CN107508671A - Service communication method and device based on quantum key distribution - Google Patents

Service communication method and device based on quantum key distribution Download PDF

Info

Publication number
CN107508671A
CN107508671A CN201710712132.0A CN201710712132A CN107508671A CN 107508671 A CN107508671 A CN 107508671A CN 201710712132 A CN201710712132 A CN 201710712132A CN 107508671 A CN107508671 A CN 107508671A
Authority
CN
China
Prior art keywords
quantum key
business
path
node
surplus
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201710712132.0A
Other languages
Chinese (zh)
Other versions
CN107508671B (en
Inventor
赵永利
曹原
高冠军
郁小松
张会彬
张�杰
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing University of Posts and Telecommunications
Original Assignee
Beijing University of Posts and Telecommunications
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing University of Posts and Telecommunications filed Critical Beijing University of Posts and Telecommunications
Priority to CN201710712132.0A priority Critical patent/CN107508671B/en
Publication of CN107508671A publication Critical patent/CN107508671A/en
Application granted granted Critical
Publication of CN107508671B publication Critical patent/CN107508671B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/12Shortest path evaluation
    • H04L45/121Shortest path evaluation by minimising delays
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0852Quantum cryptography

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • Electromagnetism (AREA)
  • Theoretical Computer Science (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The present invention provides a kind of service communication method and device based on quantum key distribution.This method includes:Step 1, corresponded to based on business and the quantum key demand of quantum key surplus and the business in quantum key pond is possible in transmission path between source node and destination node, obtain the optimal transmission paths of the business;Step 2, the quantum key provided based on the quantum key pond between two nodes adjacent successively in the optimal transmission paths, the business realizing is from the source node to the communication of the destination node.The invention enables two nodes corresponding to each quantum key pond of the business of participation transmission at a distance of nearer, the supplement for shortening quantum key takes, so that the quantum key in quantum key pond can be augmented in time, avoid the more quantum key pond of bearer traffic or the larger business of quantum key demand corresponding to quantum key pond quantum key deficiency cause communication delay and obstruction.

Description

Service communication method and device based on quantum key distribution
Technical field
The present invention relates to field of information security technology, leads to more particularly, to a kind of business based on quantum key distribution Believe method and device.
Background technology
Quantum key distribution (Quantum Key Distribution, QKD) technology based on principle of quantum mechanics is one Kind is configured to the quantum key that communicating pair distributes quantum key resource using the QKD terminals and QKD links of communicating pair deployment Pond (Quantum Key Pool, QKP) for the secure communication of sensitive data technology.Fig. 1 is to utilize one in the prior art The schematic diagram in a quantum key pond is built the QKD terminals data communication node and QKD links.Wherein, QKD links include Quantum channel and classical channel;Quantum key pond be used to store consult between QKD terminals caused by quantum key, and be network section Data communication terminal distribution quantum key, realizes the safe and secret communication of Network corresponding to point both sides.
Fig. 2 is secure communication network architectural framework of the prior art based on quantum key distribution.The framework wraps from bottom to top Include QKD layers and data Layer.QKD layers include being positioned over the QKD terminals at each node and connect the QKD links of QKD terminals, each pair Quantum key caused by consulting between QKD terminals is stored in a quantum key pond;Data Layer includes being positioned over each node The data communication terminal at place and the data link for connecting data communication terminal, the business peace between each pair data communication terminal Full communication distributes quantum key by the quantum key pond of corresponding service source destination node for it, then completes data encryption and data pass It is defeated.Understand, service communication process can constantly consume the quantum key in quantum key pond.Generally, when in some quantum key pond Quantum key amount when being less than default quantum key amount minimum value, two QKD terminals corresponding to quantum key pond can be to quantum Pool of keys carries out quantum key supplement.Specifically, QKD terminals corresponding to the quantum key pond are connected using QKD links and augmented Quantum key, until quantum key amount reaches default quantum key amount maximum.
But on the one hand, QKD technical merits and appointed condition are limited at this stage, and the supplement speed of quantum key resource is relatively low, When two nodes are apart from each other corresponding to quantum key pond, the supplement used time of quantum key resource is longer.On the other hand, due to Transmit the industry of different nodes and link carryings in quantum key amount difference and the network needed for the business encryption of different pieces of information amount Quantity of being engaged in is different, the quantum key surplus skewness weighing apparatus in multiple quantum key ponds in network.For these reasons, hold Easily measure in quantum key pond corresponding to carrying the more quantum key pond of portfolio or the larger business of quantum key demand Sub-key deficiency.And quantum key deficiency can cause the time delay of service security communication and blocking rate to increase in quantum key pond Add, and have a strong impact on the performance of network.
The content of the invention
The present invention provides a kind of service communication method and device based on quantum key distribution, to overcome in the prior art, Quantum key pond corresponding to the more quantum key pond of bearer traffic or the larger business of quantum key demand easily occurs The time delay and blocking rate that quantum key is insufficient and causes service security to communicate greatly increase, have a strong impact on the problem of network performance.
According to the first aspect of the invention, there is provided a kind of service communication method based on quantum key distribution, this method bag Include:Step 1, corresponded to based on business and quantum key in quantum key pond is possible in transmission path between source node and destination node The quantum key demand of surplus and the business, obtain the optimal transmission paths of the business;Step 2, based on it is described most The quantum key that quantum key pond between two nodes adjacent successively provides in good transmission path, the business realizing is from described Source node to the destination node communication.
With reference to the first possible implementation of first aspect present invention, in second of possible implementation, the step Rapid 1 specifically includes:Step 11, based on corresponding to business between source node, destination node and the source node and the destination node Intermediate node, obtain the business is possible to transmission path;Step 12, included based on the be possible to transmission path The number of intermediate node, obtain the preferably possible transmission path of the business;Step 13, the quantum key based on the business needs The quantum key surplus in quantum key pond in the amount of asking and the preferably possible transmission path, obtain the best transmission of the business Path.
With reference to the first of first aspect present invention or second may implementation, in the third possible implementation, The step 2 specifically includes:Using the source node as present node, along biography of the business in the optimal transmission paths Defeated direction, the quantum provided based on the current quantum key pond between the present node and next node adjacent thereto are close Key, the business is encrypted in the present node;Business after encryption is transmitted to the next node;Based on described The quantum key that current quantum key pond provides, the business is decrypted in the next node;By the next node As present node, said process is repeated, until the next node is destination node.
With reference to second of possible implementation of first aspect present invention, in the 4th kind of possible implementation, the step Rapid 12 specifically include:Obtain the be possible to transmission path and include intermediate node number less than present count destination path as institute State the preferably possible transmission path of business.
With reference to second or the 4th kind of possible implementation of first aspect present invention, in the 5th kind of possible implementation, The step 13 specifically includes:Step 131, the quantum key demand based on the business and the preferably possible transmission path Quantum key surplus in upper quantum key pond, obtain communication smoothly path;Step 132, based on the smoothly road that communicates On footpath in quantum key pond quantum key surplus variance, obtain the optimal transmission paths of the business.
With reference to the 5th kind of possible implementation of first aspect present invention, in the 6th kind of possible implementation, the step Rapid 131 specifically include:The quantum key surplus for obtaining quantum key pond in the preferably possible transmission path is all higher than being equal to The path of the business quantum key demand is as the smoothly path that communicates.
With reference to the 5th kind of possible implementation of first aspect present invention, in the 7th kind of possible implementation, the step Rapid 132 specifically include:If judge know it is described communication smoothly on path in quantum key pond quantum key surplus variance More than variance threshold values, based on the smoothly minimum quantum key surplus on path Zhong Ge paths that communicates, the industry is obtained The optimal transmission paths of business;If judge know it is described communication smoothly on path in quantum key pond quantum key surplus side Difference is less than or equal to the variance threshold values, communicates smoothly that quantum key surplus is averaged on path Zhong Ge paths based on described Value, obtain the optimal transmission paths of the business.
With reference to the 7th kind of possible implementation of first aspect present invention, in the 8th kind of possible implementation, the base In the communication smoothly minimum quantum key surplus on path Zhong Ge paths, the optimal transmission paths of the business are obtained Specifically include:Obtain the minimum quantum key surplus in every communication smoothly path;Obtain the minimum quantum key Path is as optimal transmission paths corresponding to maximum quantum key surplus in surplus.
With reference to the 7th kind of possible implementation of first aspect present invention, in the 9th kind of possible implementation, the base In the communication smoothly on path Zhong Ge paths quantum key surplus average value, obtain the best transmission road of the business Footpath specifically includes:Obtaining in the smoothly path that communicates has the path of maximum quantum key surplus average value as optimal Transmission path.
According to the second aspect of the invention, there is provided a kind of service communication square law device based on quantum key distribution, the dress Put including:Optimal transmission paths acquisition module and communication module;The optimal transmission paths acquisition module, for based on business pair Answer and quantum key surplus and the business in quantum key pond are possible in transmission path between source node and destination node Quantum key demand, obtain the optimal transmission paths of the business;The communication module, for based on the best transmission road The quantum key that quantum key pond between two nodes adjacent successively provides on footpath, the business realizing from the source node to The communication of the destination node.
Service communication method and device proposed by the present invention based on quantum key distribution, by based on business corresponding source section It is close that the quantum of quantum key surplus and the business in quantum key pond is possible in transmission path between point and destination node Key demand, the optimal transmission paths of the business are obtained, based on two nodes adjacent successively in the optimal transmission paths Between quantum key pond provide quantum key, the business realizing is from the source node to the communication of the destination node.This hair The method of bright proposition causes two nodes corresponding to each quantum key pond of participation business transmission at a distance of relatively closely, to shorten quantum The supplement of key takes, so that the quantum key in quantum key pond can be augmented in time, avoids bearer traffic Quantum key pond quantum key deficiency corresponding to the larger business in more quantum key pond or quantum key demand causes to lead to Believe time delay and obstruction.Further it is proposed that method cause quantum key consumption phase in each quantum key pond of whole network When ensure that the equiblibrium mass distribution of quantum key surplus in each quantum key pond of whole network so that network performance is more stable.
Brief description of the drawings
Fig. 1 is close using the QKD terminals between a pair of data communication nodes and QKD links one quantum of structure in the prior art The schematic diagram in key pond;
Fig. 2 is secure communication network architectural framework of the prior art based on quantum key distribution;
Fig. 3 is the service communication method flow diagram based on quantum key distribution according to the embodiment of the present invention;
Fig. 4 is the network diagram with 4 nodes according to the embodiment of the present invention;
Fig. 5 is the traffic communicator schematic diagram based on quantum key distribution according to the embodiment of the present invention.
Embodiment
With reference to the accompanying drawings and examples, the embodiment of the present invention is described in further detail.Implement below Example is used to illustrate the present invention, but is not limited to the scope of the present invention.
As shown in figure 3, according to the first aspect of the invention, there is provided a kind of service communication side based on quantum key distribution Method, this method include:Step 1, corresponded to based on business and quantum key in transmission path is possible between source node and destination node The quantum key demand of quantum key surplus and the business in pond, obtain the optimal transmission paths of the business;Step 2, the quantum key provided based on the quantum key pond between two nodes adjacent successively in the optimal transmission paths, the industry It is pragmatic existing from the source node to the communication of the destination node.
In the present embodiment, due to many intermediate nodes in communication network between source node and destination node be present, therefore, When needing from source node to send business to destination node safely, business has more transmission paths.Quantum key pond is because of carrying Portfolio is different, business quantum key demand is different, the quantum key surplus in quantum key pond is also different.For Consuming excessively for quantum key in the less quantum key pond of quantum key surplus is avoided, causes communication delay or obstruction, The overall most sufficient path of quantum key surplus that quantum key pond is selected in the present embodiment is that optimal transmission paths enter industry Business communication.
In the present embodiment, after optimal transmission paths are obtained, service communication can be carried out by optimal transmission paths.It is logical Cross optimal transmission paths carry out service communication during, business optimal transmission paths on the way in each intermediate node first solve It is close to re-encrypt.Wherein, during decryption, using between the intermediate node and its adjacent upper node in optimal transmission paths transmission Quantum key pond provide quantum key;During encryption, using the intermediate node with its optimal transmission paths transmission on it is adjacent Next node between quantum key pond provide quantum key.
Service communication method and device proposed by the present invention based on quantum key distribution, by based on business corresponding source section It is close that the quantum of quantum key surplus and the business in quantum key pond is possible in transmission path between point and destination node Key demand, the optimal transmission paths of the business are obtained, based on two nodes adjacent successively in the optimal transmission paths Between quantum key pond provide quantum key, the business realizing is from the source node to the communication of the destination node.This hair The method of bright proposition causes two nodes corresponding to each quantum key pond of participation business transmission at a distance of relatively closely, to shorten quantum The supplement of key takes, so that the quantum key in quantum key pond can be augmented in time, avoids bearer traffic Quantum key pond quantum key deficiency corresponding to the larger business in more quantum key pond or quantum key demand causes to lead to Believe time delay and obstruction.Further it is proposed that method cause quantum key consumption phase in each quantum key pond of whole network When ensure that the equiblibrium mass distribution of quantum key surplus in each quantum key pond of whole network so that network performance is more stable.
As a kind of alternative embodiment, the step 1 specifically includes:Step 11, based on source node, Su Jie corresponding to business Point and the intermediate node between the source node and the destination node, obtain the business is possible to transmission path;Step Rapid 12, the number of intermediate node is included based on the be possible to transmission path, obtain the business may preferably transmit road Footpath;Step 13, the quantum key demand based on the business and it is described preferably may in transmission path quantum key pond amount Sub-key surplus, obtain the optimal transmission paths of the business.
Fig. 4 is the network diagram with 4 nodes according to the embodiment of the present invention.As shown in Figure 4, business is saved from source The safety of point 2, which is sent to all paths of destination node 4, to be included:Source node 2 is to destination node 4, source node 2 to intermediate node 1 to Su Jie Point 4, each path of source node 2 to intermediate node 3 to destination node 4.
Because business during intermediate node by needing encryption and decryption, therefore, when intermediate node number is bigger, business is communicating During need by node it is more, the time needed for service communication is longer.To avoid service communication is time-consuming from excessively increasing, The excessive path of intermediate node need to be removed, obtaining preferably may transmission path.
The quantum key pond past is because of the portfolio difference of carrying, the quantum of business in each path of preferably possible transmission path Key demand is different, and currently, the quantum key surplus in quantum key pond is also different.In order to avoid quantum key is remaining Consuming excessively for quantum key in less quantum key pond is measured, communication delay or obstruction is caused, selects quantum in the present embodiment The overall most sufficient path of the quantum key surplus of pool of keys is that optimal transmission paths carry out service communication.
As a kind of alternative embodiment, the step 2 specifically includes:Using the source node as present node, along described Transmission direction of the business in the optimal transmission paths, based between the present node and next node adjacent thereto The quantum key that current quantum key pond provides, the business is encrypted in the present node;By the business after encryption Transmit to the next node;The quantum key provided based on the current quantum key pond, in the next node to described Business is decrypted;Using the next node as present node, said process is repeated, until the next node is Su Jie Point.
In the present embodiment, business along optimal transmission paths from source node transmit on the direction of destination node successively by source Node, the first intermediate node, the second intermediate node ..., destination node.And complete to encrypt in source node, it is complete in middle each node Complete to decrypt into encryption and decryption and in destination node.
As a kind of alternative embodiment, the step 12 specifically includes:Obtain during the be possible to transmission path includes Segmentum intercalaris is counted out less than preferably possible transmission path of the present count destination path as the business.
In the present embodiment, preset number can be set as the case may be, and the present embodiment is not construed as limiting to this.Be tod from above-mentioned Business sends to destination node 4 from the safety of source node 2 and is possible to filter out in transmission path less than preset number (preset number Equal to path 2) as preferably possible transmission path.Preferably possible transmission path includes:Source node 2 is to destination node 4, source node 2 to intermediate node 1 to destination node 4, each path of source node 2 to intermediate node 3 to destination node 4.
As a kind of alternative embodiment, the step 13 specifically includes:Step 131, the quantum key based on the business Quantum key surplus in quantum key pond, obtains communication smoothly path in demand and the preferably possible transmission path; Step 132, based on it is described communication smoothly on path in quantum key pond quantum key surplus variance, obtain the business Optimal transmission paths.
In the present embodiment, the quantum key pond that business is related in the transmission is both needed to provide quantum key resource for business Encryption and decryption.Such as, quantum key pond corresponding to source node and the first intermediate node adjacent thereto need to provide quantum key resource with Encrypt in source node for business and decrypted in the first intermediate node.When the quantum key resource in quantum key pond can not meet to add During the demand of decryption, delay or obstruction occurs in the path, therefore, need to obtain each quantum key from preferable possible transmission path Quantum key resource in pond can meet the path of business encryption and decryption demand, that is, communicate smoothly path, carry out service communication. For example, sending business into the preferably possible transmission path of destination node 4 from the safety of source node 2 from above-mentioned, search respectively preferable Quantum key pond (QKP2-4, QKP1-2 and QKP1-4, QKP2-3 and QKP3-4) in possible transmission path, and inquire about each amount The quantum key surplus in sub-key pond, it is smooth as communicating to filter out the sufficient path of the quantum key in quantum key pond Path.
In the present embodiment, communication smoothly in each path in path the quantum key pond past because carrying portfolio not Same, business quantum key demand is different, and currently, the quantum key surplus in quantum key pond is also different.And path The variance of quantum key surplus has reacted in the path quantum key surplus in each quantum key pond in upper quantum key pond Difference size, can be when differing greatly or being smaller based on the difference, the quantum based on certain method choice quantum key pond The overall most sufficient path of key surplus is as optimal transmission paths, to avoid the less quantum key pond of quantum key surplus Middle quantum key consumes excessively, causes communication delay or obstruction.
As a kind of alternative embodiment, the step 131 specifically includes:Obtain quantum in the preferably possible transmission path The quantum key surplus of pool of keys is all higher than the path equal to the business quantum key demand as the smoothly road that communicates Footpath.
In the present embodiment, it is close equal to the business quantum by the way that the quantum key surplus in quantum key pond is all higher than The path of key demand is smooth to ensure to communicate in business transmitting procedure as the smoothly path that communicates.
As a kind of alternative embodiment, the step 132 specifically includes:If judgement knows the communication smoothly on path The variance of quantum key surplus is more than variance threshold values in quantum key pond, is communicated smoothly on path Zhong Ge paths based on described Minimum quantum key surplus, obtain the optimal transmission paths of the business;If the communication smoothly path is known in judgement The variance of quantum key surplus is less than or equal to the variance threshold values in upper quantum key pond, based on the smoothly road that communicates The average value of quantum key surplus on the Zhong Ge paths of footpath, obtain the optimal transmission paths of the business.
When the variance of quantum key surplus in quantum key pond on path is larger, illustrate each quantum key pond on the path The gap of middle quantum key surplus is larger, it is understood that there may be some quantum key surpluses are very big, and other quantum keys are remaining Measure the situation of very little.Now, minimum key surplus can be based on, obtains optimal transmission paths.
When the variance of quantum key surplus in quantum key pond on path is smaller, illustrate each quantum key pond on the path Middle quantum key surplus it is suitable.Now, key surplus average value can be based on, obtains optimal transmission paths.
It is described based on the smoothly minimum quantum key on path Zhong Ge paths that communicates as a kind of alternative embodiment Surplus, the optimal transmission paths for obtaining the business specifically include:Obtain the minimum in every communication smoothly path Sub-key surplus;Path corresponding to the maximum quantum key surplus in the minimum quantum key surplus is obtained as most Good transmission path.
In the present embodiment, when the communication, smoothly the variance of quantum key surplus is big in quantum key pond on path When variance threshold values, the maximum path of minimum quantum key surplus is selected as optimal transmission paths, it is minimum to avoid choosing The less path of quantum key surplus further consumes resource.
It is described based on the smoothly quantum key surplus on path Zhong Ge paths that communicates as a kind of alternative embodiment Average value, the optimal transmission paths for obtaining the business specifically include:Obtaining in the smoothly path that communicates has maximum The path of quantum key surplus average value is as optimal transmission paths.
In the present embodiment, when the communication, smoothly the variance of quantum key surplus is small in quantum key pond on path When equal to variance threshold values, the maximum path of quantum key surplus average value is selected as optimal transmission paths, to avoid selecting The less path of taken amount sub-key surplus average value further consumes resource.
As shown in figure 5, according to the second aspect of the invention, there is provided a kind of service communication method based on quantum key distribution Device, the device include:Optimal transmission paths acquisition module and communication module;The optimal transmission paths acquisition module, is used for Corresponded to based on business be possible between source node and destination node in transmission path in quantum key pond quantum key surplus and The quantum key demand of the business, obtain the optimal transmission paths of the business;The communication module, for based on described The quantum key that quantum key pond between two nodes adjacent successively provides in optimal transmission paths, the business realizing is from institute State communication of the source node to the destination node.
Traffic communicator proposed by the present invention based on quantum key distribution, by optimal transmission paths acquisition module, Corresponded to based on business be possible between source node and destination node in transmission path in quantum key pond quantum key surplus and The quantum key demand of the business, the optimal transmission paths of the business are obtained, by communication module, based on described optimal The quantum key that quantum key pond between two nodes adjacent successively provides in transmission path, the business realizing is from the source Node to the destination node communication.Device proposed by the present invention causes corresponding to each quantum key pond that participation business is transmitted At a distance of relatively near, the supplement for shortening quantum key takes for two nodes so that the quantum key in quantum key pond can and When augmented, avoid and measured corresponding to the more quantum key pond of bearer traffic or the larger business of quantum key demand Sub-key pond quantum key deficiency causes communication delay and obstruction.Further it is proposed that device whole network is respectively measured Quantum key consumption is suitable in sub-key pond, ensure that the equilibrium of quantum key surplus in each quantum key pond of whole network Distribution so that network performance is more stable.
As a kind of alternative embodiment, the optimal transmission paths acquisition module includes:Be possible to transmission path obtains Unit, due to based on the intermediate node corresponding to business between source node, destination node and the source node and the destination node, Obtain the business is possible to transmission path;Preferably possible transmission path acquiring unit, is possible to transmit based on described Path includes the number of intermediate node, obtains the preferably possible transmission path of the business;Optimal transmission paths acquiring unit, use Quantum key in quantum key pond in the quantum key demand based on the business and the preferably possible transmission path remains Surplus, obtain the optimal transmission paths of the business.
As a kind of alternative embodiment, the communication module is specifically used for using the source node as present node, along institute Transmission direction of the business in the optimal transmission paths is stated, based between the present node and next node adjacent thereto Current quantum key pond provide quantum key, the business is encrypted in the present node;By the industry after encryption Business is transmitted to the next node;The quantum key provided based on the current quantum key pond, in the next node to institute The business of stating is decrypted;Using the next node as present node, said process is repeated, until the next node is Su Jie Point.
As a kind of alternative embodiment, it is described preferably may transmission path acquiring unit be specifically used for obtaining it is described it is all can Energy transmission path includes intermediate node number and is less than preferably possible transmission path of the present count destination path as the business.
As a kind of alternative embodiment, the optimal transmission paths acquisition module includes:Communicate smooth path acquiring unit, The quantum key in quantum key pond in the quantum key demand based on the business and the preferably possible transmission path Surplus, obtain communication smoothly path;Optimal transmission paths acquiring unit, for smoothly being measured based on the communication on path The variance of quantum key surplus in sub-key pond, obtain the optimal transmission paths of the business.
As a kind of alternative embodiment, the smooth path acquiring unit of communication may preferably pass specifically for acquisition is described The quantum key surplus in quantum key pond is all higher than the path conduct equal to the business quantum key demand in defeated path Communicate smoothly path.
As a kind of alternative embodiment, if the optimal transmission paths acquiring unit is specifically used for judging to know the communication Smoothly the variance of quantum key surplus is more than variance threshold values in quantum key pond on path, based on the smoothly road that communicates Minimum quantum key surplus on the Zhong Ge paths of footpath, obtain the optimal transmission paths of the business;If judgement is known described logical Smoothly the variance of quantum key surplus is less than or equal to the variance threshold values to letter in quantum key pond on path, based on described Communication smoothly on path Zhong Ge paths quantum key surplus average value, obtain the optimal transmission paths of the business.
As a kind of alternative embodiment, it is suitable that the optimal transmission paths acquiring unit is specifically used for the communication of acquisition every The minimum quantum key surplus in smooth path;Obtain the maximum quantum key surplus in the minimum quantum key surplus Corresponding path is as optimal transmission paths.
As a kind of alternative embodiment, the optimal transmission paths acquiring unit is specifically used for obtaining the communication smoothly The path with maximum quantum key surplus average value is as optimal transmission paths in path.
Finally, method of the invention is only preferable embodiment, is not intended to limit the scope of the present invention.It is all Within the spirit and principles in the present invention, any modification, equivalent substitution and improvements made etc., the protection of the present invention should be included in Within the scope of.

Claims (10)

  1. A kind of 1. service communication method based on quantum key distribution, it is characterised in that including:
    Step 1, corresponded to based on business and be possible in transmission path that quantum is close in quantum key pond between source node and destination node The quantum key demand of key surplus and the business, obtain the optimal transmission paths of the business;
    Step 2, the quantum based on the quantum key pond offer between two nodes adjacent successively in the optimal transmission paths is close Key, the business realizing is from the source node to the communication of the destination node.
  2. 2. according to the method for claim 1, it is characterised in that the step 1 specifically includes:
    Step 11, based on the middle node corresponding to business between source node, destination node and the source node and the destination node Point, obtain the business is possible to transmission path;
    Step 12, the number of intermediate node is included based on the be possible to transmission path, obtains the preferable possibility of the business Transmission path;
    Step 13, the quantum key demand based on the business and it is described preferably may in transmission path quantum key pond amount Sub-key surplus, obtain the optimal transmission paths of the business.
  3. 3. method according to claim 1 or 2, it is characterised in that the step 2 specifically includes:
    Using the source node as present node, along transmission direction of the business in the optimal transmission paths, based on institute The quantum key that the current quantum key pond between present node and next node adjacent thereto provides is stated, works as prosthomere described The business is encrypted point;Business after encryption is transmitted to the next node;Based on the current quantum key pond The quantum key of offer, the business is decrypted in the next node;
    Using the next node as present node, said process is repeated, until the next node is destination node.
  4. 4. according to the method for claim 2, it is characterised in that the step 12 specifically includes:
    Obtain the be possible to transmission path and include intermediate node number less than present count destination path as the business Preferably may transmission path.
  5. 5. the method according to claim 2 or 4, it is characterised in that the step 13 specifically includes:
    Step 131, the quantum key demand based on the business and it is described preferably may be in transmission path in quantum key pond Quantum key surplus, obtain communication smoothly path;
    Step 132, based on the communication smoothly on path in quantum key pond quantum key surplus variance, described in acquisition The optimal transmission paths of business.
  6. 6. according to the method for claim 5, it is characterised in that the step 131 specifically includes:
    The quantum key surplus for obtaining quantum key pond in the preferably possible transmission path is all higher than being equal to the portfolio The path of sub-key demand is as the smoothly path that communicates.
  7. 7. according to the method for claim 5, it is characterised in that the step 132 specifically includes:
    If judgement knows that smoothly the variance of quantum key surplus is more than variance threshold in quantum key pond on path for the communication Value, based on the communication smoothly minimum quantum key surplus on path Zhong Ge paths, obtain the optimal biography of the business Defeated path;
    If judgement knows that smoothly the variance of quantum key surplus is less than or equal in quantum key pond on path for the communication The variance threshold values, based on the communication smoothly on path Zhong Ge paths quantum key surplus average value, described in acquisition The optimal transmission paths of business.
  8. 8. according to the method for claim 7, it is characterised in that described to be communicated smoothly on path Zhong Ge paths based on described Minimum quantum key surplus, the optimal transmission paths for obtaining the business specifically include:
    Obtain the minimum quantum key surplus in every communication smoothly path;
    Path corresponding to the maximum quantum key surplus in the minimum quantum key surplus is obtained as best transmission road Footpath.
  9. 9. according to the method for claim 7, it is characterised in that described to be communicated smoothly on path Zhong Ge paths based on described The average value of quantum key surplus, the optimal transmission paths for obtaining the business specifically include:
    Obtaining in the smoothly path that communicates has the path of maximum quantum key surplus average value as best transmission road Footpath.
  10. A kind of 10. traffic communicator based on quantum key distribution, it is characterised in that including:Optimal transmission paths obtain mould Block and communication module;
    The optimal transmission paths acquisition module, it is possible to transmit road between source node and destination node for corresponding to based on business The quantum key demand of quantum key surplus and the business in quantum key pond on footpath, obtain the optimal biography of the business Defeated path;
    The communication module, for being carried based on the quantum key pond between two nodes adjacent successively in the optimal transmission paths The quantum key of confession, the business realizing is from the source node to the communication of the destination node.
CN201710712132.0A 2017-08-18 2017-08-18 Business communication method and device based on quantum key distribution Active CN107508671B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710712132.0A CN107508671B (en) 2017-08-18 2017-08-18 Business communication method and device based on quantum key distribution

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710712132.0A CN107508671B (en) 2017-08-18 2017-08-18 Business communication method and device based on quantum key distribution

Publications (2)

Publication Number Publication Date
CN107508671A true CN107508671A (en) 2017-12-22
CN107508671B CN107508671B (en) 2020-06-12

Family

ID=60692305

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710712132.0A Active CN107508671B (en) 2017-08-18 2017-08-18 Business communication method and device based on quantum key distribution

Country Status (1)

Country Link
CN (1) CN107508671B (en)

Cited By (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108566292A (en) * 2018-03-06 2018-09-21 北京邮电大学 A kind of fiber optic quantum key distribution network failure recovery method and system
CN108900295A (en) * 2018-07-02 2018-11-27 国网电力信息通信有限公司 Data sending, receiving method, apparatus and system based on quantum key encryption
CN109005034A (en) * 2018-09-19 2018-12-14 北京邮电大学 A kind of multi-tenant quantum key Supply Method and device
CN109167637A (en) * 2018-08-13 2019-01-08 国科量子通信网络有限公司 Pool of keys fills resource determining method, device, equipment and readable storage medium storing program for executing
CN109194468A (en) * 2018-07-20 2019-01-11 国科量子通信网络有限公司 Dispositions method, device and the equipment of relay node, computer readable storage medium
CN110048833A (en) * 2019-03-04 2019-07-23 全球能源互联网研究院有限公司 Power business encryption method and device based on quantum satellite key network
CN110138552A (en) * 2019-05-08 2019-08-16 北京邮电大学 Multi-user quantum key Supply Method and device
CN110224815A (en) * 2019-05-08 2019-09-10 北京邮电大学 QKD network resource allocation method and system
CN110299939A (en) * 2019-05-09 2019-10-01 北京邮电大学 Shared guard method and device towards time division multiplexing QKD optical-fiber network
WO2019196921A1 (en) * 2018-04-13 2019-10-17 华为技术有限公司 Quantum key distribution method, device and storage medium
WO2020063350A1 (en) * 2018-09-28 2020-04-02 华为技术有限公司 Quantum key distribution method and device
CN111385087A (en) * 2018-12-27 2020-07-07 山东量子科学技术研究院有限公司 Reliable key relay method and system thereof
CN111490875A (en) * 2020-04-23 2020-08-04 成都信息工程大学 Cloud data semi-quantum secure sharing method and system based on proxy re-encryption
CN112422284A (en) * 2020-11-19 2021-02-26 北京电子科技学院 Quantum communication system
US20210083867A1 (en) * 2019-09-12 2021-03-18 General Electric Company Communication system and method for applying quantum key distribution security for a time sensitive network
CN112769550A (en) * 2020-12-29 2021-05-07 中天通信技术有限公司 Load balancing quantum key resource distribution system facing data center
CN114071264A (en) * 2021-11-12 2022-02-18 国网上海市电力公司 Communication method of network service on endogenous safety optical network and endogenous safety optical network
CN115694815A (en) * 2023-01-03 2023-02-03 国网天津市电力公司电力科学研究院 Communication encryption method and device for power distribution terminal

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7430295B1 (en) * 2003-03-21 2008-09-30 Bbn Technologies Corp. Simple untrusted network for quantum cryptography
CN103001875B (en) * 2013-01-07 2015-03-11 山东量子科学技术研究院有限公司 Quantum cryptography network dynamic routing method
CN106230582B (en) * 2016-07-17 2019-03-26 西安电子科技大学 Random routing method in quantum secret communication network
CN206341226U (en) * 2016-12-26 2017-07-18 清华大学 A kind of quantum key distribution device

Cited By (32)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108566292A (en) * 2018-03-06 2018-09-21 北京邮电大学 A kind of fiber optic quantum key distribution network failure recovery method and system
CN108566292B (en) * 2018-03-06 2020-06-12 北京邮电大学 Fault recovery method and system for optical fiber quantum key distribution network
CN110380844A (en) * 2018-04-13 2019-10-25 华为技术有限公司 A kind of quantum key delivering method, equipment and storage medium
CN110380844B (en) * 2018-04-13 2021-01-29 华为技术有限公司 Quantum key distribution method, equipment and storage medium
US11595196B2 (en) 2018-04-13 2023-02-28 Huawei Technologies Co., Ltd. Quantum key distribution method and device, and storage medium
WO2019196921A1 (en) * 2018-04-13 2019-10-17 华为技术有限公司 Quantum key distribution method, device and storage medium
CN108900295A (en) * 2018-07-02 2018-11-27 国网电力信息通信有限公司 Data sending, receiving method, apparatus and system based on quantum key encryption
CN109194468A (en) * 2018-07-20 2019-01-11 国科量子通信网络有限公司 Dispositions method, device and the equipment of relay node, computer readable storage medium
CN109194468B (en) * 2018-07-20 2021-08-31 国科量子通信网络有限公司 Relay node deployment method, device and equipment and computer readable storage medium
CN109167637A (en) * 2018-08-13 2019-01-08 国科量子通信网络有限公司 Pool of keys fills resource determining method, device, equipment and readable storage medium storing program for executing
CN109167637B (en) * 2018-08-13 2021-06-01 国科量子通信网络有限公司 Key pool filling resource determination method, device, equipment and readable storage medium
CN109005034A (en) * 2018-09-19 2018-12-14 北京邮电大学 A kind of multi-tenant quantum key Supply Method and device
CN109005034B (en) * 2018-09-19 2020-10-02 北京邮电大学 Multi-tenant quantum key supply method and device
WO2020063350A1 (en) * 2018-09-28 2020-04-02 华为技术有限公司 Quantum key distribution method and device
CN111385087B (en) * 2018-12-27 2023-01-03 山东量子科学技术研究院有限公司 Reliable key relay method and system thereof
CN111385087A (en) * 2018-12-27 2020-07-07 山东量子科学技术研究院有限公司 Reliable key relay method and system thereof
CN110048833B (en) * 2019-03-04 2021-10-29 全球能源互联网研究院有限公司 Electric power service encryption method and device based on quantum satellite key network
CN110048833A (en) * 2019-03-04 2019-07-23 全球能源互联网研究院有限公司 Power business encryption method and device based on quantum satellite key network
CN110138552B (en) * 2019-05-08 2021-07-20 北京邮电大学 Multi-user quantum key supply method and device
CN110138552A (en) * 2019-05-08 2019-08-16 北京邮电大学 Multi-user quantum key Supply Method and device
CN110224815A (en) * 2019-05-08 2019-09-10 北京邮电大学 QKD network resource allocation method and system
CN110299939A (en) * 2019-05-09 2019-10-01 北京邮电大学 Shared guard method and device towards time division multiplexing QKD optical-fiber network
US20210083867A1 (en) * 2019-09-12 2021-03-18 General Electric Company Communication system and method for applying quantum key distribution security for a time sensitive network
US12003627B2 (en) * 2019-09-12 2024-06-04 General Electric Company Communication system and method for applying quantum key distribution security for a time sensitive network
CN111490875A (en) * 2020-04-23 2020-08-04 成都信息工程大学 Cloud data semi-quantum secure sharing method and system based on proxy re-encryption
CN111490875B (en) * 2020-04-23 2021-03-05 成都信息工程大学 Cloud data semi-quantum secure sharing method and system based on proxy re-encryption
CN112422284A (en) * 2020-11-19 2021-02-26 北京电子科技学院 Quantum communication system
CN112422284B (en) * 2020-11-19 2024-03-29 北京电子科技学院 Quantum communication system
CN112769550A (en) * 2020-12-29 2021-05-07 中天通信技术有限公司 Load balancing quantum key resource distribution system facing data center
CN114071264A (en) * 2021-11-12 2022-02-18 国网上海市电力公司 Communication method of network service on endogenous safety optical network and endogenous safety optical network
CN114071264B (en) * 2021-11-12 2024-01-23 国网上海市电力公司 Communication method of network service on endogenous safe optical network and endogenous safe optical network
CN115694815A (en) * 2023-01-03 2023-02-03 国网天津市电力公司电力科学研究院 Communication encryption method and device for power distribution terminal

Also Published As

Publication number Publication date
CN107508671B (en) 2020-06-12

Similar Documents

Publication Publication Date Title
CN107508671A (en) Service communication method and device based on quantum key distribution
CN103475464B (en) A kind of power special quantum encryption gateway system
CN110581763B (en) Quantum key service block chain network system
CN103763099B (en) Electric power security communication network based on quantum key distribution technology
CN110224815A (en) QKD network resource allocation method and system
US8170211B2 (en) Hub device for a network comprising quantum cryptographic connections and node module for said hub device
CN104092668B (en) A kind of reconfigurable network security service building method
CN106330434A (en) First quantum node, second quantum node, secure communication architecture system and methods
CN108023725A (en) A kind of quantum key trunking method and device based on centralized management with control network
CN111865589B (en) Quantum communication encryption system and method for realizing mobile communication quantum encryption transmission
CN104660602A (en) Quantum key transmission control method and system
WO2007123869A3 (en) Key management and user authentication for quantum cryptography networks
CN109995513A (en) A kind of quantum key Information Mobile Service method of low latency
CN103931220A (en) Key derivative function for network communications
KR20050100074A (en) Quantum key distribution method between multiusers or various groups
CN103532702A (en) Communication device, key generating device, communication and communication system
CN106788977A (en) Low-power consumption bluetooth device talk encryption method and system
CN105262587B (en) Machine type communication group key distribution method based on proxy re-encryption
CN106716915A (en) Information communication system, information communication method, and device
CN110289952A (en) A kind of quantal data chain secrecy terminal and secret communication network
CN108234049B (en) Terminal communicating method, device, storage medium and computer equipment
CN203851153U (en) Electric power security communication network based on quantum key distribution technology
CA3204279A1 (en) System and method for key establishment
Dervisevic et al. Simulations of denial of service attacks in quantum key distribution networks
CN109274663A (en) Communication means based on SM2 dynamic key exchange and SM4 data encryption

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant