. For example, when the terminal monitoring device needs to send secret data to a certain user control center, the QKD module of the terminal monitoring device and the quantum satellite perform free space quantum key agreement, and the quantum satellite and the ground station in the quantum key management server perform quantum key agreement at the same time, so that the QKD devices of the sender and the receiver negotiate out a quantum key, then the terminal monitoring device sends the negotiated quantum key encrypted data to the user control center through a classical network, and the user control center decrypts the data by using the quantum key provided by the current-stage QKD node.
Example two
Referring to fig. 2, in this embodiment, the quantum communication channel may also adopt a free space quantum channel, and quantum secure communication between any two QKD nodes may be achieved by means of a quantum satellite, for example, a certain three-level user control center is far away from a first-level user control center, and the quantum communication cost is high by using an optical fiber, so that a ground station may be disposed at the three-level QKD node, and the ground station is used for transmitting and receiving a quantum optical signal to and from the quantum satellite, and may achieve quantum key agreement between the three-level QKD node and the quantum satellite based on the free space quantum channel. Then the quantum satellite and the quantum key management server can also perform direct quantum key agreement, so that the three-level QKD node can perform quantum secret communication with the quantum key management server, and then the first-level user control center can also perform quantum key agreement with the quantum key management server, thereby finally realizing the quantum secret communication between the first-level user control center and the three-level user control center.
The embodiment of the application can conveniently expand the network, for example, a new user control center is required to be added, only corresponding QKD nodes and ground stations are required to be arranged in the new user control center and are simultaneously accessed into a public network system, a special QKD network is not required to be laid, and the new user control center can carry out quantum key negotiation with a high-altitude quantum satellite through the QKD nodes and the ground stations.
In a preferred implementation, the high-altitude quantum satellite can be replaced by other high-altitude sky devices, such as high-altitude balloons equipped with QKD devices, high-altitude airships, even high-altitude unmanned aerial vehicles, and the like. The unmanned aerial vehicle which can fly relatively high and has enough long dead time can be adopted, and the unmanned aerial vehicle provided with the QKD device can be completely adopted as a quantum communication cooperative party of the ground QKD device.
The above description is only a preferred embodiment of the present invention, and it should be noted that: for those skilled in the art, without departing from the principle of the present invention, several improvements and modifications can be made, and these improvements and modifications should also be considered as the protection scope of the present invention.
Claims (6)
1. A monitoring system based on quantum secret communication network is characterized in that: the system comprises a user control center unit, a QKD node unit, a quantum key management server, a terminal monitoring device unit and an authority personnel database, wherein:
the user controls the center rootThe system is divided into a level 1 user control central unit, a level 2 user control central unit, a level 3 user control central unit, … and an N level user control central unit according to the authority from large to small, wherein N is a positive integer and represents the authority level; the ith level user control center unit comprises P i Group i level user control center, P i A group number indicating an i-th level user manipulation center of the i-th level user manipulation center unit, i being 1,2, …, N;
the QKD node units are divided into a level 1 QKD node unit, a level 2 QKD node unit, a level 3 QKD node unit, … and an N level QKD node unit, wherein the level i QKD node unit comprises a P i Set of i-level QKD node modules, i-level p i The group QKD node module comprises Q i An i-level QKD node, Q i Represents the ith level of QKD node unit i The number of i-level QKD nodes of the group i-level QKD node module is 1,2, … and N;
ith stage p i Group user control center and ith level pth i Group QKD node module pairing connection, p i =1,2,…,P i ;
The j-th level QKD node unit is connected with the j + 1-th level QKD node unit through a quantum communication channel, and j is 1,2, …, N-1; ith stage p i The QKD node modules are connected through quantum communication channels, i-th level p i The QKD nodes of the group QKD node module are connected through a quantum communication channel;
the terminal monitoring equipment unit comprises P i Group N stage Q i A terminal monitoring device; ith stage p i Qth of a module of a group QKD node i QKD node and ith level p i Group q i The terminal monitoring equipment is connected through a quantum communication channel; a quantum key storage chip and/or a QKD module are/is arranged in the terminal monitoring equipment;
the QKD node unit is connected with the quantum key management server through a quantum communication channel;
and the authority personnel database is connected with the user control central unit and the QKD node unit.
2. The quantum secure communication network-based monitoring system according to claim 1, wherein: the quantum communication channel is an optical fiber quantum communication or free space quantum channel.
3. The quantum secure communication network-based monitoring system according to claim 1, wherein: and a telescope module is arranged in the terminal monitoring equipment.
4. The quantum secure communication network-based monitoring system according to claim 1, wherein: the system comprises a quantum satellite, wherein the quantum key management server is connected with the i-level QKD node unit through a quantum communication channel through the quantum satellite.
5. The quantum secure communication network-based monitoring system according to claim 1, wherein: when the terminal monitoring equipment is internally provided with the QKD module and the telescope module, the quantum key management server is connected with the terminal monitoring equipment internally provided with the QKD module through a quantum satellite through a free space quantum communication channel.
6. The quantum secure communication network-based monitoring system according to claim 4 or 5, wherein: quantum satellites are replaced by high-altitude balloons, high-altitude airships or high-altitude unmanned aerial vehicles provided with QKD equipment.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202120383144.5U CN217282956U (en) | 2021-02-20 | 2021-02-20 | Monitoring system based on quantum secret communication network |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202120383144.5U CN217282956U (en) | 2021-02-20 | 2021-02-20 | Monitoring system based on quantum secret communication network |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN217282956U true CN217282956U (en) | 2022-08-23 |
Family
ID=82853098
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202120383144.5U Active CN217282956U (en) | 2021-02-20 | 2021-02-20 | Monitoring system based on quantum secret communication network |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN217282956U (en) |
-
2021
- 2021-02-20 CN CN202120383144.5U patent/CN217282956U/en active Active
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105205898B (en) | A kind of electronic cipher Rights Management System of smart lock | |
| CN101094056B (en) | Security system of wireless industrial control network, and method for implementing security policy | |
| CN102594895B (en) | Network node, mobility information server, WTRU and method | |
| Sharma et al. | A novel approach for securing data against intrusion attacks in unmanned aerial vehicles integrated heterogeneous network using functional encryption technique | |
| CN110581839B (en) | Content protection method and device | |
| CN109040063A (en) | Determination method, apparatus, equipment and the storage medium of vehicle ECU key | |
| CN115022879A (en) | Enhanced Beidou user terminal access authentication method and system based on position key | |
| Kumar et al. | Blockchain for securing aerial communications: Potentials, solutions, and research directions | |
| CN109688583A (en) | A kind of data ciphering method in star earth communication system | |
| CN114339632A (en) | SM4 packet encryption algorithm-based Beidou short message encryption and decryption method | |
| WO2023077706A1 (en) | Spatial-temporal characteristic fused dual-stage secure access authentication method in satellite-ground communication | |
| CN102056163B (en) | Distributed mesh network key management method and wireless access point device | |
| Rahman et al. | IoEV-Chain: A 5G-based secure inter-connected mobility framework for the Internet of Electric Vehicles | |
| Wani et al. | A novel approach for securing data against adversary attacks in UAV embedded HetNet using identity based authentication scheme | |
| CN106921677A (en) | A kind of multiple encryption system of block chain houseclearing | |
| CN110635894B (en) | Quantum key output method and system based on frame protocol format | |
| CN217282956U (en) | Monitoring system based on quantum secret communication network | |
| CN101483469A (en) | Satellite network safe routing implementing method based on mobile proxy | |
| CN110430207A (en) | A kind of smart grid multi-point remote inter-network interaction collaboration authentication method | |
| CN102404324A (en) | System for sensing safety of node data of Internet of things | |
| CN102624748B (en) | Peer-to-peer (P2P) network access control method | |
| KR102236235B1 (en) | The disaster broadcasting PA in public facility, the remotely functioning A/V smart broadcasting device, a closed network system | |
| CN110428215B (en) | Intelligent robot data information mutual interaction safe and reliable transmission handling method and system | |
| CN111698263A (en) | Beidou satellite navigation data transmission method and system | |
| CN220475843U (en) | Active area safety management system in large-scale activity |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| GR01 | Patent grant | ||
| GR01 | Patent grant |