[go: up one dir, main page]

CN114650528A - An Emergency Communication Method Based on Quantum Keys - Google Patents

An Emergency Communication Method Based on Quantum Keys Download PDF

Info

Publication number
CN114650528A
CN114650528A CN202011515495.3A CN202011515495A CN114650528A CN 114650528 A CN114650528 A CN 114650528A CN 202011515495 A CN202011515495 A CN 202011515495A CN 114650528 A CN114650528 A CN 114650528A
Authority
CN
China
Prior art keywords
quantum key
emergency
emergency information
encrypted data
information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202011515495.3A
Other languages
Chinese (zh)
Inventor
赵勇
刘春华
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shandong Institute Of Quantum Science And Technology Co ltd
Quantumctek Co Ltd
Original Assignee
Shandong Institute Of Quantum Science And Technology Co ltd
Quantumctek Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shandong Institute Of Quantum Science And Technology Co ltd, Quantumctek Co Ltd filed Critical Shandong Institute Of Quantum Science And Technology Co ltd
Priority to CN202011515495.3A priority Critical patent/CN114650528A/en
Publication of CN114650528A publication Critical patent/CN114650528A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/02Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0852Quantum cryptography
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/90Services for handling of emergency or hazardous situations, e.g. earthquake and tsunami warning systems [ETWS]

Landscapes

  • Engineering & Computer Science (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Electromagnetism (AREA)
  • Business, Economics & Management (AREA)
  • Health & Medical Sciences (AREA)
  • Emergency Management (AREA)
  • Environmental & Geological Engineering (AREA)
  • Public Health (AREA)
  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)

Abstract

The invention provides an emergency communication method based on a quantum key, wherein the quantum key is used for realizing the high-strength security protection of ' decentralized ' -bidirectional flow ' of emergency information, so that the encrypted and protected emergency information is not limited to a ' central broadcast-terminal receiving ' type model any more; meanwhile, the balance of data transmission safety and real-time availability in an emergency communication scene is effectively realized.

Description

一种基于量子密钥的应急通信方法An Emergency Communication Method Based on Quantum Keys

技术领域technical field

本发明涉及保密通信技术领域,特别涉及一种基于量子密钥的应急通信方法。The invention relates to the technical field of secure communication, in particular to an emergency communication method based on quantum keys.

背景技术Background technique

在应急信息保密通信领域,例如侦查、处警、突发事件、现场指挥等场景下,现在已经有一些用于实现应急通信的方案,例如,申请号为201410123519.9的中国专利文献中公开了一种应急通信方法,其中,应急信息发布端将分级应急信息进行数字签名和加密后,信息以短信或FM广播的形式,通过2G/3G通信网络发送出去;信息接收端在收到短信或FM广播信号后,对密文解密并通过数字签名验证信息的完整性,验证成功后解密出明文。此外,为了提高信息传播安全性,部分现有方案会采用加密的方式传输应急信息,但其中要么是密钥重复使用,要么顶多达到“一业一密”的程度(即每次业务采用不同的业务密钥对业务数据进行保护,但该次通信业务过程中密钥仍然重复使用),这对于某些在特殊应急场合下可能需要保护的“高价值信息”而言,仍然有安全性进一步提升的空间。In the field of emergency information confidential communication, such as investigation, police handling, emergencies, on-site command and other scenarios, there are already some solutions for implementing emergency communication. The communication method, in which the emergency information issuing end digitally signs and encrypts the graded emergency information, and sends the information in the form of short messages or FM broadcasts through the 2G/3G communication network; the information receiving end receives the short messages or FM broadcast signals after receiving , decrypt the ciphertext and verify the integrity of the information through the digital signature, and decrypt the plaintext after the verification is successful. In addition, in order to improve the security of information dissemination, some existing schemes will use encryption to transmit emergency information, but either the key is reused, or at most the level of "one industry, one secret" (that is, each business uses a different The business key protects the business data, but the key is still reused during the communication business process), which still has security for some "high-value information" that may need to be protected in special emergency situations. room for improvement.

在收发方式上,现有的应急通信方法中多采用“中心广播-终端接收”的收发模式,其中信息只能单向流动。In terms of sending and receiving methods, the existing emergency communication methods mostly adopt the sending and receiving mode of "central broadcast-terminal receiving", in which information can only flow in one direction.

然而,在有些应急任务场合下,则需要去中心化+双向信息流动,即任何一台入网终端都具有单发、群发应急信息到特定或者不特定目标终端的能力。并且,现有的数字签名和普通方式的加解密,其安全性难以达到高标准保密的程度。However, in some emergency tasks, decentralization + two-way information flow is required, that is, any network access terminal has the ability to send emergency information to specific or unspecified target terminals individually or in groups. In addition, the security of the existing digital signature and ordinary encryption and decryption is difficult to achieve a high standard of confidentiality.

发明内容SUMMARY OF THE INVENTION

针对这一问题,本发明提出了一种基于量子密钥的应急通信方法,其中基于量子密钥实现对应急信息的“去中心化”+双向流动的高强度安全保护,使得受加密保护的应急信息不再局限于“中心广播-终端接收”式模型;同时还有效地实现了应急通信场景下数据传输安全性和实时可用性的平衡。In response to this problem, the present invention proposes an emergency communication method based on quantum keys, in which "decentralization" of emergency information + high-strength security protection of bidirectional flow is realized based on quantum keys, so that the emergency communication protected by encryption Information is no longer limited to the "central broadcast-terminal receiving" model; it also effectively achieves a balance between data transmission security and real-time availability in emergency communication scenarios.

本发明的基于量子密钥的应急通信方法可以包括以下步骤:The quantum key-based emergency communication method of the present invention may include the following steps:

密钥分配步骤:在多个应急通信终端中的每一个应急通信终端Ti与量子密钥供给服务网络S之间提供共享量子密钥KiKey distribution step: providing a shared quantum key K i between each emergency communication terminal Ti in the plurality of emergency communication terminals and the quantum key supply service network S;

应急信息发送步骤:基于自动或者人为触发,使所述应急通信终端Ti利用所述共享量子密钥Ki将应急信息形成为加密数据,并向外发送所述加密数据;以及,The emergency information sending step: based on automatic or artificial triggering, the emergency communication terminal T i uses the shared quantum key K i to form the emergency information into encrypted data, and sends the encrypted data to the outside; and,

应急信息接收步骤:接收所述加密数据,并利用所述共享量子密钥Ki从所述加密数据中获得所述应急信息。The step of receiving emergency information: receiving the encrypted data, and using the shared quantum key K i to obtain the emergency information from the encrypted data.

进一步地,所述密钥分配步骤可以设置成:在所述量子密钥供给服务网络S中生成量子密钥;在所述量子密钥供给服务网络S与密钥充注终端之间建立有线连接;以及,将所述应急通信终端Ti与所述密钥充注终端连接,以获取所述共享量子密钥KiFurther, the key distribution step can be set to: generate a quantum key in the quantum key supply service network S; establish a wired connection between the quantum key supply service network S and the key filling terminal and, connecting the emergency communication terminal T i with the key filling terminal to obtain the shared quantum key K i .

更进一步地,所述密钥分配步骤还可以包括,使所述量子密钥供给服务网络S定期更新所述量子密钥,从而更新所述应急通信终端Ti和所述量子密钥供给服务网络S中的所述共享量子密钥Ki的步骤。Further, the key distribution step may also include, causing the quantum key supply service network S to periodically update the quantum key, thereby updating the emergency communication terminal T i and the quantum key supply service network. step of the shared quantum key K i in S.

进一步地,所述密钥分配步骤可以设置成,使所述多个应急通信终端中的每一个应急通信终端Ti的共享量子密钥Ki之间具有相同的共享量子密钥K;并且,所述应急信息发送步骤被进一步设置成,使所述多个应急通信终端中的一个或多个利用所述共享量子密钥K将所述应急信息形成为所述加密数据,并向外发送所述加密数据。Further, the key distribution step can be set to make the shared quantum key K i of each emergency communication terminal T i in the plurality of emergency communication terminals have the same shared quantum key K; and, The emergency information sending step is further configured to make one or more of the plurality of emergency communication terminals use the shared quantum key K to form the emergency information into the encrypted data, and send the encrypted data to the outside. the encrypted data.

更进一步地,所述应急信息接收步骤可以设置成,使所述多个应急通信终端中的另一个或多个接收所述加密数据,并利用所述共享量子密钥K从所述加密数据中获得所述应急信息。Further, the emergency information receiving step may be configured to make one or more of the plurality of emergency communication terminals receive the encrypted data, and use the shared quantum key K to retrieve the encrypted data from the encrypted data. Obtain the emergency information.

优选地,所述应急信息发送步骤可以进一步设置成:使所述多个应急通信终端中的一个或多个生成随机序列码,将所述随机序列码发送给所述量子密钥供给服务网络S,并提出量子密钥使用申请;所述量子密钥供给服务网络S根据所述量子密钥使用申请确定未使用的量子密钥区域,将所述量子密钥区域的起始地址及结束地址或起始地址及大小发送给所述多个应急通信终端中的一个或多个,同时将所述随机序列码与所述量子密钥区域进行对应,并将所述量子密钥区域标记为已使用;所述多个应急通信终端中的一个或多个利用与所述随机序列码对应的所述量子密钥区域中的共享量子密钥K将所述应急信息形成为所述加密数据,并将所述加密数据和所述随机序列码一并向外发送。Preferably, the emergency information sending step may be further configured to: make one or more of the plurality of emergency communication terminals generate a random sequence code, and send the random sequence code to the quantum key supply service network S , and propose a quantum key use application; the quantum key supply service network S determines the unused quantum key area according to the quantum key use application, and assigns the start address and end address of the quantum key area or The starting address and size are sent to one or more of the multiple emergency communication terminals, and the random sequence code is corresponding to the quantum key area, and the quantum key area is marked as used ; One or more of the plurality of emergency communication terminals use the shared quantum key K in the quantum key area corresponding to the random sequence code to form the emergency information as the encrypted data, and use the shared quantum key K in the quantum key area corresponding to the random sequence code The encrypted data and the random sequence code are sent out together.

所述应急信息接收步骤可以被进一步设置成:所述应急通信终端中的另一个或多个接收所述加密数据和所述随机序列码,并将所述随机序列码发送给所述量子密钥供给服务网络S;所述量子密钥供给服务网络S根据所述随机序列码将所述量子密钥区域的起始地址及结束地址或起始地址及大小发送给所述应急通信终端中的另一个或多个;所述应急通信终端中的另一个或多个利用与所述随机序列码对应的所述量子密钥区域中的共享量子密钥K从所述加密数据中获得所述应急信息。The emergency information receiving step may be further configured to: one or more of the emergency communication terminals receive the encrypted data and the random sequence code, and send the random sequence code to the quantum key Supply service network S; the quantum key supply service network S sends the start address and end address or start address and size of the quantum key area to another in the emergency communication terminal according to the random sequence code. One or more; another or more of the emergency communication terminals obtain the emergency information from the encrypted data using the shared quantum key K in the quantum key area corresponding to the random sequence code .

进一步地,所述应急信息接收步骤还可以包括,使所述多个应急通信终端中的另一个或多个通过物理接口将所述应急信息发送给信息接收机R的步骤。Further, the step of receiving the emergency information may further include the step of causing another or more of the plurality of emergency communication terminals to send the emergency information to the information receiver R through a physical interface.

进一步地,所述应急信息接收步骤可以设置成:使所述量子密钥供给服务网络S接收所述加密数据,利用所述共享量子密钥K从所述加密数据中获得所述应急信息,并将所述应急信息发给信息接收机R。Further, the emergency information receiving step may be set to: make the quantum key supply service network S receive the encrypted data, obtain the emergency information from the encrypted data by using the shared quantum key K, and The emergency information is sent to the information receiver R.

进一步地,所述应急信息接收步骤可以设置成:Further, the emergency information receiving step can be set to:

使信息接收机R接收所述加密数据;causing the information receiver R to receive the encrypted data;

将存储有所述共享量子密钥K的保密芯片连接所述信息接收机R以向其提供所述共享量子密钥K,并且使所述信息接收机R利用所述共享量子密钥K从所述加密数据中获得所述应急信息;或者,The secret chip storing the shared quantum key K is connected to the information receiver R to provide it with the shared quantum key K, and the information receiver R uses the shared quantum key K to obtain the obtain the emergency information from the encrypted data; or,

将存储有所述共享量子密钥K的保密芯片连接所述信息接收机R以接收所述加密数据,利用所述共享量子密钥K从所述加密数据中获得所述应急信息,并将所述应急信息发送给所述信息接收机R。Connect the security chip storing the shared quantum key K to the information receiver R to receive the encrypted data, obtain the emergency information from the encrypted data by using the shared quantum key K, and use the shared quantum key K to obtain the emergency information from the encrypted data. The emergency information is sent to the information receiver R.

进一步地,所述密钥分配步骤可以设置成:使所述多个应急通信终端中的每一个应急通信终端的共享量子密钥彼此不同;Further, the key distribution step may be set to: make the shared quantum keys of each emergency communication terminal in the plurality of emergency communication terminals different from each other;

所述应急信息发送步骤被进一步设置成:所述多个应急通信终端中的一个或多个利用所述共享量子密钥将所述应急信息形成为所述第一加密数据,并向外发送所述第一加密数据;The step of sending the emergency information is further configured to: one or more of the plurality of emergency communication terminals use the shared quantum key to form the emergency information into the first encrypted data, and send the information to the outside. the first encrypted data;

所述应急信息接收步骤被进一步设置成:使所述量子密钥供给服务网络S接收所述第一加密数据,利用所述多个应急通信终端中的一个或多个的共享量子密钥从所述第一加密数据中获得所述应急信息,并利用所述多个应急通信终端中的另一个或多个的共享量子密钥将所述应急信息形成为第二加密数据,将所述第二加密数据发送给所述多个应急通信终端中的另一个或多个;以及,所述多个应急通信终端中的另一个或多个利用所述共享量子密钥从所述第二加密数据中获得所述应急信息。The emergency information receiving step is further configured to: cause the quantum key supply service network S to receive the first encrypted data, and use the shared quantum key of one or more of the plurality of emergency communication terminals from all the emergency communication terminals. obtaining the emergency information from the first encrypted data, and using the shared quantum key of one or more of the plurality of emergency communication terminals to form the emergency information into second encrypted data, and converting the second encrypted data is sent to one or more of the plurality of emergency communication terminals; and another or more of the plurality of emergency communication terminals utilizes the shared quantum key from the second encrypted data Obtain the emergency information.

可选地,所述应急信息发送步骤还包括在加密之前对所述应急信息进行压缩以形成压缩的应急信息的步骤;以及,所述应急信息接收步骤还包括在解密之后对所述压缩的应急信息进行解压缩以获得所述应急信息的步骤。Optionally, the step of sending emergency information further includes the step of compressing the emergency information before encryption to form compressed emergency information; and the step of receiving emergency information further includes compressing the compressed emergency information after decryption. The step of decompressing the information to obtain said emergency information.

优选地,本发明的应急通信方法还可以包括将所述应急信息的级别确定为第一级别、第二级别和第三级别中的一种的步骤,其中:Preferably, the emergency communication method of the present invention may further comprise the step of determining the level of the emergency information as one of the first level, the second level and the third level, wherein:

当将所述应急信息的级别确定为所述第一级别时,对所述应急信息采用一次一密的加密方式;When the level of the emergency information is determined to be the first level, a one-time-one-pad encryption method is adopted for the emergency information;

当将所述应急信息的级别确定为所述第三级别时,对所述应急信息采用一业一密的加密方式;When the level of the emergency information is determined to be the third level, a one-in-one-one-key encryption method is adopted for the emergency information;

当将所述应急信息的级别确定为所述第二级别时,根据所述共享量子密钥的剩余量和消耗速率,选择对所述应急信息采用一次一密或者一业一密的加密方式。When the level of the emergency information is determined to be the second level, according to the remaining amount and consumption rate of the shared quantum key, a one-time-one-pass or one-time-one-pass encryption method is selected for the emergency information.

进一步地,当将所述应急信息的级别确定为所述第二级别时:Further, when the level of the emergency information is determined as the second level:

在所述共享量子密钥的剩余量大于第一预设值时,选择一次一密的加密方式;When the remaining amount of the shared quantum key is greater than the first preset value, select the encryption method of one-time pad;

在当前预设时间段内的所述共享量子密钥的消耗速率不高于业务发起后的所述共享量子密钥的消耗速率平均值的第二预设值,且所述共享量子密钥的剩余量大于第三预设值时,选择一次一密的加密方式;The consumption rate of the shared quantum key in the current preset time period is not higher than the second preset value of the average consumption rate of the shared quantum key after the service is initiated, and the consumption rate of the shared quantum key When the remaining amount is greater than the third preset value, select the encryption method of one-time pad;

在所述共享量子密钥的剩余量小于第四预设值时,选择一业一密的加密方式。When the remaining amount of the shared quantum key is less than the fourth preset value, an encryption method of one key and one key is selected.

更进一步地,在一次一密的加密方式下,当所述共享量子密钥的剩余量小于第五预设值时,在加密之前对所述应急信息进行压缩。Further, in the one-time pad encryption mode, when the remaining amount of the shared quantum key is less than the fifth preset value, the emergency information is compressed before encryption.

优选地,所述第一预设值为75%,所述预设时间段为1分钟,所述第二预设值为1/3,所述第三预设值为50%,所述第四预设值为50%,所述第五预设值为20%。Preferably, the first preset value is 75%, the preset time period is 1 minute, the second preset value is 1/3, the third preset value is 50%, and the first preset value is 50%. The fourth preset value is 50%, and the fifth preset value is 20%.

优选地,当在一次一密的加密方式和一业一密的加密方式之间切换时,向用户进行提示,并且约定用于切换后的加密方式的所述共享量子密钥的地址。Preferably, when switching between the one-time-one-pad encryption method and the one-time-one-pad encryption method, a prompt is given to the user, and the address of the shared quantum key used for the switched encryption method is agreed.

附图说明Description of drawings

下面结合附图对本发明的具体实施方式作进一步详细的说明。The specific embodiments of the present invention will be described in further detail below with reference to the accompanying drawings.

为了更清楚地说明本发明实施例或现有技术中的技术方案,下面将对实施例或现有技术描述中所需使用的附图作简单地介绍,显而易见,下面描述中的附图仅仅是本发明的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些附图来获得其他的附图。In order to explain the embodiments of the present invention or the technical solutions in the prior art more clearly, the following briefly introduces the accompanying drawings used in the description of the embodiments or the prior art. Obviously, the drawings in the following description are only For some embodiments of the present invention, for those of ordinary skill in the art, other drawings can also be obtained according to these drawings without any creative effort.

图1示意性地示出了用于本发明的应急通信方法中的密钥分配步骤的一种示例;Fig. 1 schematically shows an example of key distribution steps used in the emergency communication method of the present invention;

图2示意性地示出了根据本发明的应急通信方法的第一实施方式的第二示例的一种具体实施例;Fig. 2 schematically shows a specific embodiment of the second example of the first embodiment of the emergency communication method according to the present invention;

图3示意性地示出了根据本发明的应急通信方法的第一实施方式的第二示例的另一具体实施例;Fig. 3 schematically shows another specific embodiment of the second example of the first embodiment of the emergency communication method according to the present invention;

图4示意性地示出了根据本发明的应急通信方法的第一实施方式的第二示例的又一具体实施例;Fig. 4 schematically shows another specific embodiment of the second example of the first embodiment of the emergency communication method according to the present invention;

图5示意性地示出了根据本发明的应急通信方法的第二实施方式的一种示例。Fig. 5 schematically shows an example of a second embodiment of the emergency communication method according to the present invention.

具体实施方式Detailed ways

在下文中,本发明的示例性实施例将参照附图来详细描述。下面的实施例以举例的方式提供,以便充分传达本发明的精神给本发明所属领域的技术人员。因此,本发明不限于本文公开的实施例。Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings. The following embodiments are provided by way of example in order to fully convey the spirit of the invention to those skilled in the art to which the invention pertains. Accordingly, the present invention is not limited to the embodiments disclosed herein.

根据本发明的应急通信系统可以包括量子密钥供给服务网络S和多个应急通信终端Ti(i=1,…,n),其中,量子密钥供给服务网络S和应急通信终端Ti上分别存储有共享量子密钥KiThe emergency communication system according to the present invention may include a quantum key supply service network S and a plurality of emergency communication terminals T i (i=1, . . . , n), wherein the quantum key supply service network S and the emergency communication terminal T i Shared quantum keys K i are stored respectively.

图1示出了用于本发明的应急通信方法中的密钥分配步骤的一种示例。FIG. 1 shows an example of key distribution steps used in the emergency communication method of the present invention.

在图1的示例中,应急通信终端Ti可以从与量子密钥供给服务网络S有线连接的密钥充注终端Cj(j=1,…,m)中获取共享量子密钥KiIn the example of FIG. 1 , the emergency communication terminal Ti can obtain the shared quantum key K i from the key filling terminal C j ( j =1, . . . , m) wiredly connected to the quantum key supply service network S.

例如,量子密钥供给服务网络S可以同时与一个或多个密钥充注终端Cj形成有线连接,每个密钥充注终端Cj可以同时有线连接一个或多个应急通信终端Ti,以便向应急通信终端Ti充注量子密钥Ki。当充注完成后,可以将应急通信终端Ti与密钥充注终端Cj断开连接,从而使应急通信终端Ti恢复自由移动状态。For example, the quantum key supply service network S can form a wired connection with one or more key filling terminals C j at the same time, and each key filling terminal C j can be wired simultaneously with one or more emergency communication terminals T i , In order to charge the emergency communication terminal T i with the quantum key K i . After the charging is completed, the emergency communication terminal Ti can be disconnected from the key charging terminal C j , so that the emergency communication terminal Ti can be restored to a free movement state.

优选地,为保证量子密钥的新鲜度,量子密钥供给服务网络S可以每隔预设时间产生新的量子密钥,应急通信终端Ti可以例如通过接入任意一个密钥充注终端Cj获取新的量子密钥KiPreferably, in order to ensure the freshness of the quantum key, the quantum key supply service network S can generate a new quantum key every preset time, and the emergency communication terminal T i can recharge the terminal C by accessing any key, for example. j Get a new quantum key K i .

在本发明的第一实施方式中,各个应急通信终端Ti与量子密钥供给服务网络S的共享量子密钥Ki中具有相同的共享量子密钥K。In the first embodiment of the present invention , each emergency communication terminal Ti and the shared quantum key K i of the quantum key supply service network S have the same shared quantum key K.

此时,在本发明的应急信息发送步骤中,应急通信终端T中的一个或多个将作为发送方,以自动或人为触发的方式,利用共享量子密钥K对应急信息进行加密运算以产生加密数据,并将其向外发送。At this time, in the emergency information sending step of the present invention, one or more of the emergency communication terminals T will act as the sender, and use the shared quantum key K to encrypt the emergency information in an automatic or artificial manner to generate Encrypt data and send it out.

可选地,例如当应急信息的数据量较大时,作为发送方的应急通信终端T可以先对应急信息进行压缩以获得压缩的应急信息,再利用共享量子密钥K对压缩的应急信息进行加密,从而产生加密数据。Optionally, for example, when the data volume of the emergency information is large, the emergency communication terminal T as the sender can first compress the emergency information to obtain the compressed emergency information, and then use the shared quantum key K to perform the compressed emergency information. encrypted, resulting in encrypted data.

在第一示例中,在应急信息接收步骤中,应急通信终端T中的另一个或多个将作为接收方接收加密数据,并利用共享量子密钥K对其进行解密,从而获得应急信息。In the first example, in the emergency information receiving step, one or more of the emergency communication terminals T will receive the encrypted data as a receiver, and decrypt it using the shared quantum key K, thereby obtaining emergency information.

可选地,当应急信息为压缩状态时,作为接收方的应急通信终端还要对压缩的应急信息进行解压缩处理。Optionally, when the emergency information is in a compressed state, the emergency communication terminal serving as the receiver also performs decompression processing on the compressed emergency information.

本领域技术人员能够理解,第一示例尤其适合在某些战斗、侦查或信息采集任务中,任务个体之间需要时时交换分享现场信息,但又不希望被敌方破获,同时这些现场信息无需现场人工产生而是由机器自动采集或生成,且为内容格式固定的文本(例如位置信息)或二进制数据(例如声音、图片、视频等),接收者较为固定的应用场景。Those skilled in the art can understand that the first example is especially suitable for some combat, reconnaissance or information collection missions, where mission individuals need to exchange and share on-site information from time to time, but do not want to be cracked by the enemy, and these on-site information do not require on-site Manual generation is automatically collected or generated by machines, and is text (such as location information) or binary data (such as sound, picture, video, etc.) with a fixed content format, and the receiver is relatively fixed.

在第二示例中,应急通信系统还可以包括信息接收机R。In a second example, the emergency communication system may further comprise an information receiver R.

图2示出了第二示例的一种具体实施例。FIG. 2 shows a specific embodiment of the second example.

如图2所示,在该具体实施例中,在应急信息接收步骤中,量子密钥供给服务网络S接收加密数据,利用共享量子密钥K对其进行解密,并将应急信息汇总至信息接收机R。As shown in FIG. 2, in this specific embodiment, in the emergency information receiving step, the quantum key supply service network S receives the encrypted data, decrypts it using the shared quantum key K, and summarizes the emergency information to the information receiving Machine R.

可选地,当应急信息为压缩状态时,量子密钥供给服务网络S还要对压缩的应急信息进行解压缩处理。Optionally, when the emergency information is in a compressed state, the quantum key supply service network S further decompresses the compressed emergency information.

图3示出了第二示例的另一种具体实施例,其中,信息接收机R与量子密钥供给服务网络S、密钥充注终端C1~Cn均不在同一个物理环境内。FIG. 3 shows another specific embodiment of the second example, wherein the information receiver R, the quantum key supply service network S, and the key filling terminals C1 to Cn are not in the same physical environment.

如图3所示,在该具体实施例中,应急通信系统还可以包括存储有共享量子密钥K的具有运算功能的保密芯片(例如U盾)。As shown in FIG. 3 , in this specific embodiment, the emergency communication system may further include a security chip (such as a U shield) with a computing function that stores the shared quantum key K.

此时,在应急信息接收步骤中,信息接收机R将作为接收方接收加密数据。At this time, in the emergency information receiving step, the information receiver R will receive the encrypted data as a receiver.

保密芯片连接信息接收机R,向信息接收机R提供共享量子密钥K,信息接收机R利用共享量子密钥K对加密数据进行解密,以获得应急信息。或者,保密芯片连接信息接收机R,从信息接收机R处接收加密数据并利用共享量子密钥K对加密数据进行解密,以获得应急信息,并将应急信息发送给信息接收机R。The security chip is connected to the information receiver R, and provides the information receiver R with a shared quantum key K, and the information receiver R uses the shared quantum key K to decrypt the encrypted data to obtain emergency information. Alternatively, the security chip is connected to the information receiver R, receives encrypted data from the information receiver R, and decrypts the encrypted data by using the shared quantum key K to obtain emergency information, and sends the emergency information to the information receiver R.

可选地,当应急信息为压缩状态时,信息接收机R或者保密芯片还要对压缩的应急信息进行解压缩处理。Optionally, when the emergency information is in a compressed state, the information receiver R or the security chip further decompresses the compressed emergency information.

图4示出了第二示例的又一种具体实施例。FIG. 4 shows yet another specific embodiment of the second example.

如图4所示,在该具体实施例中,在应急信息接收步骤中,应急通信终端T中的另一个或多个将作为接收方接收加密数据,利用共享量子密钥K对其进行解密,获得应急信息并通过物理接口将其发送给信息接收机R。As shown in Figure 4, in this specific embodiment, in the emergency information receiving step, one or more of the emergency communication terminals T will receive the encrypted data as the receiver, and decrypt it using the shared quantum key K, The emergency information is obtained and sent to the information receiver R through the physical interface.

可选地,当应急信息为压缩状态时,作为接收方的应急通信终端T还要对压缩的应急信息进行解压缩处理。Optionally, when the emergency information is in a compressed state, the emergency communication terminal T serving as the receiver also needs to decompress the compressed emergency information.

本领域技术人员能够理解,第二示例尤其适合任务个体用于携带设备深入现场采集应急信息,应急信息最终需要汇集到信息接收机进一步分析后供参考决策,而无需现场个体之间互相交换数据的应用场景。Those skilled in the art can understand that the second example is especially suitable for task individuals to carry equipment to go deep into the field to collect emergency information. The emergency information finally needs to be collected into the information receiver for further analysis for reference and decision-making, without the need for on-site individuals to exchange data with each other. application scenarios.

在本发明的第一实施方式中,可以借助以下过程实现对应急信息的加解密处理。In the first embodiment of the present invention, the encryption and decryption processing of emergency information can be realized by the following procedures.

例如,在应急信息发送步骤中,作为发送方的应急通信终端T生成随机序列码,并将随机序列码发送给量子密钥供给服务网络S,用于申请量子密钥的使用范围;For example, in the emergency information sending step, the emergency communication terminal T as the sender generates a random sequence code, and sends the random sequence code to the quantum key supply service network S for applying for the use range of the quantum key;

量子密钥供给服务网络S基于该申请,根据密钥需求量在量子密钥K中确定未经标记的量子密钥区域,将此区域的起始地址及大小或起始地址及结束地址发送给作为发送方的应急通信终端;同时,将此区域进行标记(例如标记为“已使用”),并在该随机序列码与此标记区域之间建立对应关系。Based on the application, the quantum key supply service network S determines the unmarked quantum key area in the quantum key K according to the key demand, and sends the start address and size or start address and end address of this area to As the emergency communication terminal of the sender; at the same time, mark this area (for example, mark it as "used"), and establish a corresponding relationship between the random sequence code and this marked area.

作为发送方的应急通信终端利用与随机序列码对应的量子密钥区域中的量子密钥K对应急信息进行加密,并将加密数据和随机序列码一并发送。The emergency communication terminal as the sender encrypts the emergency information by using the quantum key K in the quantum key area corresponding to the random sequence code, and sends the encrypted data and the random sequence code together.

在应急信息接收步骤中,作为接收方的应急通信终端接收加密数据和随机序列码,并将随机序列码发送给量子密钥供给服务网络S,用于申请量子密钥的使用范围。In the emergency information receiving step, the emergency communication terminal as the receiver receives the encrypted data and the random sequence code, and sends the random sequence code to the quantum key supply service network S for applying for the use range of the quantum key.

量子密钥供给服务网络S根据随机序列码(例如通过搜索)确定相应的量子密钥区域,并将此量子密钥区域的起始地址和大小或起始地址及结束地址发送给作为接收方的应急通信终端。The quantum key supply service network S determines the corresponding quantum key area according to the random sequence code (for example, by searching), and sends the start address and size of this quantum key area or the start address and end address to the receiver. Emergency communication terminal.

作为接收方的应急通信终端利用与随机序列码对应的量子密钥区域中的量子密钥K对加密数据进行解密,获得应急信息。The emergency communication terminal as the receiver decrypts the encrypted data by using the quantum key K in the quantum key area corresponding to the random sequence code to obtain emergency information.

在本发明的第二实施方式中,各个应急通信终端Ti与量子密钥供给服务网络S的共享量子密钥Ki可以彼此不同。In the second embodiment of the present invention , the shared quantum keys K i of the respective emergency communication terminals Ti and the quantum key supply service network S may be different from each other.

图5示出了根据第二实施方式的应急通信系统的一个示例。FIG. 5 shows an example of an emergency communication system according to the second embodiment.

如图5所示,在应急信息发送步骤中,应急通信终端T中的一个或多个Ti将作为发送方,以自动或人为触发的方式,利用共享量子密钥Ki对应急信息进行加密运算以产生第一加密数据,并将其发送给量子密钥供给服务网络S。As shown in Figure 5, in the emergency information sending step, one or more T i in the emergency communication terminal T will act as the sender to encrypt the emergency information using the shared quantum key K i in an automatic or artificial triggering manner. The operation is performed to generate the first encrypted data and send it to the quantum key supply service network S.

可选地,例如当应急信息的数据量较大时,作为发送方的应急通信终端Ti可以先对应急信息进行压缩以获得压缩的应急信息,再利用共享量子密钥Ki对压缩的应急信息进行加密,从而产生加密数据。Optionally, for example, when the data volume of the emergency information is large, the emergency communication terminal T i as the sender can first compress the emergency information to obtain the compressed emergency information, and then use the shared quantum key K i to compress the emergency information. The information is encrypted, resulting in encrypted data.

在应急信息接收步骤中,量子密钥供给服务网络S利用共享量子密钥Ki对第一加密数据进行解密以获得应急信息(或者压缩的应急信息),并且利用与作为接收方的应急通信终端Tj共享的量子密钥Kj对应急信息(或者压缩的应急信息)进行加密以产生第二加密数据,并将第二加密数据发送给应急通信终端TjIn the emergency information receiving step, the quantum key supply service network S decrypts the first encrypted data with the shared quantum key K i to obtain emergency information (or compressed emergency information), and uses the emergency communication terminal as the receiver The quantum key K j shared by T j encrypts the emergency information (or compressed emergency information) to generate second encrypted data, and transmits the second encrypted data to the emergency communication terminal T j .

应急通信终端Tj接收到第二加密数据,利用共享量子密钥Kj对第二加密数据进行解密(或者还对压缩的应急信息进行解压缩),从而获得应急信息。The emergency communication terminal T j receives the second encrypted data, and uses the shared quantum key K j to decrypt the second encrypted data (or decompress the compressed emergency information), thereby obtaining the emergency information.

进一步地,本发明的应急通信系统还可以允许选择应急信息的级别,以确定用于应急信息的加密方式。Further, the emergency communication system of the present invention may also allow the selection of the level of emergency information to determine the encryption method used for the emergency information.

例如,应急信息的级别可以包括第一级别(例如高级别)、第二级别(例如一般级别)和第三级别(例如低级别)。For example, the levels of emergency information may include a first level (eg, a high level), a second level (eg, a general level), and a third level (eg, a low level).

在一个示例中,当应急信息为高级别时,应急通信系统可以以一次一密的方式对应急信息进行加密;当应急信息为低级别时,应急通信系统可以以一业一密的方式对应急信息进行加密。In one example, when the emergency information is high-level, the emergency communication system can encrypt the emergency information in a one-time pad; when the emergency information is a low-level, the emergency communication system can encrypt the emergency information in a one-time, one-key manner information is encrypted.

当应急信息为一般级别时,应急通信系统可以根据共享量子密钥的剩余量和消耗速率选择一次一密或者一业一密的方式对应急信息进行加密。When the emergency information is at a general level, the emergency communication system can choose a one-time-one-key or a one-time-one-key method to encrypt the emergency information according to the remaining amount and consumption rate of the shared quantum key.

具体而言,可以在共享量子密钥的剩余量大于第一预设值(其优选为75%)时,选择一次一密的加密方式。Specifically, when the remaining amount of the shared quantum key is greater than the first preset value (which is preferably 75%), the encryption method of the one-time pad can be selected.

还可以在当前预设时间段(其优选为一分钟)内的共享量子密钥消耗速率不高于整个业务发起后的共享量子密钥消耗速率平均值的第二预设值(其优选为1/3),且共享量子密钥的剩余量大于第三预设值(其优选为50%)时,选择一次一密的加密方式。It is also possible that the shared quantum key consumption rate within the current preset time period (which is preferably one minute) is not higher than the second preset value of the average value of the shared quantum key consumption rate after the initiation of the entire service (which is preferably 1 /3), and when the remaining amount of the shared quantum key is greater than the third preset value (which is preferably 50%), the one-time one-time pad encryption method is selected.

可以在共享量子密钥的剩余量小于第四预设值(其优选为50%)时,采用一业一密的加密方式。When the remaining amount of the shared quantum key is less than the fourth preset value (which is preferably 50%), the encryption method of one encryption and one encryption can be adopted.

进一步地,当采用一次一密的加密方式时,如果共享量子密钥的剩余量小于第五预设值(其优选为20%)时,应急通信终端将对应急信息进行压缩处理。Further, when the one-time pad encryption method is adopted, if the remaining amount of the shared quantum key is less than the fifth preset value (which is preferably 20%), the emergency communication terminal will compress the emergency information.

进一步地,当加密方式在一次一密和一业一密之间切换时,应急通信终端可以向用户进行提示,例如通过声音、振动或者图形等方式。Further, when the encryption mode is switched between the one-time-one pad and the one-office-one pad, the emergency communication terminal can prompt the user, for example, by means of sound, vibration, or graphics.

如果是业务进行过程中的加密形式转换,当一次一密向一业一密转换前,转换发起方向对端发送转换请求,包括使用一业一密方式后要使用的固定量子密钥在整个量子密钥中的位置(地址),这个位置的选取依据是根据共享量子密钥的当前使用位置及其消耗速率,加上双方通信过程中的消耗时间,再留出第六预设值(例如20%)的余量来选取的。If it is an encryption form conversion during the business process, before the conversion from one key to one key to one key, the conversion initiator sends a conversion request to the opposite end, including the fixed quantum key to be used after using the one key to one key. The position (address) in the key. The selection of this position is based on the current use position and consumption rate of the shared quantum key, plus the consumption time in the communication process between the two parties, and then set aside a sixth preset value (for example, 20 %) is selected.

例如,当前正在通信的两个应急通信终端T1和T2的密钥使用位置均在10000,终端T1由于剩余密钥量不足,向终端T2发送使用一业一密后要使用的固定密钥的位置。终端T1检测到此前每秒消耗密钥量为100,双方通信来回的时间为2秒,则T1向T2发起约定双方在转换为一业一密后,将使用10000+100×2×(1+20%)=10240处的密钥进行保密通信。For example, the key usage positions of the two emergency communication terminals T1 and T2 that are currently communicating are both at 10000. Due to the insufficient amount of remaining keys, terminal T1 sends the terminal T2 the position of the fixed key to be used after using one key and one key. . Terminal T1 detects that the amount of keys consumed per second is 100, and the time for the two parties to communicate back and forth is 2 seconds, then T1 initiates an agreement to T2 that the two parties will use 10000+100×2×(1+ 20%) = key at 10240 for secure communication.

T1与T2达成约定后,双方使用量子密钥的位置在10000-10240之间时,仍然使用一次一密的加密方式为双方的通信内容进行加密。当量子密钥使用到10240位置处时,双方同步转换为固定使用位于量子密钥的10240地址处的密钥对本次通信的剩余部分进行保密通信。After T1 and T2 reach an agreement, when the location of the quantum key used by both parties is between 10000 and 10240, the one-time-one-pad encryption method is still used to encrypt the communication content of the two parties. When the quantum key is used to the 10240 location, the two parties will synchronously switch to using the key located at the 10240 address of the quantum key to secure the remaining part of this communication.

如果在业务进行过程中发生从一业一密向一次一密的转换,则转换发起方向对端发送转换请求,包括开始转换的业务数据包序号。双方约定好之后,自约定的业务数据包开始,沿着当前固定使用的量子密钥地址处,继续开始向下按照一次一密的方式对每个业务数据包进行加解密。If the conversion from one industry-one-key to one-time-one key occurs during the process of service, the conversion initiator sends a conversion request to the opposite end, including the sequence number of the service data packet to start conversion. After the two parties agree, starting from the agreed business data packet, along the current fixed quantum key address, continue to encrypt and decrypt each business data packet in a one-time-one-key manner.

在应急通信过程中,有时候需要平衡信息的高安全性和密钥的使用量,加之千变万化的应急通信现场状态,在如何使用密钥的问题上,完全使用手动设置或完全使用程序判断都可能存在问题。本实施例综合考虑了用户预判及现场判断、密钥消耗量和消耗速率等因素,让应急通信终端根据参数要素计算采用何种压缩及加密方式,从而达到各要素的平衡优化,更好地保障保密通信过程。In the process of emergency communication, sometimes it is necessary to balance the high security of information and the amount of use of keys, coupled with the ever-changing state of the emergency communication site, on the issue of how to use keys, it is possible to use manual settings or complete program judgment. There is a problem. This embodiment comprehensively considers factors such as user pre-judgment and on-site judgment, key consumption and consumption rate, and allows the emergency communication terminal to calculate which compression and encryption method to use according to the parameter elements, so as to achieve balanced optimization of each element and better Safeguard the confidential communication process.

借助本发明的应急通信方法,可以针对特殊应急通信场合,基于量子密钥实现对应急信息的“去中心化”+双向流动的高强度安全保护,使得受加密保护的应急信息不再局限于“中心广播-终端接收”式模型;同时还提出了应急通信场景下数据传输安全性和实时可用性的平衡方案。With the emergency communication method of the present invention, for special emergency communication occasions, "decentralization" + two-way flow high-strength security protection of emergency information can be realized based on quantum keys, so that the emergency information protected by encryption is no longer limited to "decentralization" of emergency information. "Central broadcast-terminal receiving" model; at the same time, a balanced scheme of data transmission security and real-time availability in emergency communication scenarios is also proposed.

尽管前面结合附图通过具体实施例对本发明进行了说明,但是,本领域技术人员容易认识到,上述实施例仅仅是示例性的,用于说明本发明的原理,其并不会对本发明的范围造成限制,本领域技术人员可以对上述实施例进行各种组合、修改和等同替换,而不脱离本发明的精神和范围。Although the present invention has been described above through specific embodiments in conjunction with the accompanying drawings, those skilled in the art will readily recognize that the above-mentioned embodiments are merely exemplary, used to illustrate the principles of the present invention, and do not limit the scope of the present invention. As a limitation, those skilled in the art can make various combinations, modifications and equivalent substitutions to the above embodiments without departing from the spirit and scope of the present invention.

Claims (16)

1.一种基于量子密钥的应急通信方法,其包括:1. A quantum key-based emergency communication method, comprising: 密钥分配步骤:在多个应急通信终端中的每一个应急通信终端Ti与量子密钥供给服务网络S之间提供共享量子密钥KiKey distribution step: providing a shared quantum key K i between each emergency communication terminal Ti in the plurality of emergency communication terminals and the quantum key supply service network S; 应急信息发送步骤:基于自动或者人为触发,使所述应急通信终端Ti利用所述共享量子密钥Ki将应急信息形成为加密数据,并向外发送所述加密数据;以及,The emergency information sending step: based on automatic or artificial triggering, the emergency communication terminal T i uses the shared quantum key K i to form the emergency information into encrypted data, and sends the encrypted data to the outside; and, 应急信息接收步骤:接收所述加密数据,并利用所述共享量子密钥Ki从所述加密数据中获得所述应急信息。The step of receiving emergency information: receiving the encrypted data, and using the shared quantum key K i to obtain the emergency information from the encrypted data. 2.如权利要求1所述的应急通信方法,其中,所述密钥分配步骤进一步设置成:2. The emergency communication method according to claim 1, wherein the key distribution step is further set to: 在所述量子密钥供给服务网络S中生成量子密钥;generating a quantum key in the quantum key supply service network S; 在所述量子密钥供给服务网络S与密钥充注终端之间建立有线连接;以及,establishing a wired connection between the quantum key supply service network S and the key charging terminal; and, 将所述应急通信终端Ti与所述密钥充注终端连接,以获取所述共享量子密钥KiConnect the emergency communication terminal Ti with the key filling terminal to obtain the shared quantum key K i . 3.如权利要求2所述的应急通信方法,其中,所述密钥分配步骤还包括,使所述量子密钥供给服务网络S定期更新所述量子密钥,从而更新所述应急通信终端Ti和所述量子密钥供给服务网络S中的所述共享量子密钥Ki的步骤。3. The emergency communication method according to claim 2, wherein the key distribution step further comprises: making the quantum key supply service network S periodically update the quantum key, thereby updating the emergency communication terminal T i and the quantum key supply the step of the shared quantum key K i in the service network S. 4.如权利要求1所述的应急通信方法,其中:4. The emergency communication method of claim 1, wherein: 所述密钥分配步骤被进一步设置成,使所述多个应急通信终端中的每一个应急通信终端Ti的共享量子密钥Ki之间具有相同的共享量子密钥K;并且,The key distribution step is further configured to make the shared quantum key K i of each emergency communication terminal T i in the plurality of emergency communication terminals have the same shared quantum key K; and, 所述应急信息发送步骤被进一步设置成,使所述多个应急通信终端中的一个或多个利用所述共享量子密钥K将所述应急信息形成为所述加密数据,并向外发送所述加密数据。The emergency information sending step is further configured to make one or more of the plurality of emergency communication terminals use the shared quantum key K to form the emergency information into the encrypted data, and send the encrypted data to the outside. the encrypted data. 5.如权利要求4所述的应急通信方法,其中,所述应急信息接收步骤被进一步设置成,使所述多个应急通信终端中的另一个或多个接收所述加密数据,并利用所述共享量子密钥K从所述加密数据中获得所述应急信息。5. The emergency communication method according to claim 4, wherein the emergency information receiving step is further configured to cause one or more of the plurality of emergency communication terminals to receive the encrypted data, and to utilize the encrypted data. The shared quantum key K obtains the emergency information from the encrypted data. 6.如权利要求5所述的应急通信方法,其中,6. The emergency communication method of claim 5, wherein, 所述应急信息发送步骤被进一步设置成:The emergency information sending step is further set as: 使所述多个应急通信终端中的一个或多个生成随机序列码,将所述随机序列码发送给所述量子密钥供给服务网络S,并提出量子密钥使用申请;causing one or more of the plurality of emergency communication terminals to generate a random sequence code, send the random sequence code to the quantum key supply service network S, and apply for the use of the quantum key; 所述量子密钥供给服务网络S根据所述量子密钥使用申请确定未使用的量子密钥区域,将所述量子密钥区域的起始地址及结束地址或起始地址及大小发送给所述多个应急通信终端中的一个或多个,同时将所述随机序列码与所述量子密钥区域进行对应,并将所述量子密钥区域标记为已使用;The quantum key supply service network S determines the unused quantum key area according to the quantum key use application, and sends the start address and end address or start address and size of the quantum key area to the One or more of the plurality of emergency communication terminals, at the same time, correspond the random sequence code to the quantum key area, and mark the quantum key area as used; 所述多个应急通信终端中的一个或多个利用与所述随机序列码对应的所述量子密钥区域中的共享量子密钥K将所述应急信息形成为所述加密数据,并将所述加密数据和所述随机序列码一并向外发送;One or more of the plurality of emergency communication terminals use the shared quantum key K in the quantum key area corresponding to the random sequence code to form the emergency information into the encrypted data, and use the shared quantum key K in the quantum key area corresponding to the random sequence code. The encrypted data and the random sequence code are sent out together; 并且,所述应急信息接收步骤被进一步设置成:And, the emergency information receiving step is further set to: 所述应急通信终端中的另一个或多个接收所述加密数据和所述随机序列码,并将所述随机序列码发送给所述量子密钥供给服务网络S;Another or more of the emergency communication terminals receive the encrypted data and the random sequence code, and send the random sequence code to the quantum key supply service network S; 所述量子密钥供给服务网络S根据所述随机序列码将所述量子密钥区域的起始地址及结束地址或起始地址及大小发送给所述应急通信终端中的另一个或多个;The quantum key supply service network S sends the start address and end address or start address and size of the quantum key area to one or more of the emergency communication terminals according to the random sequence code; 所述应急通信终端中的另一个或多个利用与所述随机序列码对应的所述量子密钥区域中的共享量子密钥K从所述加密数据中获得所述应急信息。Another or more of the emergency communication terminals obtain the emergency information from the encrypted data using the shared quantum key K in the quantum key area corresponding to the random sequence code. 7.如权利要求5所述的应急通信方法,其中,所述应急信息接收步骤还包括,使所述多个应急通信终端中的另一个或多个通过物理接口将所述应急信息发送给信息接收机R的步骤。7. The emergency communication method according to claim 5, wherein the step of receiving the emergency information further comprises: causing another or more of the plurality of emergency communication terminals to send the emergency information to the information through a physical interface Receiver R steps. 8.如权利要求4所述的应急通信方法,其中,所述应急信息接收步骤被进一步设置成:使所述量子密钥供给服务网络S接收所述加密数据,利用所述共享量子密钥K从所述加密数据中获得所述应急信息,并将所述应急信息发给信息接收机R。8. The emergency communication method according to claim 4, wherein the emergency information receiving step is further configured to: make the quantum key supply service network S receive the encrypted data, use the shared quantum key K The emergency information is obtained from the encrypted data, and the emergency information is sent to the information receiver R. 9.如权利要求4所述的应急通信方法,其中,所述应急信息接收步骤被进一步设置成:9. The emergency communication method of claim 4, wherein the emergency information receiving step is further configured to: 使信息接收机R接收所述加密数据;causing the information receiver R to receive the encrypted data; 将存储有所述共享量子密钥K的保密芯片连接所述信息接收机R以向其提供所述共享量子密钥K,并且使所述信息接收机R利用所述共享量子密钥K从所述加密数据中获得所述应急信息;或者,The secret chip storing the shared quantum key K is connected to the information receiver R to provide it with the shared quantum key K, and the information receiver R uses the shared quantum key K to obtain the obtain the emergency information from the encrypted data; or, 将存储有所述共享量子密钥K的保密芯片连接所述信息接收机R以接收所述加密数据,利用所述共享量子密钥K从所述加密数据中获得所述应急信息,并将所述应急信息发送给所述信息接收机R。Connect the security chip storing the shared quantum key K to the information receiver R to receive the encrypted data, obtain the emergency information from the encrypted data by using the shared quantum key K, and use the shared quantum key K to obtain the emergency information from the encrypted data. The emergency information is sent to the information receiver R. 10.如权利要求1所述的应急通信方法,其中,10. The emergency communication method of claim 1, wherein, 所述密钥分配步骤被进一步设置成:使所述多个应急通信终端中的每一个应急通信终端的共享量子密钥彼此不同;The key distribution step is further configured to make the shared quantum keys of each of the plurality of emergency communication terminals different from each other; 所述应急信息发送步骤被进一步设置成:所述多个应急通信终端中的一个或多个利用所述共享量子密钥将所述应急信息形成为所述第一加密数据,并向外发送所述第一加密数据;The step of sending the emergency information is further configured to: one or more of the plurality of emergency communication terminals use the shared quantum key to form the emergency information into the first encrypted data, and send the information to the outside. the first encrypted data; 所述应急信息接收步骤被进一步设置成:使所述量子密钥供给服务网络S接收所述第一加密数据,利用所述多个应急通信终端中的一个或多个的共享量子密钥从所述第一加密数据中获得所述应急信息,并利用所述多个应急通信终端中的另一个或多个的共享量子密钥将所述应急信息形成为第二加密数据,将所述第二加密数据发送给所述多个应急通信终端中的另一个或多个;以及,所述多个应急通信终端中的另一个或多个利用所述共享量子密钥从所述第二加密数据中获得所述应急信息。The emergency information receiving step is further configured to: cause the quantum key supply service network S to receive the first encrypted data, and use the shared quantum key of one or more of the plurality of emergency communication terminals from all the emergency communication terminals. obtaining the emergency information from the first encrypted data, and using the shared quantum key of one or more of the plurality of emergency communication terminals to form the emergency information into second encrypted data, and converting the second encrypted data is sent to one or more of the plurality of emergency communication terminals; and another or more of the plurality of emergency communication terminals utilizes the shared quantum key from the second encrypted data Obtain the emergency information. 11.如权利要求4-10中任一项所述的应急通信方法,其中:11. The emergency communication method according to any one of claims 4-10, wherein: 所述应急信息发送步骤还包括在加密之前对所述应急信息进行压缩以形成压缩的应急信息的步骤;以及,The emergency information sending step further includes the step of compressing the emergency information to form compressed emergency information before encryption; and, 所述应急信息接收步骤还包括在解密之后对所述压缩的应急信息进行解压缩以获得所述应急信息的步骤。The emergency information receiving step further includes the step of decompressing the compressed emergency information to obtain the emergency information after decryption. 12.如权利要求1-10中任一项所述的应急通信方法,其还包括将所述应急信息的级别确定为第一级别、第二级别和第三级别中的一种的步骤,其中:12. The emergency communication method according to any one of claims 1-10, further comprising the step of determining the level of the emergency information as one of a first level, a second level and a third level, wherein : 当将所述应急信息的级别确定为所述第一级别时,对所述应急信息采用一次一密的加密方式;When the level of the emergency information is determined to be the first level, a one-time-one-pad encryption method is adopted for the emergency information; 当将所述应急信息的级别确定为所述第三级别时,对所述应急信息采用一业一密的加密方式;When the level of the emergency information is determined to be the third level, a one-in-one-one-key encryption method is adopted for the emergency information; 当将所述应急信息的级别确定为所述第二级别时,根据所述共享量子密钥的剩余量和消耗速率,选择对所述应急信息采用一次一密或者一业一密的加密方式。When the level of the emergency information is determined to be the second level, according to the remaining amount and consumption rate of the shared quantum key, a one-time-one-pass or one-time-one-pass encryption method is selected for the emergency information. 13.如权利要求12所述的应急通信方法,其中当将所述应急信息的级别确定为所述第二级别时:13. The emergency communication method according to claim 12, wherein when the level of the emergency information is determined as the second level: 在所述共享量子密钥的剩余量大于第一预设值时,选择一次一密的加密方式;When the remaining amount of the shared quantum key is greater than the first preset value, select the encryption method of one-time pad; 在当前预设时间段内的所述共享量子密钥的消耗速率不高于业务发起后的所述共享量子密钥的消耗速率平均值的第二预设值,且所述共享量子密钥的剩余量大于第三预设值时,选择一次一密的加密方式;The consumption rate of the shared quantum key in the current preset time period is not higher than the second preset value of the average consumption rate of the shared quantum key after the service is initiated, and the consumption rate of the shared quantum key When the remaining amount is greater than the third preset value, select the encryption method of one-time pad; 在所述共享量子密钥的剩余量小于第四预设值时,选择一业一密的加密方式。When the remaining amount of the shared quantum key is less than the fourth preset value, an encryption method of one key and one key is selected. 14.如权利要求13所述的应急通信方法,其中,在一次一密的加密方式下,当所述共享量子密钥的剩余量小于第五预设值时,在加密之前对所述应急信息进行压缩。14. The emergency communication method according to claim 13, wherein, in a one-time pad encryption mode, when the remaining amount of the shared quantum key is less than a fifth preset value, the emergency information is encrypted before encryption. to compress. 15.如权利要求14所述的应急通信方法,其中,所述第一预设值为75%,所述预设时间段为1分钟,所述第二预设值为1/3,所述第三预设值为50%,所述第四预设值为50%,所述第五预设值为20%。15. The emergency communication method according to claim 14, wherein the first preset value is 75%, the preset time period is 1 minute, the second preset value is 1/3, the The third preset value is 50%, the fourth preset value is 50%, and the fifth preset value is 20%. 16.如权利要求13所述的应急通信方法,其中,当在一次一密的加密方式和一业一密的加密方式之间切换时,向用户进行提示,并且约定用于切换后的加密方式的所述共享量子密钥的地址。16. The emergency communication method as claimed in claim 13, wherein, when switching between the one-time-one-pad encryption method and the one-in-one-one-pad encryption method, a prompt is given to the user, and the encryption method for switching is agreed upon. address of the shared quantum key.
CN202011515495.3A 2020-12-21 2020-12-21 An Emergency Communication Method Based on Quantum Keys Pending CN114650528A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202011515495.3A CN114650528A (en) 2020-12-21 2020-12-21 An Emergency Communication Method Based on Quantum Keys

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202011515495.3A CN114650528A (en) 2020-12-21 2020-12-21 An Emergency Communication Method Based on Quantum Keys

Publications (1)

Publication Number Publication Date
CN114650528A true CN114650528A (en) 2022-06-21

Family

ID=81990930

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202011515495.3A Pending CN114650528A (en) 2020-12-21 2020-12-21 An Emergency Communication Method Based on Quantum Keys

Country Status (1)

Country Link
CN (1) CN114650528A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115834063A (en) * 2023-02-20 2023-03-21 广东广宇科技发展有限公司 Data compression encryption method based on quantum key

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104780040A (en) * 2015-04-06 2015-07-15 安徽问天量子科技股份有限公司 Handheld device encryption method and system based on quantum cryptography
CN207200722U (en) * 2017-05-15 2018-04-06 国家电网公司 A kind of satellite Emergency communication vehicle based on Data Encryption Techniques
CN108377188A (en) * 2018-03-27 2018-08-07 苏州新海宜电子技术有限公司 A kind of quantum cryptography system for extraordinary emergent self-organized network communication
CN109842485A (en) * 2017-11-26 2019-06-04 成都零光量子科技有限公司 A kind of quantum key service network system having center

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104780040A (en) * 2015-04-06 2015-07-15 安徽问天量子科技股份有限公司 Handheld device encryption method and system based on quantum cryptography
CN207200722U (en) * 2017-05-15 2018-04-06 国家电网公司 A kind of satellite Emergency communication vehicle based on Data Encryption Techniques
CN109842485A (en) * 2017-11-26 2019-06-04 成都零光量子科技有限公司 A kind of quantum key service network system having center
CN108377188A (en) * 2018-03-27 2018-08-07 苏州新海宜电子技术有限公司 A kind of quantum cryptography system for extraordinary emergent self-organized network communication

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
刘鸿雁 等: "量子加密技术在山东电力机动应急通信系统中的研究与应用", 《信息通信》, 30 September 2020 (2020-09-30) *
陈智雨 等: "基于电力量子保密通信的星地一体应急直播保障技术", 《电力信息与通信技术》, 31 December 2018 (2018-12-31) *

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115834063A (en) * 2023-02-20 2023-03-21 广东广宇科技发展有限公司 Data compression encryption method based on quantum key

Similar Documents

Publication Publication Date Title
CN101340443B (en) Session key negotiating method, system and server in communication network
CN1091988C (en) Digital radio transceiver with encrypted key storage
CN102916869B (en) Instant messaging method and system
US7284123B2 (en) Secure communication system and method for integrated mobile communication terminals comprising a short-distance communication module
CN109922047B (en) Image transmission system and method
CN104780040A (en) Handheld device encryption method and system based on quantum cryptography
WO2022199186A1 (en) Internet-of-things communication system based on quantum technology
WO1998001975A1 (en) Method, apparatus, and system for wireless communication and information storing medium
CN103548300A (en) Encryption device, encryption method and encryption program
CN106982419B (en) Single call end-to-end encryption method and system for broadband cluster system
CN104917807A (en) Resource transfer method, apparatus and system
CN106453391A (en) Long repeating data encryption and transmission method and system
CN112672342B (en) Data transmission method, device, equipment, system and storage medium
CN113612608A (en) Method and system for realizing cluster encryption of dual-mode interphone based on public network
CN115348579B (en) Voice encryption method applied to wireless earphone and encryption type wireless earphone
CN100454805C (en) Internal-core mode type encryption method and apparatus for computer telephone
CN106161224A (en) Method for interchanging data, device and equipment
CN101931623A (en) A secure communication method suitable for remote control with limited capabilities of the controlled terminal
CN112367165A (en) Serial port communication method and device, electronic equipment and computer readable medium
CN114650528A (en) An Emergency Communication Method Based on Quantum Keys
CN100479568C (en) Implementation scheme for secrecy phone of the smart mobile terminal
CN101621661A (en) Audio-video encryption and decryption transmission system
CN111277605B (en) Data sharing method and device, computer equipment and storage medium
CN111093060B (en) Protection device and protection method for video data acquisition and transmission safety
CN106533686B (en) Encrypted communication method and system, communication unit and client

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination