WO2022199186A1 - Internet-of-things communication system based on quantum technology - Google Patents

Internet-of-things communication system based on quantum technology Download PDF

Info

Publication number
WO2022199186A1
WO2022199186A1 PCT/CN2021/142718 CN2021142718W WO2022199186A1 WO 2022199186 A1 WO2022199186 A1 WO 2022199186A1 CN 2021142718 W CN2021142718 W CN 2021142718W WO 2022199186 A1 WO2022199186 A1 WO 2022199186A1
Authority
WO
WIPO (PCT)
Prior art keywords
key
secret key
iot
serial number
cloud platform
Prior art date
Application number
PCT/CN2021/142718
Other languages
French (fr)
Chinese (zh)
Inventor
王振宇
徐征
Original Assignee
嘉兴企树网络科技有限公司
上海企树网络科技有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 嘉兴企树网络科技有限公司, 上海企树网络科技有限公司 filed Critical 嘉兴企树网络科技有限公司
Publication of WO2022199186A1 publication Critical patent/WO2022199186A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0852Quantum cryptography
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/12Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0877Generation of secret information including derivation or calculation of cryptographic keys or passwords using additional device, e.g. trusted platform module [TPM], smartcard, USB or hardware security module [HSM]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
    • H04L9/0897Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage involving additional devices, e.g. trusted platform module [TPM], smartcard or USB

Definitions

  • the present application relates to the field of communication technologies, and in particular, to an Internet of Things communication system based on quantum technology.
  • the encrypted transmission of data between the IoT terminal and the IoT platform usually adopts the following methods: First, the IoT terminal and the IoT platform negotiate a key in advance, and the key is preset into the IoT terminal and the IoT platform at the same time. , using the preset key to realize the encrypted transmission of data between the IoT terminal and the IoT platform; the second is that the key is distributed by the IoT platform and sent to the IoT terminal through a short message, and the distributed key is used to realize Encrypted transmission of data between IoT terminals and IoT platforms.
  • the methods of presetting the key and issuing the key through a short message can easily leak the key, resulting in poor security.
  • the embodiments of the present application provide an IoT communication system based on quantum technology, so as to solve the encrypted transmission of data between the IoT terminal and the IoT platform in the prior art by using a preset key and The method of sending the key by short message will cause the key to be easily leaked, which is a technical problem of poor security.
  • Embodiments of the present application provide an IoT communication system based on quantum technology, including: an IoT terminal, a U-key (a storage device with a USB interface with a chip inside), and a cloud platform, where the cloud platform includes an encryption center, The secret key generated by the quantum random number generator is pre-stored in the U-key and the encryption center, and the U-key is used to obtain the message to be encrypted through the U-key interface of the Internet of Things terminal.
  • the stored secret key encrypts the message to be encrypted, and sends the encrypted message and the serial number of the secret key to the IoT terminal through the U-key interface; the IoT terminal receives the encrypted message and the secret key serial number, send the encrypted message and the secret key serial number to the cloud platform; the cloud platform takes out the secret key pair pre-stored in the encryption center according to the secret key serial number The encrypted message is decrypted to obtain a plaintext message.
  • the U-key is also used to obtain parameter information of the IoT terminal through the U-key interface before obtaining the message to be encrypted, and encrypt the parameter information by using a pre-stored secret key, Send the encrypted parameters, the serial number of the secret key and the U-key number to the Internet of Things terminal through the U-key interface; the terminal of the Internet of Things receives the encrypted parameters, the serial number of the secret key and the U-key number , send the encrypted parameters, the secret key serial number and the U-key number to the cloud platform; the cloud platform takes out the secret key pre-stored in the encryption center according to the secret key serial number to the encrypted Decrypt the parameters of the device, bind the plaintext parameters and the U-key number, obtain the binding information and save it, and send the binding information to the Internet of Things terminal.
  • the IoT terminal when the IoT terminal sends the encrypted message and the key serial number to the cloud platform, it also sends the binding information to the cloud platform; the cloud platform receives For the binding information, verify the binding information and the saved binding information, and after the verification is passed, take out the secret key pre-stored in the encryption center according to the secret key serial number to encrypt the message. Decrypt to get the plaintext message.
  • the quantum technology-based IoT communication system further includes: an IoT subsystem gateway, the IoT subsystem gateway connects the IoT terminal and the cloud platform respectively, and the IoT subsystem gateway connects the The encrypted message and the key serial number output by the IoT terminal are forwarded to the cloud platform.
  • the quantum technology-based Internet of Things communication system further includes: a gateway U-key, in which a secret key generated by a quantum random number generator is pre-stored, and the gateway U-key passes the The U-key interface of the IoT subsystem gateway is connected to the IoT subsystem gateway, and the IoT subsystem gateway receives the encrypted message and the secret key serial number output by the IoT terminal, according to The secret key serial number is extracted from the secret key pre-stored in the gateway U-key to decrypt the encrypted message to obtain a plaintext message.
  • a gateway U-key in which a secret key generated by a quantum random number generator is pre-stored, and the gateway U-key passes the The U-key interface of the IoT subsystem gateway is connected to the IoT subsystem gateway, and the IoT subsystem gateway receives the encrypted message and the secret key serial number output by the IoT terminal, according to The secret key serial number is extracted from the secret key pre-stored in the gateway U-key to decrypt the encrypted message to obtain
  • the quantum technology-based IoT communication system further includes: an edge server, where the edge server is connected to the IoT terminal and the cloud platform, respectively, and the edge server outputs the The encrypted message and the key serial number are forwarded to the cloud platform.
  • the quantum technology-based IoT communication system further includes: an edge U-key, wherein the edge U-key is pre-stored with a secret key generated by a quantum random number generator, and the edge U-key passes the The U-key interface of the edge server is connected to the edge server, the edge server receives the encrypted message and the secret key serial number output by the IoT terminal, and retrieves the edge according to the secret key serial number The encrypted message is decrypted by the secret key pre-stored in the U-key to obtain a plaintext message.
  • an edge U-key wherein the edge U-key is pre-stored with a secret key generated by a quantum random number generator, and the edge U-key passes the The U-key interface of the edge server is connected to the edge server, the edge server receives the encrypted message and the secret key serial number output by the IoT terminal, and retrieves the edge according to the secret key serial number The encrypted message is decrypted by the secret key pre-stored in the U-key to obtain a plaintext message.
  • the encryption center includes: a secret key generation unit and a secret key storage unit, the quantum random number generator is set in the secret key generation unit, and the U-key and the secret key storage unit are connected to the The secret key generation unit obtains and stores the secret key generated by the quantum random number generator, and the U-key and the secret key stored in the secret key storage unit are in the same order.
  • the encryption center further includes: a secret key management unit, the secret key management unit is configured to manage the secret key in the gateway U-key, so that the secret key in the gateway U-key and the The secret keys in the U-key connected to the IoT terminal are the same.
  • the key management unit in the encryption center is further configured to manage the key in the edge U-key, so that the key in the edge U-key is the same as the one connected to the IoT terminal.
  • the secret key in the U-key is the same.
  • the IoT platform can be connected to the U-key, and use the secret key stored in the U-key for data encryption.
  • the secret key is also pre-stored in the cloud platform, the data sent to the cloud platform can be decrypted to obtain plaintext.
  • the random code generated based on quantum is a true random code, and using this random code as the secret key is theoretically unbreakable.
  • the technological Internet of Things communication system uses the secret key generated by the quantum random number generator for encryption and decryption, which can further ensure the security of transmitted data, and solves the problem of encryption and decryption security by presetting keys and issuing keys through short messages. Poor technical issues.
  • FIG. 1 is a structural block diagram of a quantum technology-based Internet of Things communication system according to an embodiment of the present application
  • FIG. 2 is a structural block diagram of a quantum technology-based IoT communication system according to another embodiment of the present application.
  • FIG. 3 is a structural block diagram of an IoT communication system based on quantum technology according to another embodiment of the present application.
  • the terms “installed”, “connected” and “connected” should be understood in a broad sense, for example, it may be a fixed connection or a detachable connection connection, or integral connection; it can be a mechanical connection or an electrical connection; it can be a direct connection or an indirect connection through an intermediate medium, or it can be the internal connection of two components, which can be a wireless connection or a wired connection connect.
  • installed should be understood in a broad sense, for example, it may be a fixed connection or a detachable connection connection, or integral connection; it can be a mechanical connection or an electrical connection; it can be a direct connection or an indirect connection through an intermediate medium, or it can be the internal connection of two components, which can be a wireless connection or a wired connection connect.
  • the IoT communication system based on quantum technology includes: an IoT terminal 10, a U-key 20 and a cloud platform 30.
  • the cloud platform 30 includes The encryption center, U-key20 and the encryption center are pre-stored with the secret key generated by the quantum random number generator, and the U-key20 is used to obtain the message to be encrypted through the U-key20 interface of the Internet of Things terminal 10.
  • the secret key encrypts the message to be encrypted, and sends the encrypted message and the secret key serial number to the IoT terminal 10 through the U-key20 interface; the IoT terminal 10 receives the encrypted message and the secret key serial number, The encrypted message and the key serial number are sent to the cloud platform 30; the cloud platform 30 takes out the pre-stored key in the encryption center according to the key serial number and decrypts the encrypted message to obtain a plaintext message.
  • the U-key20 interface may be a USB type interface, or may be other types of interfaces, which are not limited in this application.
  • the IoT communication system based on quantum technology provided by the embodiments of the present application
  • data is performed on the IoT terminal 10 and the cloud platform 30.
  • the IoT platform can be connected to U-key20, and use the secret key stored in U-key20 for data encryption.
  • the secret key is also pre-stored in cloud platform 30, the data sent to cloud platform 30 It can be decrypted to get the plaintext.
  • the random code generated based on quantum is a true random code, and using this random code as the secret key is theoretically unbreakable.
  • the technological Internet of Things communication system uses the secret key generated by the quantum random number generator for encryption and decryption, which can further ensure the security of transmitted data, and solves the problem of encryption and decryption security by presetting keys and issuing keys through short messages. Poor technical issues.
  • the cloud platform 30 when the cloud platform 30 sends data to the IoT terminal 10, the above method can also be used, that is, the cloud platform 30 first uses the secret key pre-stored by the encryption center to perform the data transmission. Encrypt, and then send the encrypted data and the corresponding secret key serial number to the IoT terminal 10, and the IoT terminal 10 extracts the corresponding secret key from the U-key 20 according to the secret key serial number to decrypt to obtain plaintext.
  • the U-key 20 and the IoT terminal 10 may be bound by the following process. Specifically, the U-key 20 is also used to obtain the parameter information of the IoT terminal 10 through the U-key interface before obtaining the message to be encrypted, encrypt the parameter information by using the pre-stored secret key, and encrypt the encrypted parameters and secret keys.
  • the serial number and the U-key number are sent to the IoT terminal 10 through the U-key interface; the IoT terminal 10 receives the encrypted parameters, the secret key serial number and the U-key number, and sends the encrypted parameters, the secret key serial number and the U-key number.
  • the cloud platform 30 takes out the pre-stored secret key in the encryption center according to the secret key serial number, decrypts the encrypted parameters, binds the plaintext parameters and the U-key number, obtains the binding information and saves it.
  • the binding information is sent to the IoT terminal 10 .
  • the parameter information includes information such as the unique hardware number and user number of the IoT terminal 10 .
  • the IoT terminal 10 can perform data transmission by means of the bound U-key 20 and the cloud platform 30 .
  • the IoT terminal 10 first encrypts the data through the secret key in the U-key 20, and when sending the encrypted message and the secret key serial number to the cloud platform 30, it also sends the binding information to the cloud platform 30; the cloud platform 30 Receive the binding information, verify the binding information and the saved binding information, and after the verification is passed, extract the secret key pre-stored in the encryption center according to the secret key serial number to decrypt the encrypted message to obtain a plaintext message.
  • the encryption center includes: a secret key generation unit and a secret key storage unit, the quantum random number generator is arranged in the secret key generation unit, and the U-key20 and the secret key storage unit are connected to the secret key generation unit to obtain the quantum random number.
  • the secret key generated by the number generator is stored, and the sequence of U-key20 and the secret key stored in the secret key storage unit is consistent.
  • the U-key 20 can be keyed in the encryption center, that is, the secret key is stored in the U-key 20, specifically , the secret keys added to the U-key 20 bound to different IoT terminals 10 may be different.
  • the keys in order to ensure the flexibility of the system and the requirements of the encryption level, when encrypting in the U-key20, the keys can be obtained in order, or the keys can be obtained randomly, as long as the U-key20 and the key storage unit are guaranteed.
  • the order of the keys saved in the data is consistent, and the key serial number can be transmitted at the same time during data transmission to obtain the accurate key; at the same time, in the scenario with strict encryption requirements, it can support one key at a time, that is, the use of one key It is discarded after one time, and the next time it is encrypted with another key.
  • the keys in the key pool will be consumed. Therefore, the key group of the encryption center can be updated online to U-key20 every preset time.
  • the IoT communication system based on quantum technology further includes: the IoT subsystem gateway 40, and the IoT subsystem gateway 40 is respectively connected to the IoT terminal 10 and the cloud platform 30, The IoT subsystem gateway 40 forwards the encrypted message and the secret key serial number output by the IoT terminal 10 to the cloud platform 30 .
  • the IoT communication system based on quantum technology further includes: an edge server 50, the edge server 50 is respectively connected to the IoT terminal 10 and the cloud platform 30, and the edge server 50 forwards the encrypted message and the key serial number output by the IoT terminal 10 to the cloud platform 30 .
  • the IoT subsystem gateway 40 and the edge server 50 can be set in the communication system according to actual needs. At this time, during data transmission, the data output by the IoT terminal 10 can first pass through the IoT subsystem. The gateway 40 forwards it, and then forwards it to the cloud platform 30 through the edge server 50 . In addition, only the IoT subsystem gateway 40 or the edge server 50 may be set according to actual needs. It should be further noted that, when the IoT subsystem gateway 40 or the edge server 50 is performing data transmission, it can only forward the data and does not have the function of decrypting the data.
  • the IoT communication system based on quantum technology further includes: a gateway U-key41, a gateway U-key
  • the secret key generated by the quantum random number generator is pre-stored in the key41
  • the gateway U-key41 is connected to the IoT subsystem gateway 40 through the U-key interface of the IoT subsystem gateway 40
  • the IoT subsystem gateway 40 receives the IoT terminal 10.
  • the encrypted message and the key serial number are output, and according to the key serial number, the key pre-stored in the gateway U-key 41 is taken out, and the encrypted message is decrypted to obtain a plaintext message.
  • different IoT terminals 10 may communicate with the cloud platform 30 through different IoT subsystem gateways 40. Therefore, when the gateway U-key 41 adds the secret key in the encryption center, it can only save the It corresponds to the secret key saved in the U-key bound to the connected IoT terminal 10 .
  • a secret key management unit may be set in the encryption center, and the secret key management unit is used to manage the secret key in the gateway U-key41, so that the secret key in the gateway U-key41 and the U-key connected to the IoT terminal 10 The keys are the same.
  • the IoT communication system based on quantum technology further includes: edge U-key51, edge U-key51
  • edge U-key51 The secret key generated by the quantum random number generator is stored in advance, and the edge U-key 51 is connected to the edge server 50 through the U-key interface of the edge server 50, and the edge server 50 receives the encrypted message and secret output from the IoT terminal 10.
  • the key sequence number according to the key sequence number, take out the pre-stored key in the edge U-key51 to decrypt the encrypted message, and obtain the plaintext message.
  • the key management unit in the encryption center can also manage the secret key in the edge U-key51, so that the secret key in the edge U-key51 and the U-key connected to the IoT terminal 10
  • the keys are the same.
  • the key management unit can make the gateway U-key 41 only save the key saved in the U-key bound to the corresponding connected IoT terminal 10 when the gateway U-key 41 performs key addition in the encryption center.
  • the gateway U-key 41 and the edge U-key 51 are set, the secure dialogue between the IoT terminal 10 and the IoT subsystem gateway or the IoT terminal 10 and the edge server 50 does not need to go through the encryption center.
  • the communication mode in the communication system provided in the embodiment of the present application may be used for transmission.
  • the disclosed system, apparatus and method may be implemented in other manners.
  • the apparatus embodiments described above are only illustrative.
  • the division of the units is only a logical function division. In actual implementation, there may be other division methods.
  • multiple units or components may be combined or Can be integrated into another system, or some features can be ignored, or not implemented.
  • the shown or discussed mutual coupling or direct coupling or communication connection may be through some interfaces, indirect coupling or communication connection of devices or units, and may be in electrical, mechanical or other forms.
  • the units described as separate components may or may not be physically separated, and components shown as units may or may not be physical units. Some or all of the units may be selected according to actual needs to achieve the purpose of the solution in this embodiment.
  • each functional unit in each embodiment of the present application may be integrated into one processing unit, or each unit may exist physically alone, or two or more units may be integrated into one unit.
  • the above-mentioned integrated units may be implemented in the form of hardware, or may be implemented in the form of software functional units.
  • the integrated unit if implemented in the form of a software functional unit and sold or used as an independent product, may be stored in a computer-readable storage medium.
  • the technical solutions of the present application can be embodied in the form of software products in essence, or the parts that contribute to the prior art, or all or part of the technical solutions, and the computer software products are stored in a storage medium , including several instructions for causing a computer device (which may be a personal computer, a server, or a network device, etc.) to execute all or part of the steps of the methods described in the various embodiments of the present application.
  • the aforementioned storage medium includes: U disk, mobile hard disk, Read-Only Memory (ROM, Read-Only Memory), Random Access Memory (RAM, Random Access Memory), magnetic disk or optical disk and other media that can store program codes .

Abstract

The present application discloses an Internet-of-Things communication system based on quantum technology. The system comprises: an Internet-of-Things terminal, a U-key and a cloud platform, wherein the cloud platform comprises an encryption center; keys are pre-stored in the U-key and the encryption center; the U-key acquires a message to be encrypted of the Internet-of-Things terminal, encrypts same, and sends the encrypted message and a key serial number to the Internet-of-Things terminal by means of a U-key interface; the Internet-of-Things terminal receives the encrypted message and the key serial number, and sends the encrypted message and the key serial number to the cloud platform; and the cloud platform extracts the pre-stored key from the encryption center according to the key serial number, and decrypts the encrypted message, so as to obtain a plaintext message. By implementing the present application, a key is stored in a U-key, and when an Internet-of-Things terminal performs data exchange with a cloud platform, data encryption is performed by using the key in the U-key, so as to realize ciphertext transmission. The technical problem of the security of issuing a key by using a preset key and by means of a short message being relatively poor is solved.

Description

一种基于量子技术的物联网通信系统An IoT communication system based on quantum technology
相关申请的交叉引用CROSS-REFERENCE TO RELATED APPLICATIONS
本申请要求在2021年3月24日提交中国专利局、申请号为202110317558.2、发明名称为“一种基于量子技术的物联网通信系统”的中国专利申请的优先权,其全部内容通过引用结合在本申请中。This application claims the priority of the Chinese patent application filed on March 24, 2021 with the application number 202110317558.2 and the invention titled "An IoT Communication System Based on Quantum Technology", the entire contents of which are incorporated by reference in in this application.
技术领域technical field
本申请涉及通信技术领域,具体涉及一种基于量子技术的物联网通信系统。The present application relates to the field of communication technologies, and in particular, to an Internet of Things communication system based on quantum technology.
背景技术Background technique
随着城市智慧化和数字化的不断演进,物联网应用越来越成为普及。相应的,大规模物联设备的控制和协同运行,以及失去控制后可能造成的严重后果,也越来越得到重视。物联网的安全会越来越成为人们需要解决的基本问题之一。为了实现物联网终端和物联网平台之间往来数据的安全,通常会对往来数据进行加密处理。With the continuous evolution of urban intelligence and digitization, IoT applications are becoming more and more popular. Correspondingly, the control and coordinated operation of large-scale IoT devices, as well as the serious consequences that may be caused by the loss of control, have also received more and more attention. The security of the Internet of Things will increasingly become one of the basic problems that people need to solve. In order to realize the security of the data exchanged between the IoT terminal and the IoT platform, the exchanged data is usually encrypted.
目前,物联网终端和物联网平台之间往来数据的加密传输通常采用以下方式:一是物联网终端和物联网平台预先协商好密钥,密钥同时预置到物联网终端和物联网平台中,利用预置密钥实现物联网终端与物联网平台之间往来数据的加密传输;二是密钥由物联网平台进行分配,通过短消息下发给物联网终端,利用所分配的密钥实现物联网终端与物联网平台之间往来数据的加密传输。然而,预置密钥和通过短消息下发密钥的方式都会使密钥容易泄漏,安全性较差。At present, the encrypted transmission of data between the IoT terminal and the IoT platform usually adopts the following methods: First, the IoT terminal and the IoT platform negotiate a key in advance, and the key is preset into the IoT terminal and the IoT platform at the same time. , using the preset key to realize the encrypted transmission of data between the IoT terminal and the IoT platform; the second is that the key is distributed by the IoT platform and sent to the IoT terminal through a short message, and the distributed key is used to realize Encrypted transmission of data between IoT terminals and IoT platforms. However, the methods of presetting the key and issuing the key through a short message can easily leak the key, resulting in poor security.
发明内容SUMMARY OF THE INVENTION
有鉴于此,本申请实施例提供了涉及一种基于量子技术的物联网通信系统,以解决现有技术中物联网终端和物联网平台之间往来数据的加密传输时通过预置密钥和通过短消息下发密钥的方式都会使密钥容易泄漏,安全性较差的技术问题。In view of this, the embodiments of the present application provide an IoT communication system based on quantum technology, so as to solve the encrypted transmission of data between the IoT terminal and the IoT platform in the prior art by using a preset key and The method of sending the key by short message will cause the key to be easily leaked, which is a technical problem of poor security.
本申请提出的技术方案如下:The technical solutions proposed in this application are as follows:
本申请实施例提供一种基于量子技术的物联网通信系统,包括:物联网终端、U-key(带有USB接口的内部具有芯片的存储设备)和云平台,所述云平台包括加密中心,所述U-key和所述加密中心中预先存储有量子随机数发生器生成的秘钥,所述U-key用于通过所述物联网终端的U-key接口获取待加密报文,采用预先存储的秘钥将待加密报文进行加密,将加密后的报文以及秘钥序号通过所述U-key接口发送至所述物联网终端;所述物联网终端接收所述加密后的报文和所述秘钥序号,将所述加密后的报文和所述秘钥序号发送至所述云平台;所述云平台根据所述秘钥序号取出所述加密中心中预先存储的秘钥对所述加密后的报文进行解密,得到明文报文。Embodiments of the present application provide an IoT communication system based on quantum technology, including: an IoT terminal, a U-key (a storage device with a USB interface with a chip inside), and a cloud platform, where the cloud platform includes an encryption center, The secret key generated by the quantum random number generator is pre-stored in the U-key and the encryption center, and the U-key is used to obtain the message to be encrypted through the U-key interface of the Internet of Things terminal. The stored secret key encrypts the message to be encrypted, and sends the encrypted message and the serial number of the secret key to the IoT terminal through the U-key interface; the IoT terminal receives the encrypted message and the secret key serial number, send the encrypted message and the secret key serial number to the cloud platform; the cloud platform takes out the secret key pair pre-stored in the encryption center according to the secret key serial number The encrypted message is decrypted to obtain a plaintext message.
可选地,所述U-key还用于在获取待加密报文之前通过所述U-key接口获取所述物联网终端的参数信息,采用预先存储的秘钥将所述参数信息进行加密,将加密后的参数、秘钥序号以及U-key号通过所述U-key接口发送至所述物联网终端;所述物联网终端接收所述加密后的参数、秘钥序号以及U-key号,将所述加密后的参数、秘钥序号以及U-key号发送至所述云平台;所述云平台根据所述秘钥序号取出所述加密中心中预先存储的秘钥对所述加密后的参数进行解密,将明文参数和所述U-key号进行绑定,得到绑定信息保存,并将所述绑定信息发送至所述物联网终端。Optionally, the U-key is also used to obtain parameter information of the IoT terminal through the U-key interface before obtaining the message to be encrypted, and encrypt the parameter information by using a pre-stored secret key, Send the encrypted parameters, the serial number of the secret key and the U-key number to the Internet of Things terminal through the U-key interface; the terminal of the Internet of Things receives the encrypted parameters, the serial number of the secret key and the U-key number , send the encrypted parameters, the secret key serial number and the U-key number to the cloud platform; the cloud platform takes out the secret key pre-stored in the encryption center according to the secret key serial number to the encrypted Decrypt the parameters of the device, bind the plaintext parameters and the U-key number, obtain the binding information and save it, and send the binding information to the Internet of Things terminal.
可选地,所述物联网终端将所述加密后的报文和所述秘钥序号发送至所述云平台时,还将所述绑定信息发送至所述云平台;所述云平台接收所述绑定信息,将所述绑定信息与保存的绑定信息进行验证,验证通过后,根据所述秘钥序号取出所述加密中心中预先存储的秘钥对所述加密后的报文进行解密,得到明文报文。Optionally, when the IoT terminal sends the encrypted message and the key serial number to the cloud platform, it also sends the binding information to the cloud platform; the cloud platform receives For the binding information, verify the binding information and the saved binding information, and after the verification is passed, take out the secret key pre-stored in the encryption center according to the secret key serial number to encrypt the message. Decrypt to get the plaintext message.
可选地,该基于量子技术的物联网通信系统还包括:物联子系统网关,所述物联子系统网关分别连接所述物联网终端和所述云平台,所述物联子系统网关将所述物联网终端输出的所述加密后的报文和所述秘钥序号转发至所述云平台。Optionally, the quantum technology-based IoT communication system further includes: an IoT subsystem gateway, the IoT subsystem gateway connects the IoT terminal and the cloud platform respectively, and the IoT subsystem gateway connects the The encrypted message and the key serial number output by the IoT terminal are forwarded to the cloud platform.
可选地,该基于量子技术的物联网通信系统还包括:网关U-key,所述网关U-key中预先存储有量子随机数发生器生成的秘钥,所述网关U-key通过所述物联子系统网关的U-key接口和所述物联子系统网关连接,所述物联子系统网关接收所述物联网终端输出的所述加密后的报文和所述秘钥序号,根据所述秘钥序号取出所述网关U-key中预先存储的秘钥对所述加密后的报文进行解密,得到明文报文。Optionally, the quantum technology-based Internet of Things communication system further includes: a gateway U-key, in which a secret key generated by a quantum random number generator is pre-stored, and the gateway U-key passes the The U-key interface of the IoT subsystem gateway is connected to the IoT subsystem gateway, and the IoT subsystem gateway receives the encrypted message and the secret key serial number output by the IoT terminal, according to The secret key serial number is extracted from the secret key pre-stored in the gateway U-key to decrypt the encrypted message to obtain a plaintext message.
可选地,该基于量子技术的物联网通信系统还包括:边缘服务器,所述边缘服务器分别连接所述物联网终端和所述云平台,所述边缘服务器将所述物联网终端输出的所述加密后的报文和所述秘钥序号转发至所述云平台。Optionally, the quantum technology-based IoT communication system further includes: an edge server, where the edge server is connected to the IoT terminal and the cloud platform, respectively, and the edge server outputs the The encrypted message and the key serial number are forwarded to the cloud platform.
可选地,该基于量子技术的物联网通信系统还包括:边缘U-key,所述边缘U-key中预先存储有量子随机数发生器生成的秘钥,所述边缘U-key通过所述边缘服务器的U-key接口和所述边缘服务器连接,所述边缘服务器接收所述物联网终端输出的所述加密后的报文和所述秘钥序号,根据所述秘钥序号取出所述边缘U-key中预先存储的秘钥对所述加密后的报文进行解密,得到明文报文。Optionally, the quantum technology-based IoT communication system further includes: an edge U-key, wherein the edge U-key is pre-stored with a secret key generated by a quantum random number generator, and the edge U-key passes the The U-key interface of the edge server is connected to the edge server, the edge server receives the encrypted message and the secret key serial number output by the IoT terminal, and retrieves the edge according to the secret key serial number The encrypted message is decrypted by the secret key pre-stored in the U-key to obtain a plaintext message.
可选地,所述加密中心包括:秘钥生成单元和秘钥存储单元,所述量子随机数发生器设置在秘钥生成单元中,所述U-key和所述秘钥存储单元连接所述秘钥生成单元,获取所述量子随机数发生器生成的秘钥保存,所述U-key和所述秘钥存储单元中保存的秘钥的次序一致。Optionally, the encryption center includes: a secret key generation unit and a secret key storage unit, the quantum random number generator is set in the secret key generation unit, and the U-key and the secret key storage unit are connected to the The secret key generation unit obtains and stores the secret key generated by the quantum random number generator, and the U-key and the secret key stored in the secret key storage unit are in the same order.
可选地,所述加密中心还包括:秘钥管理单元,所述秘钥管理单元用于对所述网关U-key中的秘钥进行管理,使得所述网关U-key中的秘钥和连接所述物联网终端的U-key中的秘钥一致。Optionally, the encryption center further includes: a secret key management unit, the secret key management unit is configured to manage the secret key in the gateway U-key, so that the secret key in the gateway U-key and the The secret keys in the U-key connected to the IoT terminal are the same.
可选地,所述加密中心中的秘钥管理单元还用于对所述边缘U-key中的秘钥进行管理,使得所述边缘U-key中的秘钥和连接所述物联网终端的U-key中的秘钥一致。Optionally, the key management unit in the encryption center is further configured to manage the key in the edge U-key, so that the key in the edge U-key is the same as the one connected to the IoT terminal. The secret key in the U-key is the same.
本申请提供的技术方案,具有如下效果:The technical solution provided by the application has the following effects:
本申请实施例提供的基于量子技术的物联网通信系统,通过设置U-key,并在U-key中预先存储量子随机数发生器生成的秘钥,在物联网终端和云平台进行数据交互时,物联网平台可以和U-key连接,并采用U-key中存储的秘钥进行数据加密,同时,由于云平台中也预先存储了秘钥,因此,发送到云平台的数据可以进行解密得到明文。此外,由于量子的不可窥探性和不可分割性,基于量子生成的随机码是真随机码,用这个随机码作为秘钥,具有理论上的不可破解性,因此,本申请实施例提供的基于量子技术的物联网通信系统,采用量子随机数发生器生成的秘钥进行加解密,可以进一步保证传输数据的安全性,解决了预置密钥和通过短消息下发密钥的方式进行加解密安全性较差的技术问题。In the IoT communication system based on quantum technology provided by the embodiments of this application, by setting a U-key and pre-storing the secret key generated by the quantum random number generator in the U-key, when the IoT terminal and the cloud platform perform data interaction , the IoT platform can be connected to the U-key, and use the secret key stored in the U-key for data encryption. At the same time, since the secret key is also pre-stored in the cloud platform, the data sent to the cloud platform can be decrypted to obtain plaintext. In addition, due to the indissoluble and indivisible nature of quantum, the random code generated based on quantum is a true random code, and using this random code as the secret key is theoretically unbreakable. Therefore, the quantum-based random code provided by the embodiments of this application The technological Internet of Things communication system uses the secret key generated by the quantum random number generator for encryption and decryption, which can further ensure the security of transmitted data, and solves the problem of encryption and decryption security by presetting keys and issuing keys through short messages. Poor technical issues.
附图说明Description of drawings
为了更清楚地说明本申请具体实施方式或现有技术中的技术方案,下面将对具体实施方式或现有技术描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图是本申请的一些实施方式,对于本领域普通技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the specific embodiments of the present application or the technical solutions in the prior art, the accompanying drawings that need to be used in the description of the specific embodiments or the prior art will be briefly introduced below. The drawings are some embodiments of the present application. For those of ordinary skill in the art, other drawings can also be obtained from these drawings without any creative effort.
图1是根据本申请实施例的基于量子技术的物联网通信系统的结构框图;1 is a structural block diagram of a quantum technology-based Internet of Things communication system according to an embodiment of the present application;
图2是根据本申请另一实施例的基于量子技术的物联网通信系统的结构框图;2 is a structural block diagram of a quantum technology-based IoT communication system according to another embodiment of the present application;
图3是根据本申请另一实施例的基于量子技术的物联网通信系统的结构框图。FIG. 3 is a structural block diagram of an IoT communication system based on quantum technology according to another embodiment of the present application.
具体实施方式Detailed ways
下面将结合附图对本申请的技术方案进行清楚、完整地描述,显然,所描述的实施例是本申请一部分实施例,而不是全部的实施例。基于本申请中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都属于本申请保护的范围。The technical solutions of the present application will be clearly and completely described below with reference to the accompanying drawings. Obviously, the described embodiments are part of the embodiments of the present application, but not all of the embodiments. Based on the embodiments in the present application, all other embodiments obtained by those of ordinary skill in the art without creative efforts shall fall within the protection scope of the present application.
在本申请的描述中,需要说明的是,术语“中心”、“上”、“下”、“左”、“右”、“竖直”、“水平”、“内”、“外”等指示的方位或位置关系为基于附图所示的方位或位置关系,仅是为了便于描述本申请和简化描述,而不是指示或暗示所指的装置或元件必须具有特定的方位、以特定的方位构造和操作,因此不能理解为对本申请的限制。此外,术语“第一”、“第二”、“第三”仅用于描述目的,而不能理解为指示或暗示相对重要性。In the description of this application, it should be noted that the terms "center", "upper", "lower", "left", "right", "vertical", "horizontal", "inner", "outer", etc. The indicated orientation or positional relationship is based on the orientation or positional relationship shown in the accompanying drawings, which is only for the convenience of describing the present application and simplifying the description, rather than indicating or implying that the indicated device or element must have a specific orientation or a specific orientation. construction and operation, and therefore should not be construed as limitations on this application. Furthermore, the terms "first", "second", and "third" are used for descriptive purposes only and should not be construed to indicate or imply relative importance.
在本申请的描述中,需要说明的是,除非另有明确的规定和限定,术语“安 装”、“相连”、“连接”应做广义理解,例如,可以是固定连接,也可以是可拆卸连接,或一体地连接;可以是机械连接,也可以是电连接;可以是直接相连,也可以通过中间媒介间接相连,还可以是两个元件内部的连通,可以是无线连接,也可以是有线连接。对于本领域的普通技术人员而言,可以具体情况理解上述术语在本申请中的具体含义。In the description of this application, it should be noted that, unless otherwise expressly specified and limited, the terms "installed", "connected" and "connected" should be understood in a broad sense, for example, it may be a fixed connection or a detachable connection connection, or integral connection; it can be a mechanical connection or an electrical connection; it can be a direct connection or an indirect connection through an intermediate medium, or it can be the internal connection of two components, which can be a wireless connection or a wired connection connect. For those of ordinary skill in the art, the specific meanings of the above terms in this application can be understood in specific situations.
此外,下面所描述的本申请不同实施方式中所涉及的技术特征只要彼此之间未构成冲突就可以相互结合。In addition, the technical features involved in the different embodiments of the present application described below can be combined with each other as long as there is no conflict with each other.
本申请实施例提供一种基于量子技术的物联网通信系统,如图1所示,该基于量子技术的物联网通信系统包括:物联网终端10、U-key20和云平台30,云平台30包括加密中心,U-key20和加密中心中预先存储有量子随机数发生器生成的秘钥,所述U-key20用于通过物联网终端10的U-key20接口获取待加密报文,采用预先存储的秘钥将待加密报文进行加密,将加密后的报文以及秘钥序号通过U-key20接口发送至物联网终端10;物联网终端10接收加密后的报文和秘钥序号,将加密后的报文和秘钥序号发送至云平台30;云平台30根据秘钥序号取出加密中心中预先存储的秘钥对加密后的报文进行解密,得到明文报文。在一具体实施方式中,U-key20接口可以是USB类型的接口,也可以是其他类型的接口,本申请对此不作限定。An embodiment of the present application provides an IoT communication system based on quantum technology. As shown in FIG. 1 , the IoT communication system based on quantum technology includes: an IoT terminal 10, a U-key 20 and a cloud platform 30. The cloud platform 30 includes The encryption center, U-key20 and the encryption center are pre-stored with the secret key generated by the quantum random number generator, and the U-key20 is used to obtain the message to be encrypted through the U-key20 interface of the Internet of Things terminal 10. The secret key encrypts the message to be encrypted, and sends the encrypted message and the secret key serial number to the IoT terminal 10 through the U-key20 interface; the IoT terminal 10 receives the encrypted message and the secret key serial number, The encrypted message and the key serial number are sent to the cloud platform 30; the cloud platform 30 takes out the pre-stored key in the encryption center according to the key serial number and decrypts the encrypted message to obtain a plaintext message. In a specific implementation manner, the U-key20 interface may be a USB type interface, or may be other types of interfaces, which are not limited in this application.
本申请实施例提供的基于量子技术的物联网通信系统,通过设置U-key20,并在U-key20中预先存储量子随机数发生器生成的秘钥,在物联网终端10和云平台30进行数据交互时,物联网平台可以和U-key20连接,并采用U-key20中存储的秘钥进行数据加密,同时,由于云平台30中也预先存储了秘钥,因此,发送到云平台30的数据可以进行解密得到明文。此外,由于量子的不可窥探性和不可分割性,基于量子生成的随机码是真随机码,用这个随机码作为秘钥,具有理论上的不可破解性,因此,本申请实施例提供的基于量子技术的物联网通信系统,采用量子随机数发生器生成的秘钥进行加解密,可以进一步保证传 输数据的安全性,解决了预置密钥和通过短消息下发密钥的方式进行加解密安全性较差的技术问题。In the IoT communication system based on quantum technology provided by the embodiments of the present application, by setting the U-key20 and pre-stored in the U-key20 the secret key generated by the quantum random number generator, data is performed on the IoT terminal 10 and the cloud platform 30. During interaction, the IoT platform can be connected to U-key20, and use the secret key stored in U-key20 for data encryption. At the same time, since the secret key is also pre-stored in cloud platform 30, the data sent to cloud platform 30 It can be decrypted to get the plaintext. In addition, due to the indissoluble and indivisible nature of quantum, the random code generated based on quantum is a true random code, and using this random code as the secret key is theoretically unbreakable. Therefore, the quantum-based random code provided by the embodiments of this application The technological Internet of Things communication system uses the secret key generated by the quantum random number generator for encryption and decryption, which can further ensure the security of transmitted data, and solves the problem of encryption and decryption security by presetting keys and issuing keys through short messages. Poor technical issues.
在一实施例中,如图1所示,当云平台30向物联网终端10发送数据时,也可以采用上述方式,即云平台30先将需要传输的数据采用加密中心预先存储的秘钥进行加密,然后将加密后的数据以及相应的秘钥序号发送至物联网终端10,物联网终端10根据秘钥序号从U-key20中取出相应的秘钥进行解密,得到明文。In one embodiment, as shown in FIG. 1 , when the cloud platform 30 sends data to the IoT terminal 10, the above method can also be used, that is, the cloud platform 30 first uses the secret key pre-stored by the encryption center to perform the data transmission. Encrypt, and then send the encrypted data and the corresponding secret key serial number to the IoT terminal 10, and the IoT terminal 10 extracts the corresponding secret key from the U-key 20 according to the secret key serial number to decrypt to obtain plaintext.
对于一个云平台30,可能会有多个物联网终端10和其进行通信。为了保证U-key20中的秘钥不被探测,可以将一个物联网终端10绑定一个U-key20,即物联网终端10和U-key20一一对应设置。在一实施例中,在物联网终端10和云平台30进行数据传输之前,可以先通过以下过程实现U-key20和物联网终端10的绑定。具体地,U-key20还用于在获取待加密报文之前通过U-key接口获取物联网终端10的参数信息,采用预先存储的秘钥将参数信息进行加密,将加密后的参数、秘钥序号以及U-key号通过U-key接口发送至物联网终端10;物联网终端10接收加密后的参数、秘钥序号以及U-key号,将加密后的参数、秘钥序号以及U-key号发送至云平台30;云平台30根据秘钥序号取出加密中心中预先存储的秘钥对加密后的参数进行解密,将明文参数和U-key号进行绑定,得到绑定信息保存,并将绑定信息发送至物联网终端10。其中,参数信息包括物联网终端10的唯一硬件号和用户号等信息。For a cloud platform 30, there may be multiple IoT terminals 10 to communicate with it. In order to ensure that the secret key in the U-key 20 is not detected, one IoT terminal 10 can be bound to one U-key 20, that is, the IoT terminal 10 and the U-key 20 are set in a one-to-one correspondence. In an embodiment, before the IoT terminal 10 and the cloud platform 30 perform data transmission, the U-key 20 and the IoT terminal 10 may be bound by the following process. Specifically, the U-key 20 is also used to obtain the parameter information of the IoT terminal 10 through the U-key interface before obtaining the message to be encrypted, encrypt the parameter information by using the pre-stored secret key, and encrypt the encrypted parameters and secret keys. The serial number and the U-key number are sent to the IoT terminal 10 through the U-key interface; the IoT terminal 10 receives the encrypted parameters, the secret key serial number and the U-key number, and sends the encrypted parameters, the secret key serial number and the U-key number. The cloud platform 30 takes out the pre-stored secret key in the encryption center according to the secret key serial number, decrypts the encrypted parameters, binds the plaintext parameters and the U-key number, obtains the binding information and saves it. The binding information is sent to the IoT terminal 10 . The parameter information includes information such as the unique hardware number and user number of the IoT terminal 10 .
在一实施例中,在U-key20和物联网终端10的绑定后,物联网终端10可以借助绑定的U-key20和云平台30进行数据传输。具体地,物联网终端10先通过U-key20中的秘钥进行数据加密,将加密后的报文和秘钥序号发送至云平台30时,还将绑定信息发送至云平台30;云平台30接收绑定信息,将绑定信息与保存的绑定信息进行验证,验证通过后,根据秘钥序号取出加密中心中预先存储的秘钥对加密后的报文进行解密,得到明文报文。In one embodiment, after the U-key 20 and the IoT terminal 10 are bound, the IoT terminal 10 can perform data transmission by means of the bound U-key 20 and the cloud platform 30 . Specifically, the IoT terminal 10 first encrypts the data through the secret key in the U-key 20, and when sending the encrypted message and the secret key serial number to the cloud platform 30, it also sends the binding information to the cloud platform 30; the cloud platform 30 Receive the binding information, verify the binding information and the saved binding information, and after the verification is passed, extract the secret key pre-stored in the encryption center according to the secret key serial number to decrypt the encrypted message to obtain a plaintext message.
在一实施例中,加密中心包括:秘钥生成单元和秘钥存储单元,量子随机数发生器设置在秘钥生成单元中,U-key20和秘钥存储单元连接秘钥生成单元,获取量子随机数发生器生成的秘钥保存,U-key20和秘钥存储单元中保存的秘钥的次序一致。在一具体实施方式中,在将U-key20分发到用户和物联网终端10绑定之前,可以将U-key20在加密中心进行秘钥加注,即将秘钥保存在U-key20中,具体地,不同的物联网终端10绑定的U-key20中加注的秘钥可以不同。In one embodiment, the encryption center includes: a secret key generation unit and a secret key storage unit, the quantum random number generator is arranged in the secret key generation unit, and the U-key20 and the secret key storage unit are connected to the secret key generation unit to obtain the quantum random number. The secret key generated by the number generator is stored, and the sequence of U-key20 and the secret key stored in the secret key storage unit is consistent. In a specific embodiment, before the U-key 20 is distributed to the user and the IoT terminal 10 is bound, the U-key 20 can be keyed in the encryption center, that is, the secret key is stored in the U-key 20, specifically , the secret keys added to the U-key 20 bound to different IoT terminals 10 may be different.
在一实施例中,为了保证系统的灵活性和加密等级的要求,在U-key20中进行加密时,可以按照次序取得秘钥,或随机取得秘钥,只要保证U-key20和秘钥存储单元中保存的秘钥的次序一致,在数据传输时将秘钥序号同时进行传输,即可获取准确的秘钥;同时,在加密要求严格的场景下,可支持一次一密,即一个秘钥使用一次后就被丢弃,下一次更换另一个秘钥进行加密。同时,在一次一密的场景下,秘钥池中的秘钥会产生消耗,因此,可以每隔预设时间将加密中心的秘钥组在线更新到U-key20中。In an embodiment, in order to ensure the flexibility of the system and the requirements of the encryption level, when encrypting in the U-key20, the keys can be obtained in order, or the keys can be obtained randomly, as long as the U-key20 and the key storage unit are guaranteed. The order of the keys saved in the data is consistent, and the key serial number can be transmitted at the same time during data transmission to obtain the accurate key; at the same time, in the scenario with strict encryption requirements, it can support one key at a time, that is, the use of one key It is discarded after one time, and the next time it is encrypted with another key. At the same time, in the one-time-one-key scenario, the keys in the key pool will be consumed. Therefore, the key group of the encryption center can be updated online to U-key20 every preset time.
物联网终端10和云平台30之间进行数据传输时,可能还需要其他结构对数据进行转发,使得传输的数据能够顺利发送到云平台30中。因此,在一实施例中,如图2所示,该基于量子技术的物联网通信系统还包括:物联子系统网关40,物联子系统网关40分别连接物联网终端10和云平台30,物联子系统网关40将物联网终端10输出的加密后的报文和秘钥序号转发至云平台30。在一实施例中,除物联子系统网关40之外,该基于量子技术的物联网通信系统还包括:边缘服务器50,边缘服务器50分别连接物联网终端10和所述云平台30,边缘服务器50将物联网终端10输出的加密后的报文和秘钥序号转发至云平台30。During data transmission between the IoT terminal 10 and the cloud platform 30 , other structures may also be required to forward the data, so that the transmitted data can be sent to the cloud platform 30 smoothly. Therefore, in an embodiment, as shown in FIG. 2 , the IoT communication system based on quantum technology further includes: the IoT subsystem gateway 40, and the IoT subsystem gateway 40 is respectively connected to the IoT terminal 10 and the cloud platform 30, The IoT subsystem gateway 40 forwards the encrypted message and the secret key serial number output by the IoT terminal 10 to the cloud platform 30 . In one embodiment, in addition to the IoT subsystem gateway 40, the IoT communication system based on quantum technology further includes: an edge server 50, the edge server 50 is respectively connected to the IoT terminal 10 and the cloud platform 30, and the edge server 50 forwards the encrypted message and the key serial number output by the IoT terminal 10 to the cloud platform 30 .
需要说明的是,物联子系统网关40和边缘服务器50可以根据实际需要均设置在该通信系统中,此时,在进行数据传输时,物联网终端10输出的数据可 以先通过物联子系统网关40转发,再通过边缘服务器50转发至云平台30中。此外,也可以根据实际需要只设置物联子系统网关40或边缘服务器50。需要进一步说明的是,物联子系统网关40或边缘服务器50在进行数据传输时,只能够对数据进行转发而不具备数据的解密功能。It should be noted that the IoT subsystem gateway 40 and the edge server 50 can be set in the communication system according to actual needs. At this time, during data transmission, the data output by the IoT terminal 10 can first pass through the IoT subsystem. The gateway 40 forwards it, and then forwards it to the cloud platform 30 through the edge server 50 . In addition, only the IoT subsystem gateway 40 or the edge server 50 may be set according to actual needs. It should be further noted that, when the IoT subsystem gateway 40 or the edge server 50 is performing data transmission, it can only forward the data and does not have the function of decrypting the data.
为了使得物联子系统网关40在转发数据的通过能够实现数据解密,如图3所示,在一实施例中,该基于量子技术的物联网通信系统还包括:网关U-key41,网关U-key41中预先存储有量子随机数发生器生成的秘钥,网关U-key41通过物联子系统网关40的U-key接口和物联子系统网关40连接,物联子系统网关40接收物联网终端10输出的加密后的报文和秘钥序号,根据秘钥序号取出网关U-key41中预先存储的秘钥对加密后的报文进行解密,得到明文报文。在一具体实施方式中,不同的物联网终端10可能会通过不同的物联子系统网关40和云平台30进行通信,因此,网关U-key41在加密中心进行秘钥加注时,可以只保存其对应连接的物联网终端10绑定的U-key中保存的秘钥。具体地,可以在加密中心设置秘钥管理单元,秘钥管理单元用于对网关U-key41中的秘钥进行管理,使得网关U-key41中的秘钥和连接物联网终端10的U-key中的秘钥一致。In order to enable the IoT subsystem gateway 40 to realize data decryption when forwarding data, as shown in FIG. 3, in an embodiment, the IoT communication system based on quantum technology further includes: a gateway U-key41, a gateway U-key The secret key generated by the quantum random number generator is pre-stored in the key41, the gateway U-key41 is connected to the IoT subsystem gateway 40 through the U-key interface of the IoT subsystem gateway 40, and the IoT subsystem gateway 40 receives the IoT terminal 10. The encrypted message and the key serial number are output, and according to the key serial number, the key pre-stored in the gateway U-key 41 is taken out, and the encrypted message is decrypted to obtain a plaintext message. In a specific embodiment, different IoT terminals 10 may communicate with the cloud platform 30 through different IoT subsystem gateways 40. Therefore, when the gateway U-key 41 adds the secret key in the encryption center, it can only save the It corresponds to the secret key saved in the U-key bound to the connected IoT terminal 10 . Specifically, a secret key management unit may be set in the encryption center, and the secret key management unit is used to manage the secret key in the gateway U-key41, so that the secret key in the gateway U-key41 and the U-key connected to the IoT terminal 10 The keys are the same.
此外,为了使得边缘服务器50在转发数据的通过能够实现数据解密,在一实施例中,如图3所示,该基于量子技术的物联网通信系统还包括:边缘U-key51,边缘U-key51中预先存储有量子随机数发生器生成的秘钥,边缘U-key51通过边缘服务器50的U-key接口和边缘服务器50连接,边缘服务器50接收物联网终端10输出的加密后的报文和秘钥序号,根据秘钥序号取出边缘U-key51中预先存储的秘钥对加密后的报文进行解密,得到明文报文。与物联子系统网关40相同,加密中心中的秘钥管理单元也可以对边缘U-key51中的秘钥进行管理,使得边缘U-key51中的秘钥和连接物联网终端10的U-key中的秘钥一致。具体地,秘钥管理单元可以使网关U-key41在加密中心进行秘钥加注时,可以 只保存其对应连接的物联网终端10绑定的U-key中保存的秘钥。In addition, in order to enable the edge server 50 to realize data decryption when forwarding data, in an embodiment, as shown in FIG. 3 , the IoT communication system based on quantum technology further includes: edge U-key51, edge U-key51 The secret key generated by the quantum random number generator is stored in advance, and the edge U-key 51 is connected to the edge server 50 through the U-key interface of the edge server 50, and the edge server 50 receives the encrypted message and secret output from the IoT terminal 10. The key sequence number, according to the key sequence number, take out the pre-stored key in the edge U-key51 to decrypt the encrypted message, and obtain the plaintext message. Like the IoT subsystem gateway 40, the key management unit in the encryption center can also manage the secret key in the edge U-key51, so that the secret key in the edge U-key51 and the U-key connected to the IoT terminal 10 The keys are the same. Specifically, the key management unit can make the gateway U-key 41 only save the key saved in the U-key bound to the corresponding connected IoT terminal 10 when the gateway U-key 41 performs key addition in the encryption center.
在一实施例中,由于设置了网关U-key41和边缘U-key51,物联网终端10与物联网子系统网关或物联网终端10与边缘服务器50的安全对话就不用经过加密中心了。此外,对于非典型的物联互联,例如物联网终端10与边缘服务器50之间的数据传输,或物联网终端10直接与物联子系统网关40连接,以及设置多层物联子系统网关40或多层边缘服务器50的情形,都可以采用本申请实施例提供的通信系统中的通信方式进行传输。In one embodiment, since the gateway U-key 41 and the edge U-key 51 are set, the secure dialogue between the IoT terminal 10 and the IoT subsystem gateway or the IoT terminal 10 and the edge server 50 does not need to go through the encryption center. In addition, for atypical IoT interconnection, such as data transmission between the IoT terminal 10 and the edge server 50, or the IoT terminal 10 is directly connected with the IoT subsystem gateway 40, and the multi-layer IoT subsystem gateway 40 is set Or in the case of the multi-layer edge server 50, the communication mode in the communication system provided in the embodiment of the present application may be used for transmission.
本说明书中各个实施例采用递进的方式描述,每个实施例重点说明的都是与其他实施例的不同之处,各个实施例之间相同相似部分互相参见即可。所属领域的技术人员可以清楚地了解到,为描述的方便和简洁,上述描述的系统,装置和单元的具体工作过程,可以参考前述方法实施例中的对应过程,在此不再赘述。The various embodiments in this specification are described in a progressive manner, and each embodiment focuses on the differences from other embodiments, and the same and similar parts between the various embodiments can be referred to each other. Those skilled in the art can clearly understand that, for the convenience and brevity of description, the specific working process of the system, device and unit described above may refer to the corresponding process in the foregoing method embodiments, which will not be repeated here.
在本申请所提供的几个实施例中,应该理解到,所揭露的系统,装置和方法,可以通过其它的方式实现。例如,以上所描述的装置实施例仅仅是示意性的,例如,所述单元的划分,仅仅为一种逻辑功能划分,实际实现时可以有另外的划分方式,例如多个单元或组件可以结合或者可以集成到另一个系统,或一些特征可以忽略,或不执行。另一点,所显示或讨论的相互之间的耦合或直接耦合或通信连接可以是通过一些接口,装置或单元的间接耦合或通信连接,可以是电性,机械或其它的形式。In the several embodiments provided in this application, it should be understood that the disclosed system, apparatus and method may be implemented in other manners. For example, the apparatus embodiments described above are only illustrative. For example, the division of the units is only a logical function division. In actual implementation, there may be other division methods. For example, multiple units or components may be combined or Can be integrated into another system, or some features can be ignored, or not implemented. On the other hand, the shown or discussed mutual coupling or direct coupling or communication connection may be through some interfaces, indirect coupling or communication connection of devices or units, and may be in electrical, mechanical or other forms.
所述作为分离部件说明的单元可以是或者也可以不是物理上分开的,作为单元显示的部件可以是或者也可以不是物理单元。可以根据实际的需要选择其中的部分或者全部单元来实现本实施例方案的目的。The units described as separate components may or may not be physically separated, and components shown as units may or may not be physical units. Some or all of the units may be selected according to actual needs to achieve the purpose of the solution in this embodiment.
另外,在本申请各个实施例中的各功能单元可以集成在一个处理单元中,也可以是各个单元单独物理存在,也可以两个或两个以上单元集成在一个单元 中。上述集成的单元既可以采用硬件的形式实现,也可以采用软件功能单元的形式实现。In addition, each functional unit in each embodiment of the present application may be integrated into one processing unit, or each unit may exist physically alone, or two or more units may be integrated into one unit. The above-mentioned integrated units may be implemented in the form of hardware, or may be implemented in the form of software functional units.
所述集成的单元如果以软件功能单元的形式实现并作为独立的产品销售或使用时,可以存储在一个计算机可读取存储介质中。基于这样的理解,本申请的技术方案本质上或者说对现有技术做出贡献的部分或者该技术方案的全部或部分可以以软件产品的形式体现出来,该计算机软件产品存储在一个存储介质中,包括若干指令用以使得一台计算机设备(可以是个人计算机,服务器,或者网络设备等)执行本申请各个实施例所述方法的全部或部分步骤。而前述的存储介质包括:U盘、移动硬盘、只读存储器(ROM,Read-Only Memory)、随机存取存储器(RAM,Random Access Memory)、磁碟或者光盘等各种可以存储程序代码的介质。The integrated unit, if implemented in the form of a software functional unit and sold or used as an independent product, may be stored in a computer-readable storage medium. Based on this understanding, the technical solutions of the present application can be embodied in the form of software products in essence, or the parts that contribute to the prior art, or all or part of the technical solutions, and the computer software products are stored in a storage medium , including several instructions for causing a computer device (which may be a personal computer, a server, or a network device, etc.) to execute all or part of the steps of the methods described in the various embodiments of the present application. The aforementioned storage medium includes: U disk, mobile hard disk, Read-Only Memory (ROM, Read-Only Memory), Random Access Memory (RAM, Random Access Memory), magnetic disk or optical disk and other media that can store program codes .
综上所述,以上实施例仅用以说明本申请的技术方案,而非对其限制;尽管参照前述实施例对本申请进行了详细的说明,本领域的普通技术人员应当理解:其依然可以对前述各实施例所记载的技术方案进行修改,或者对其中部分技术特征进行等同替换;而这些修改或者替换,并不使相应技术方案的本质脱离本申请各实施例技术方案的精神和范围。To sum up, the above embodiments are only used to illustrate the technical solutions of the present application, but not to limit them; although the present application has been described in detail with reference to the foregoing embodiments, those of ordinary skill in the art should understand that it can still The technical solutions described in the foregoing embodiments are modified, or some technical features thereof are equivalently replaced; and these modifications or replacements do not make the essence of the corresponding technical solutions deviate from the spirit and scope of the technical solutions in the embodiments of the present application.

Claims (10)

  1. 一种基于量子技术的物联网通信系统,其特征在于,包括:物联网终端、U-key和云平台,An Internet of Things communication system based on quantum technology, characterized in that it includes: Internet of Things terminal, U-key and cloud platform,
    所述云平台包括加密中心,所述U-key和所述加密中心中预先存储有量子随机数发生器生成的秘钥,所述U-key用于通过所述物联网终端的U-key接口获取待加密报文,采用预先存储的秘钥将待加密报文进行加密,将加密后的报文以及秘钥序号通过所述U-key接口发送至所述物联网终端;The cloud platform includes an encryption center, and the U-key and the encryption center are pre-stored with a secret key generated by a quantum random number generator, and the U-key is used to pass the U-key interface of the Internet of Things terminal. Obtaining the message to be encrypted, encrypting the message to be encrypted by using a pre-stored secret key, and sending the encrypted message and the serial number of the secret key to the Internet of Things terminal through the U-key interface;
    所述物联网终端接收所述加密后的报文和所述秘钥序号,将所述加密后的报文和所述秘钥序号发送至所述云平台;The IoT terminal receives the encrypted message and the secret key serial number, and sends the encrypted message and the secret key serial number to the cloud platform;
    所述云平台根据所述秘钥序号取出所述加密中心中预先存储的秘钥对所述加密后的报文进行解密,得到明文报文。The cloud platform takes out the secret key pre-stored in the encryption center according to the secret key serial number, and decrypts the encrypted message to obtain a plaintext message.
  2. 根据权利要求1所述的基于量子技术的物联网通信系统,其特征在于,所述U-key还用于在获取待加密报文之前通过所述U-key接口获取所述物联网终端的参数信息,采用预先存储的秘钥将所述参数信息进行加密,将加密后的参数、秘钥序号以及U-key号通过所述U-key接口发送至所述物联网终端;The Internet of Things communication system based on quantum technology according to claim 1, wherein the U-key is further used to obtain parameters of the Internet of Things terminal through the U-key interface before obtaining the to-be-encrypted message information, using a pre-stored secret key to encrypt the parameter information, and sending the encrypted parameter, secret key serial number and U-key number to the Internet of Things terminal through the U-key interface;
    所述物联网终端接收所述加密后的参数、秘钥序号以及U-key号,将所述加密后的参数、秘钥序号以及U-key号发送至所述云平台;The IoT terminal receives the encrypted parameters, the secret key serial number and the U-key number, and sends the encrypted parameters, the secret key serial number and the U-key number to the cloud platform;
    所述云平台根据所述秘钥序号取出所述加密中心中预先存储的秘钥对所述加密后的参数进行解密,将明文参数和所述U-key号进行绑定,得到绑定信息保存,并将所述绑定信息发送至所述物联网终端。The cloud platform takes out the secret key pre-stored in the encryption center according to the secret key serial number, decrypts the encrypted parameter, binds the plaintext parameter and the U-key number, and obtains the binding information for storage. , and send the binding information to the IoT terminal.
  3. 根据权利要求2所述的基于量子技术的物联网通信系统,其特征在于,The Internet of Things communication system based on quantum technology according to claim 2, wherein,
    所述物联网终端将所述加密后的报文和所述秘钥序号发送至所述云平台时, 还将所述绑定信息发送至所述云平台;When the IoT terminal sends the encrypted message and the secret key serial number to the cloud platform, it also sends the binding information to the cloud platform;
    所述云平台接收所述绑定信息,将所述绑定信息与保存的绑定信息进行验证,验证通过后,根据所述秘钥序号取出所述加密中心中预先存储的秘钥对所述加密后的报文进行解密,得到明文报文。The cloud platform receives the binding information, verifies the binding information and the saved binding information, and after the verification is passed, retrieves the secret key pair that is pre-stored in the encryption center according to the secret key serial number. The encrypted message is decrypted to obtain a plaintext message.
  4. 根据权利要求1所述的基于量子技术的物联网通信系统,其特征在于,还包括:物联子系统网关,所述物联子系统网关分别连接所述物联网终端和所述云平台,The IoT communication system based on quantum technology according to claim 1, further comprising: an IoT subsystem gateway, wherein the IoT subsystem gateway is respectively connected to the IoT terminal and the cloud platform,
    所述物联子系统网关将所述物联网终端输出的所述加密后的报文和所述秘钥序号转发至所述云平台。The IoT subsystem gateway forwards the encrypted message and the secret key serial number output by the IoT terminal to the cloud platform.
  5. 根据权利要求4所述的基于量子技术的物联网通信系统,其特征在于,还包括:网关U-key,所述网关U-key中预先存储有量子随机数发生器生成的秘钥,所述网关U-key通过所述物联子系统网关的U-key接口和所述物联子系统网关连接,The Internet of Things communication system based on quantum technology according to claim 4, further comprising: a gateway U-key, wherein the gateway U-key is pre-stored with a secret key generated by a quantum random number generator, the The gateway U-key is connected to the IoT subsystem gateway through the U-key interface of the IoT subsystem gateway,
    所述物联子系统网关接收所述物联网终端输出的所述加密后的报文和所述秘钥序号,根据所述秘钥序号取出所述网关U-key中预先存储的秘钥对所述加密后的报文进行解密,得到明文报文。The IoT subsystem gateway receives the encrypted message and the secret key serial number output by the IoT terminal, and retrieves the secret key pair pre-stored in the gateway U-key according to the secret key serial number. The encrypted message is decrypted to obtain a plaintext message.
  6. 根据权利要求5所述的基于量子技术的物联网通信系统,其特征在于,还包括:边缘服务器,所述边缘服务器分别连接所述物联网终端和所述云平台,The IoT communication system based on quantum technology according to claim 5, further comprising: an edge server, wherein the edge server is respectively connected to the IoT terminal and the cloud platform,
    所述边缘服务器将所述物联网终端输出的所述加密后的报文和所述秘钥序号转发至所述云平台。The edge server forwards the encrypted message and the secret key serial number output by the IoT terminal to the cloud platform.
  7. 根据权利要求6所述的基于量子技术的物联网通信系统,其特征在于,还包括:边缘U-key,所述边缘U-key中预先存储有量子随机数发生器生成的秘钥,所述边缘U-key通过所述边缘服务器的U-key接口和所述边缘服务器连 接,The Internet of Things communication system based on quantum technology according to claim 6, further comprising: an edge U-key, wherein the edge U-key is pre-stored with a secret key generated by a quantum random number generator, and the edge U-key is stored in advance. The edge U-key is connected to the edge server through the U-key interface of the edge server,
    所述边缘服务器接收所述物联网终端输出的所述加密后的报文和所述秘钥序号,根据所述秘钥序号取出所述边缘U-key中预先存储的秘钥对所述加密后的报文进行解密,得到明文报文。The edge server receives the encrypted message and the secret key serial number output by the IoT terminal, and retrieves the encrypted key from the edge U-key according to the secret key serial number. The message is decrypted to obtain the plaintext message.
  8. 根据权利要求1所述的基于量子技术的物联网通信系统,其特征在于,所述加密中心包括:秘钥生成单元和秘钥存储单元,所述量子随机数发生器设置在秘钥生成单元中,所述U-key和所述秘钥存储单元连接所述秘钥生成单元,获取所述量子随机数发生器生成的秘钥保存,所述U-key和所述秘钥存储单元中保存的秘钥的次序一致。The Internet of Things communication system based on quantum technology according to claim 1, wherein the encryption center comprises: a secret key generation unit and a secret key storage unit, and the quantum random number generator is arranged in the secret key generation unit , the U-key and the secret key storage unit are connected to the secret key generation unit, and the secret key generated by the quantum random number generator is obtained and stored, and the U-key and the secret key stored in the secret key storage unit are stored. The keys are in the same order.
  9. 根据权利要求7所述的基于量子技术的物联网通信系统,其特征在于,所述加密中心还包括:秘钥管理单元,所述秘钥管理单元用于对所述网关U-key中的秘钥进行管理,使得所述网关U-key中的秘钥和连接所述物联网终端的U-key中的秘钥一致。The Internet of Things communication system based on quantum technology according to claim 7, wherein the encryption center further comprises: a secret key management unit, the secret key management unit is used to monitor the secret key in the U-key of the gateway. The key is managed so that the secret key in the U-key of the gateway is consistent with the secret key in the U-key connected to the IoT terminal.
  10. 根据权利要求9所述的基于量子技术的物联网通信系统,其特征在于,所述加密中心中的秘钥管理单元还用于对所述边缘U-key中的秘钥进行管理,使得所述边缘U-key中的秘钥和连接所述物联网终端的U-key中的秘钥一致。The Internet of Things communication system based on quantum technology according to claim 9, wherein the key management unit in the encryption center is further configured to manage the key in the edge U-key, so that the The secret key in the edge U-key is the same as the secret key in the U-key connected to the IoT terminal.
PCT/CN2021/142718 2021-03-24 2021-12-29 Internet-of-things communication system based on quantum technology WO2022199186A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN202110317558.2A CN112804059A (en) 2021-03-24 2021-03-24 Internet of things communication system based on quantum technology
CN202110317558.2 2021-03-24

Publications (1)

Publication Number Publication Date
WO2022199186A1 true WO2022199186A1 (en) 2022-09-29

Family

ID=75815770

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2021/142718 WO2022199186A1 (en) 2021-03-24 2021-12-29 Internet-of-things communication system based on quantum technology

Country Status (2)

Country Link
CN (1) CN112804059A (en)
WO (1) WO2022199186A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN117119449A (en) * 2023-10-20 2023-11-24 长江量子(武汉)科技有限公司 Vehicle cloud safety communication method and system
CN117544308A (en) * 2024-01-09 2024-02-09 广东广宇科技发展有限公司 Quantum key-based data transmission verification method

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112804059A (en) * 2021-03-24 2021-05-14 上海企树网络科技有限公司 Internet of things communication system based on quantum technology
CN113708929B (en) * 2021-08-26 2022-07-01 东南大学 Method for regularly pushing quantum key by edge gateway of Internet of things
CN113922956A (en) * 2021-10-09 2022-01-11 天翼物联科技有限公司 Quantum key based Internet of things data interaction method, system, device and medium
CN114448629A (en) * 2022-03-25 2022-05-06 中国电信股份有限公司 Identity authentication method and device, storage medium and electronic equipment
CN116318689B (en) * 2023-05-25 2023-07-28 天津市城市规划设计研究总院有限公司 Method and system for improving information transmission safety of Internet of things equipment by utilizing quantum key

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
RU2695487C1 (en) * 2018-09-26 2019-07-23 Олег Дмитриевич Гурин Method and system for interaction of devices of the internet of things (iot)
CN110190952A (en) * 2019-05-09 2019-08-30 浙江神州量子通信技术有限公司 It is a kind of based on quantum random number to the encrypted transmission method of Internet of Things safety
US20200259647A1 (en) * 2019-02-12 2020-08-13 Nxm Labs Canada Inc. Quantum-augmentable hybrid encryption system and method
CN112543189A (en) * 2020-11-27 2021-03-23 北京中电飞华通信有限公司 Data secure transmission method and system
CN112804059A (en) * 2021-03-24 2021-05-14 上海企树网络科技有限公司 Internet of things communication system based on quantum technology

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109150835B (en) * 2018-07-20 2021-05-04 国科量子通信网络有限公司 Cloud data access method, device, equipment and computer readable storage medium

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
RU2695487C1 (en) * 2018-09-26 2019-07-23 Олег Дмитриевич Гурин Method and system for interaction of devices of the internet of things (iot)
US20200259647A1 (en) * 2019-02-12 2020-08-13 Nxm Labs Canada Inc. Quantum-augmentable hybrid encryption system and method
CN110190952A (en) * 2019-05-09 2019-08-30 浙江神州量子通信技术有限公司 It is a kind of based on quantum random number to the encrypted transmission method of Internet of Things safety
CN112543189A (en) * 2020-11-27 2021-03-23 北京中电飞华通信有限公司 Data secure transmission method and system
CN112804059A (en) * 2021-03-24 2021-05-14 上海企树网络科技有限公司 Internet of things communication system based on quantum technology

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN117119449A (en) * 2023-10-20 2023-11-24 长江量子(武汉)科技有限公司 Vehicle cloud safety communication method and system
CN117119449B (en) * 2023-10-20 2024-01-19 长江量子(武汉)科技有限公司 Vehicle cloud safety communication method and system
CN117544308A (en) * 2024-01-09 2024-02-09 广东广宇科技发展有限公司 Quantum key-based data transmission verification method
CN117544308B (en) * 2024-01-09 2024-04-19 广东广宇科技发展有限公司 Quantum key-based data transmission verification method

Also Published As

Publication number Publication date
CN112804059A (en) 2021-05-14

Similar Documents

Publication Publication Date Title
WO2022199186A1 (en) Internet-of-things communication system based on quantum technology
CN107005413B (en) Efficient initiation of secure connections and related services
US8761401B2 (en) System and method for secure key distribution to manufactured products
CN101340443B (en) Session key negotiating method, system and server in communication network
CN105684344B (en) A kind of cipher key configuration method and apparatus
US20160269176A1 (en) Key Configuration Method, System, and Apparatus
US11736304B2 (en) Secure authentication of remote equipment
CN102916869B (en) Instant messaging method and system
CN105993146A (en) Secure session capability using public-key cryptography without access to the private key
CN106790037B (en) User mode encrypted instant messaging method and system
CA3178204A1 (en) Secure messaging between cryptographic hardware modules
CN110635901B (en) Local Bluetooth dynamic authentication method and system for Internet of things equipment
CN112400299B (en) Data interaction method and related equipment
CN109309910A (en) Communication data transmission method, system, equipment and computer readable storage medium
CN104767766A (en) Web Service interface verification method, Web Service server and client side
CN116886288A (en) Quantum session key distribution method and device
CN105634720A (en) Cryptographic security profiles
CN109962924B (en) Group chat construction method, group message sending method, group message receiving method and system
EP4068683A1 (en) Communication method, and related product
TW202231014A (en) Message transmitting system, user device and hardware security module for use therein
CN110166460B (en) Service account registration method and device, storage medium and electronic device
WO2020151010A1 (en) Movable platform communication method, device and system, and storage medium
CN109474667B (en) Unmanned aerial vehicle communication method based on TCP and UDP
WO2013163861A1 (en) Method, device and system for proxy transformation
WO2022042137A1 (en) Data transmission method and apparatus, device, and storage medium

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 21932793

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 21932793

Country of ref document: EP

Kind code of ref document: A1