CN118555133A - A method to enhance the quantum security of transport layer security protocol - Google Patents

Abstract

The present application discloses a method for enhancing the anti-quantum security of a transport layer security protocol of a communication system. The method includes: obtaining a first quantum key and a quantum key identifier from a service node; performing post-quantum cryptographic encryption processing on the quantum key identifier to obtain a first encryption result, and sending the first encryption result to a network device; performing decryption processing on the received second encryption result to obtain a second decryption result; obtaining a first terminal handshake key and a first network device handshake key according to the first encryption result and the second decryption result; generating a second terminal handshake key and a second network device handshake key according to the first quantum key, the first terminal handshake key, the first network device handshake key, the first encryption result, and the second decryption result to encrypt the communication between the terminal and the network device. The terminal and the network device encrypt the communication using post-quantum cryptographic algorithms and quantum key distribution technology, significantly enhancing the ability to resist quantum computing attacks.

Description

A method to enhance the quantum security of transport layer security protocol

Technical Field

The present application relates to the field of network security, and more specifically, to a method for enhancing the anti-quantum security of a transport layer security protocol of a communication network.

Background Art

The leap in computing power represented by quantum computing has a significant impact on the security of related algorithms in classical cryptography. Understandably, with the realization of large-scale quantum computers, it will have a certain impact on key negotiation, encryption, signature and other applications in classical cryptography. Therefore, providing cryptographic technology that can resist quantum computing attacks has become an urgent problem to be solved.

Summary of the invention

The present application provides a method for enhancing the anti-quantum security of a transport layer security protocol of a communication network.

The embodiment of the present application provides a method for enhancing the anti-quantum security of a transport layer security protocol of a communication network, wherein the communication network includes a terminal and a network device, and the method is used for the terminal, and the method includes:

Obtaining a first quantum key and a quantum key identifier from a service node connected to the terminal;

Performing post-quantum cryptography encryption processing on the quantum key identifier, and sending a first encryption result of the post-quantum cryptography encryption processing to the network device;

decrypting a second encryption result received and sent by the network device to obtain a second decryption result, wherein the second encryption result is obtained based on the first encryption result;

Obtain a first terminal handshake key and a first network device handshake key according to the first encryption result and the second decryption result;

A second terminal handshake key and a second network device handshake key are generated according to the first quantum key, the first terminal handshake key, the first network device handshake key, the first encryption result, and the second decryption result to encrypt the communication between the terminal and the network device.

In this way, during the communication process between the terminal and the network device, the terminal and the network device obtain the quantum key and the quantum key identifier, and use the post-quantum cryptographic algorithm to encrypt the quantum key identifier to generate an anti-quantum key that can resist quantum computing attacks. The post-quantum cryptographic algorithm is a series of encryption algorithms designed to resist quantum computing attacks. At the same time, the terminal and the network device generate a master key by exchanging their own randomly generated random numbers, and then derive the master key to obtain the first terminal handshake key and the first network device handshake key. The terminal and the network device then integrate the quantum key, the terminal handshake key, the network device handshake key and the anti-quantum key for use in the communication between the terminal and the network device. In this way, the ability of the network communication between the terminal and the network device to resist quantum computing attacks is enhanced.

In some embodiments, the obtaining the first quantum key and the quantum key identifier from the service node accessing the terminal includes:

Using the service node to inject multiple keys into the cryptographic module of the terminal;

Sending a quantum key application to the service node, and randomly using one of the multiple keys injected into the cryptographic module as a protection key to protect the quantum key application;

receiving a quantum key encryption result obtained by the service node encrypting the first quantum key and the quantum key identifier according to the protection key, where the first quantum key is generated by a first network node connected to the service node and distributed to the service node, and the quantum key identifier is obtained by the first network node marking the first quantum key according to an identification code of the first network node and distributed to the service node;

The quantum key encryption result is decrypted to obtain the first quantum key and the quantum key identifier.

In this way, the service node is used to inject the key into the cryptographic module, and then a quantum key application is sent to the service node, which is encrypted and protected by a key randomly used from the cryptographic module as a protection key. Then, the receiving service node encrypts the first quantum key and the quantum key identifier according to the protection key to obtain the quantum key encryption result. The first quantum key is generated by the first network node accessing the service node and distributed to the service node. The quantum key identifier is obtained by the first network node marking the first quantum key according to the identification code of the first network node and distributed to the service node. The quantum key encryption result is decrypted to obtain the first quantum key and the quantum key identifier. In this way, the first quantum key and the quantum key identifier are obtained. The first quantum key can be used to generate a key with the ability to resist quantum computing attacks, and the quantum key identifier helps to use and manage the quantum key.

In some embodiments, performing post-quantum cryptography encryption processing on the quantum key identifier and sending a first encryption result of the post-quantum cryptography encryption processing to the network device includes:

Concatenating the quantum key identifier with a randomly generated first random number to obtain a first handshake message;

Processing the first handshake message and the first handshake random number in the first encryption result to generate a second handshake message;

Performing post-quantum cryptographic derivation processing on the second handshake message to generate a first handshake key;

Performing post-quantum cryptography encryption processing on the second handshake message to generate a first encrypted message in the first encryption result;

Concatenating the quantum key identifier and the first handshake random number to obtain a first verification message;

Performing post-quantum cryptographic signature processing on the first verification message to generate a first signature message in the first encryption result;

The first encryption result is sent to the network device.

In this way, the quantum key identifier and the randomly generated first random number are spliced to obtain a first handshake message. Next, the first handshake message and the first handshake random number in the first encryption result are XORed to generate a second handshake message in the first encryption result. Then, the second handshake message is subjected to post-quantum cryptographic derivation processing to generate a first handshake key, and the second handshake message is subjected to post-quantum cryptographic encryption processing to generate a first encrypted message in the first encryption result. The quantum key identifier and the first handshake random number are spliced to obtain a first verification message, and then the first verification message is subjected to post-quantum cryptographic signature processing to generate a first signature message in the first encryption result, and the first signature message is used to verify the authenticity and integrity of the data. Finally, the first encryption result is sent to the network device. The confidentiality of the quantum key identifier is increased by splicing the quantum key identifier with the first random number, and the quantum key identifier and its derivative products are processed using a post-quantum cryptographic algorithm to increase the complexity of the quantum key identifier by combining quantum key distribution technology with post-quantum cryptographic technology.

In some implementations, the decrypting the received second encryption result sent by the network device to obtain the second decryption result includes:

receiving the second encryption result sent by the network device, where the second encryption result is obtained by the network device performing post-quantum cryptography encryption processing on the first decryption result, and the first decryption result is obtained by the network device performing decryption processing on the first encryption result;

The second encryption result is decrypted to obtain a second decryption result, where the second decryption result includes a second handshake random number, a fourth handshake message, and a second signature message.

In this way, the second encryption result sent by the network device is received. The second encryption result is obtained by the network device encrypting the first decryption result, and the first decryption result is obtained by the network device decrypting the first encryption result. The second encryption result is decrypted to obtain a second decryption result, and the second decryption result includes a second handshake random number, a fourth handshake message, and a second signature message. In this way, the terminal determines the availability of the channel for communication with the network device and obtains the key information of the network device, which can be combined with the relevant key information of the terminal to generate a more secure key.

In certain embodiments, the method further comprises:

Obtaining a second handshake key according to the fourth handshake message;

A third handshake message and a quantum key identifier are obtained according to the fourth handshake message and the second handshake random number.

In this way, the second handshake key is obtained according to the fourth handshake message. Then, the third handshake message and the quantum key identifier are obtained according to the fourth handshake message and the second handshake random number. The second handshake key obtained in this way is used for subsequent key generation to obtain a key with good resistance to quantum computing attacks.

In certain embodiments, the method further comprises:

Obtain a second verification message according to the second signature message;

The second signature message is subjected to post-quantum cryptographic signature verification processing to confirm the correctness of the second verification message, where the second verification message is obtained by concatenating the quantum key identifier and the second handshake random number.

In this way, the second verification message is obtained according to the second signature message, and then the second signature message is subjected to post-quantum cryptographic signature verification. The post-quantum cryptographic signature verification of the second signature message ensures that the terminal can verify the identity of the network device and the integrity of the data, providing security for subsequent data transmission.

In some implementations, the first encryption result includes a first handshake random number, the second decryption result includes a second handshake random number, and obtaining a first terminal handshake key and a first network device handshake key according to the first encryption result and the second decryption result includes:

Generate a master key according to the first handshake random number and the second handshake random number;

A first terminal handshake key and a first network device handshake key are derived according to the master key.

In this way, a master key is generated according to the first handshake random number in the first encryption result and the second handshake random number in the second decryption result. Then, the first terminal handshake key and the first network device handshake key are derived according to the generated master key. The master key is generated by using the randomly generated random number, and then the master key is derived by using a cryptographic algorithm to generate the first terminal handshake key and the first network device handshake key for subsequent key derivation.

In some embodiments, generating a second terminal handshake key and a second network device handshake key according to the first quantum key, the first terminal handshake key, the first network device handshake key, the first encryption result, and the second decryption result to encrypt communication between the terminal and the network device includes:

Generate a second terminal handshake key according to the first quantum key, the first terminal handshake key, the first handshake key, and the second handshake key;

Generate a second network device handshake key according to the first quantum key, the first network device handshake key, the first handshake key, and the second handshake key;

The communication between the terminal and the network device is encrypted according to the second terminal handshake key and the second network device handshake key.

In this way, the second terminal key is generated according to the first terminal handshake key, the first quantum key, the first handshake key, and the second handshake key. Then, the second network device key is generated according to the first network device handshake key, the first quantum key, the first handshake key, and the second handshake key. The generated second terminal key and the second network device key are then used to encrypt the communication between the terminal and the network device. In this way, the ability of the communication between network devices to resist quantum computing attacks is enhanced by using the key generated by combining quantum key distribution technology and post-quantum cryptography technology, and the data transmitted during the communication process is protected.

The embodiment of the present application provides a method for enhancing the anti-quantum security of a transport layer security protocol of a communication network, wherein the communication network includes a terminal and a network device, and the method is used for the network device, and the method includes:

receiving a first encryption result of post-quantum cryptographic encryption processing performed by the terminal on a quantum key identifier, where the quantum key identifier is obtained by a cryptographic service node to which the terminal has accessed;

Decrypting the first encryption result to obtain a first decryption result;

Performing post-quantum cryptography encryption on the first decryption result to obtain a second encryption result;

Obtain a first terminal handshake key and a first network device handshake key according to the first decryption result and the second encryption result;

A second terminal handshake key and a second network device handshake key are generated according to a second quantum key, the first terminal handshake key, the first network device handshake key, the first decryption result, and the second encryption result to encrypt communication between the terminal and the network device.

In this way, during the communication process between the terminal and the network device, the terminal and the network device obtain the quantum key, and use the post-quantum cryptographic algorithm to encrypt the quantum key to generate an anti-quantum key that can resist quantum computing attacks. The post-quantum cryptographic algorithm is a series of encryption algorithms designed to resist quantum computing attacks. At the same time, the terminal and the network device generate a master key by exchanging their own randomly generated random numbers, and then derive the master key to obtain the first terminal handshake key and the first network device handshake key. The terminal and the network device then integrate the quantum key, the terminal handshake key, the network device handshake key and the anti-quantum key for use in the communication between the terminal and the network device. In this way, the ability of the network communication between the terminal and the network device to resist quantum computing attacks is enhanced.

In certain embodiments, the method further comprises:

accessing the second network node through a pre-established channel;

Load the security certificate of the terminal or the security certificate of the network device.

In this way, before data transmission with the terminal, the second network node is accessed through a pre-established channel, which can protect data during data transmission and reduce the risk of unauthorized access. Then, the security certificate of the terminal or the security certificate of the network device is loaded. After the security certificate is loaded, it will be used to establish and maintain a secure communication channel to enhance the security of data during transmission.

In some implementations, the first decryption result includes a second handshake message and a first handshake random number, and the method further includes:

Obtain a first handshake message according to the second handshake message and the first handshake random number;

The quantum key identifier is obtained according to the first handshake message.

In this way, the first handshake message is obtained according to the second handshake message and the first handshake random number, and then the quantum key identifier is obtained according to the first handshake message. In this way, the quantum key identifier is obtained, and the quantum key identifier can be used to apply for a quantum key.

In some embodiments, the first decryption result includes a first signed message, and the method further includes:

Obtain a first verification message according to the first signed message;

Performing post-quantum cryptographic signature verification on the first signature message to confirm that a correct first verification message is obtained, where the first verification message is formed by concatenating a first handshake random number and the quantum key identifier;

When the obtained quantum key identifier is correct, the second quantum key is obtained from the second network node connected to the network device.

In this way, the first signature message is processed with post-quantum cryptographic signature verification to confirm that the correct first verification message has been received, ensuring the integrity of the data and the legitimacy of the source. When the received first verification message is correct, that is, when the received quantum key identifier is correct, the network node of the access network device is requested to obtain the second quantum key through the quantum key identifier. This ensures that the obtained second quantum key matches the first quantum key of the first network device, and the quantum key is used to generate a more secure key.

In some implementations, performing post-quantum cryptographic encryption processing on the first decryption result to obtain a second encryption result includes:

Concatenating the quantum key identifier with a randomly generated second random number to obtain a third handshake message;

Processing the third handshake message and the second handshake random number in the second encryption result to generate a fourth handshake message;

Performing post-quantum cryptographic derivation processing on the fourth handshake message to generate a second handshake key;

Performing post-quantum cryptography encryption processing on the fourth handshake message to generate a second encrypted message in the second encryption result;

Concatenating the quantum key identifier and the second handshake random number to obtain a second verification message;

Performing post-quantum cryptographic signature processing on the second verification message to generate a second signature message in the second encryption result;

The second encryption result is sent to the terminal.

In this way, the quantum key identifier and the randomly generated second random number are spliced to obtain a third handshake message. Then, the third handshake message and the second handshake random number in the second encryption result are XORed to generate a fourth handshake message in the second encryption result. Next, the fourth handshake message is subjected to post-quantum cryptographic derivation processing to generate a second handshake key, and the fourth handshake message is subjected to post-quantum cryptographic encryption processing to generate a second encrypted message in the second encryption result. The quantum key identifier and the second handshake random number are then spliced to obtain a second verification message. Finally, the second verification message is subjected to post-quantum cryptographic signature processing to generate a second signature message in the second encryption result. The second encryption result is sent to the terminal. The confidentiality of the quantum key identifier is increased by splicing the quantum key identifier with the second random number, and the quantum key identifier and its derivatives are encrypted using a post-quantum cryptographic algorithm to increase the complexity of the quantum key identifier by combining quantum key distribution technology with post-quantum cryptographic technology.

In some implementations, the first decryption result includes a first handshake random number, the second encryption result includes a second handshake random number, and obtaining a first terminal handshake key and a first network device handshake key according to the first decryption result and the second encryption result includes:

Generate a master key according to the first handshake random number and the second handshake random number;

A first terminal handshake key and a first network device handshake key are derived according to the master key.

In this way, a master key is generated according to the first handshake random number in the first decryption result and the second handshake random number in the second encryption result. Then, the first terminal handshake key and the first network device handshake key are derived according to the generated master key. The master key is generated by using the randomly generated random number, and then the master key is derived by using a cryptographic algorithm to generate the first terminal handshake key and the first network device handshake key for subsequent key derivation.

In some embodiments, the first decryption result includes a second handshake message, and generating a second terminal handshake key and a second network device handshake key according to the second quantum key, the first terminal handshake key, the first network device handshake key, the first decryption result, and the second encryption result to encrypt communication between the terminal and the network device includes:

Performing post-quantum cryptographic derivation processing on the second handshake message to generate a first handshake key;

Generate a second terminal handshake key according to the second quantum key, the first terminal handshake key, the first handshake key, and the second handshake key;

Generate a second network device handshake key according to the second quantum key, the first network device handshake key, the first handshake key, and the second handshake key;

The communication between the terminal and the network device is encrypted according to the second terminal handshake key and the second network device handshake key.

In this way, the second handshake message is subjected to post-quantum cryptographic derivation processing to generate a first handshake key. A second terminal key is generated according to the first terminal handshake key, the second quantum key, the first handshake key, and the second handshake key. Next, a second network device key is generated according to the first network device handshake key, the second quantum key, the first handshake key, and the second handshake key. The generated second terminal key and the second network device key are then used to encrypt the communication between the terminal and the network device, thereby enhancing the ability of the communication between network devices to resist quantum computing attacks by using a key generated by combining quantum key distribution technology and post-quantum cryptography technology, and protecting the data transmitted during the communication process.

An embodiment of the present application provides a terminal, the terminal is used in a communication network based on the Internet Transport Layer Security Protocol, the communication network also includes a network device, and the terminal is configured as follows:

Obtaining a first quantum key and a quantum key identifier from a service node connected to the terminal;

Performing post-quantum cryptography encryption processing on the quantum key identifier, and sending a first encryption result of the post-quantum cryptography encryption processing to the network device;

decrypting the second encryption result received and sent by the network device to obtain a second decryption result;

Obtain a first terminal handshake key and a first network device handshake key according to the first encryption result and the second decryption result;

A second terminal handshake key and a second network device handshake key are generated according to the first quantum key, the first terminal handshake key, the first network device handshake key, the first encryption result, and the second decryption result to encrypt the communication between the terminal and the network device.

In this way, during the communication process between the terminal and the network device, the terminal and the network device obtain the quantum key, and use the post-quantum cryptographic algorithm to encrypt the quantum key to generate an anti-quantum key that can resist quantum computing attacks. The post-quantum cryptographic algorithm is a series of encryption algorithms designed to resist quantum computing attacks. At the same time, the terminal and the network device generate a master key by exchanging their own randomly generated random numbers, and then derive the master key to obtain the first terminal handshake key and the first network device handshake key. The terminal and the network device then integrate the quantum key, the terminal handshake key, the network device handshake key and the anti-quantum key for use in the communication between the terminal and the network device. In this way, the ability of the network communication between the terminal and the network device to resist quantum computing attacks is enhanced.

The embodiment of the present application provides a network device, the network device is used in a communication network based on the Internet Transport Layer Security Protocol, the communication network also includes a terminal, and the network device is configured as follows:

receiving a first encryption result of post-quantum cryptographic encryption processing performed by the terminal on a quantum key identifier, where the quantum key identifier is obtained by the terminal from an accessed cryptographic service node;

Decrypting the first encryption result to obtain a first decryption result;

Performing post-quantum cryptography encryption on the first decryption result to obtain a second encryption result;

Obtain a first terminal handshake key and a first network device handshake key according to the first decryption result and the second encryption result;

A second terminal handshake key and a second network device handshake key are generated according to a second quantum key, the first terminal handshake key, the first network device handshake key, the first decryption result, and the second encryption result to encrypt communication between the terminal and the network device.

In this way, during the communication process between the terminal and the network device, the terminal and the network device obtain the quantum key, and use the post-quantum cryptographic algorithm to encrypt the quantum key to generate an anti-quantum key that can resist quantum computing attacks. The post-quantum cryptographic algorithm is a series of encryption algorithms designed to resist quantum computing attacks. At the same time, the terminal and the network device generate a master key by exchanging their own randomly generated random numbers, and then derive the master key to obtain the first terminal handshake key and the first network device handshake key. The terminal and the network device then integrate the quantum key, the terminal handshake key, the network device handshake key and the anti-quantum key for use in the communication between the terminal and the network device. In this way, the ability of the network communication between the terminal and the network device to resist quantum computing attacks is enhanced.

An embodiment of the present application provides a communication system based on the Internet Transport Layer Security Protocol, wherein the communication system includes a terminal as described above, a network device as described above, and a quantum key distribution network, wherein the quantum key distribution network is configured to distribute quantum keys to the terminal or the network device.

An embodiment of the present application provides a terminal, which includes one or more processors and a memory, wherein the memory stores a computer program, and when the computer program is executed by the processor, the above method is implemented.

An embodiment of the present application provides a network device, which includes one or more processors and a memory, wherein the memory stores a computer program, and when the computer program is executed by the processor, the above method is implemented.

The embodiment of the present application provides a computer-readable storage medium having a computer program stored thereon, and when the program is executed by a processor, the above method is implemented.

Additional aspects and advantages of the embodiments of the present application will be given in part in the description below, and in part will become apparent from the description below, or will be learned through the practice of the embodiments of the present application.

BRIEF DESCRIPTION OF THE DRAWINGS

The above and/or additional aspects and advantages of the present application will become apparent and easily understood from the description of the embodiments in conjunction with the following drawings, in which:

FIG1 is a schematic diagram of a method according to an embodiment of the present invention;

FIG2 is a schematic diagram of a method according to an embodiment of the present application;

FIG3 is a signaling diagram of a method according to an embodiment of the present application;

FIG4 is a second flow chart of the method according to the embodiment of the present application;

FIG5 is a third flow chart of the method according to the embodiment of the present application;

FIG6 is a fourth flow chart of the method according to an embodiment of the present application;

FIG7 is a fifth flow chart of a method according to an embodiment of the present application;

FIG8 is a sixth flow chart of the method according to the embodiment of the present application;

FIG9 is a seventh flow chart of a method according to an embodiment of the present application;

FIG10 is a flowchart of an eighth embodiment of the method of the present application;

FIG11 is a ninth flowchart of a method according to an embodiment of the present application;

FIG12 is a tenth flowchart of a method according to an embodiment of the present application;

FIG13 is a schematic diagram of the eleventh flow chart of the method according to the embodiment of the present application;

FIG14 is a twelfth flowchart of a method according to an embodiment of the present application;

FIG15 is a thirteenth schematic diagram of a flow chart of a method according to an embodiment of the present application;

FIG16 is a fourteenth flowchart of a method according to an embodiment of the present application;

FIG. 17 is a fifteenth flowchart of the method according to the embodiment of the present application.

DETAILED DESCRIPTION

The embodiments of the present application are described in detail below, and examples of the embodiments are shown in the accompanying drawings, wherein the same or similar reference numerals represent the same or similar elements or elements having the same or similar functions from beginning to end. The embodiments described below with reference to the accompanying drawings are exemplary and are only used to explain the embodiments of the present application, and cannot be understood as limiting the embodiments of the present application.

The leap in computing power represented by quantum computing has a significant impact on the security of related algorithms in classical cryptography. In other words, quantum computing poses a more direct and urgent threat to classical cryptography. For example, Shor's quantum algorithm can solve complex mathematical problems such as large integer decomposition and discrete logarithm solution in polynomial time, and quickly crack widely used public key cryptographic algorithms such as RSA, ECC, DSA, ElGamal, etc. Understandably, with the realization of large-scale quantum computers, it will have a certain impact on key negotiation, encryption, signature and other applications in classical cryptography.

The Internet transport layer is also threatened by quantum computing attacks. Although the original Transport Layer Security Protocol version 1.3 (TLS1.3) based on Elliptic Curve Diffie-Hellman Ephemeral (ECDHE) key exchange and Elliptic Curve Digital Signature Algorithm (ECDSA) has good security and forward secrecy, and can resist active attacks and passive eavesdropping, it still lacks the ability to resist quantum computing attacks. TLS1.3 is currently the most widely used cryptographic protocol for secure access, secure remote access, and Web security.

At present, the international technologies for dealing with the threat of quantum computing are mainly divided into two categories: "classical anti-quantum - post-quantum cryptographic algorithms" and "quantum anti-quantum - quantum cryptographic technology". Post-quantum cryptography (PQC) is designed based on mathematical problems that known quantum algorithms cannot solve in polynomial time, and its security depends on computational complexity. However, from a development perspective, the mathematical problems that post-quantum cryptography relies on still have questions such as whether they will remain difficult to solve in the future, whether the algorithm security is effective in the long term, and whether they are still immune to emerging quantum attacks. These all indicate that post-quantum cryptography has certain vulnerabilities and uncertainties. Quantum key distribution technology (QKD) achieves the goals of classical cryptography based on the quantum physics realization principle that a single quantum is indivisible and a quantum state cannot be cloned. Quantum key distribution technology refers to the method and process of information-theoretic secure key generation and distribution by the two communicating parties through the method of transmitting quantum states. Quantum key distribution technology has good resistance to quantum computing attacks, but the application cost of quantum key distribution technology is relatively high. Both post-quantum cryptographic algorithms and quantum key distribution technologies have the ability to resist quantum computing attacks, but each has its limitations. Therefore, providing relatively low-cost and highly secure cryptographic technology that can resist quantum computing attacks has become an urgent problem to be solved.

Based on the above problems, please refer to FIG1 . An embodiment of the present application provides a method for enhancing the anti-quantum security of a transport layer security protocol of a communication network. The communication network includes a terminal and a network device. The method is used in the terminal. The method includes:

011: Obtain a first quantum key and a quantum key identifier from a service node of the self-access terminal;

012: Perform post-quantum cryptographic encryption processing on the quantum key identifier, and send a first encryption result of the post-quantum cryptographic encryption processing to the network device;

013: decrypting the second encryption result received and sent by the network device to obtain a second decryption result, where the second encryption result is obtained based on the first encryption result;

014: Obtain a first terminal handshake key and a first network device handshake key according to the first encryption result and the second decryption result;

015: Generate a second terminal handshake key and a second network device handshake key according to the first quantum key, the first terminal handshake key, the first network device handshake key, the first encryption result and the second decryption result to encrypt the communication between the terminal and the network device.

The embodiment of the present application also provides a terminal, including a memory and a processor. The method of the embodiment of the present application can be implemented by the terminal of the embodiment of the present application. Specifically, a computer program is stored in the memory, and the processor is used to obtain a first quantum key and a quantum key identifier from a service node of the access terminal, and to perform post-quantum cryptographic encryption processing on the quantum key identifier, and to send the first encryption result of the post-quantum cryptographic encryption processing to the network device. The processor is also used to decrypt the second encryption result sent by the network device to obtain a second decryption result, the second encryption result is obtained according to the first encryption result, and the first terminal handshake key and the first network device handshake key are obtained according to the first encryption result and the second decryption result, and the second terminal handshake key and the second network device handshake key are generated according to the first quantum key, the first terminal handshake key, the first network device handshake key, the first encryption result, and the second decryption result to encrypt the communication between the terminal and the network device.

The embodiment of the present application also provides a terminal. The method of the embodiment of the present application can be implemented by the terminal of the embodiment of the present application. Specifically, the terminal includes an acquisition module, an encryption module, a decryption module and a derivation module. The acquisition module is used to obtain a first quantum key and a quantum key identifier from a service node of the access terminal. The encryption module is used to perform post-quantum cryptographic encryption processing on the quantum key identifier, and send the first encryption result of the post-quantum cryptographic encryption processing to the network device. The decryption module is used to decrypt the second encryption result received by the network device to obtain a second decryption result, and the second encryption result is obtained based on the first encryption result. The derivation module is used to obtain a first terminal handshake key and a first network device handshake key based on the first encryption result and the second decryption result. The derivation module is also used to generate a second terminal handshake key and a second network device handshake key based on the first quantum key, the first terminal handshake key, the first network device handshake key, the first encryption result, and the second decryption result to encrypt the communication between the terminal and the network device.

The present application provides a communication system based on the Internet Transport Layer Security Protocol, the communication system includes the terminal, network equipment and quantum key distribution network of the above-mentioned implementation mode, and the quantum key distribution network is configured to distribute quantum keys to the terminal or network equipment. Specifically, the quantum key distribution network includes network nodes and a quantum network link control center, and the network nodes are used to store quantum keys in the quantum key distribution network. The quantum network link center can establish quantum key distribution and relay links between network nodes according to the names of the network nodes, and the relay links are used for functions such as data transfer. The quantum key distribution network is used to implement services such as quantum key generation, quantum key relay, and quantum key provision.

Please refer to Figure 2. In some embodiments, the terminal and the network device communicate through a TLS record layer encryption channel, such as performing a TLS handshake protocol. The TLS record layer encryption channel refers to an encrypted communication channel established between the terminal and the network device for transmitting application layer data, and the TLS handshake protocol is a key part of the TLS1.3 protocol, which is used to establish the initial stage of secure communication between the client and the server. The terminal accesses a service node, which is a transfer station used by the client to connect to the network node. The service node is used to inject keys into the terminal and transfer and store quantum keys. When the terminal applies for a quantum key, the network node generates a quantum key through a quantum key distribution network and sends it to the service node, and the service node sends the quantum key to the terminal. When the terminal successfully applies and obtains the quantum key distributed by the network node, the quantum network link control center will synchronously control the network node involved in the network device to generate a quantum key, but it will not be sent to the network device immediately, but the network device needs to apply for a quantum key and distribute it after success. The corresponding relationship between the above-mentioned terminals, network devices, and network nodes is provided by the management and control platform.

It should be noted that the implementation method of this application uses FIPS203 Module-Lattice-based Key-Encapsulation Mechanism Standard as the PQC key encapsulation algorithm and FIPS 204 Module-Lattice-Based Digital Signature Standard as the PQC digital signature algorithm for example for explanation. The following description of operations related to the PQC algorithm refers to the above FIPS standard. Of course, in other implementation methods, other algorithms such as NewHope algorithm, Sidh algorithm, HQC algorithm, etc. can also be used as PQC related algorithms.

Specifically, in the implementation mode of the present application, the terminal sends a quantum key application, obtains a first quantum key and a quantum key identifier from a service node of the access terminal, the first quantum key and the quantum key identifier can be used to generate a key with the ability to resist quantum computing attacks, and the quantum key identifier helps to use and manage the quantum key. After obtaining the first quantum key and the quantum key identifier, the terminal performs post-quantum cryptographic encryption processing on the quantum key identifier, and sends the first encryption result of the post-quantum cryptographic encryption processing to the network device. By performing post-quantum cryptographic encryption processing on the quantum key identifier, the quantum key distribution technology is combined with the post-quantum cryptographic technology to improve the complexity of the key, and the encryption result is sent to the network device for sharing so that the communication data of the terminal and the network device in the communication network are consistent.

Then, the network device receives the first encryption result sent by the terminal, and decrypts the first encryption result to obtain the first decryption result. The network device then performs post-quantum cryptographic encryption on the first decryption result to obtain the second encryption result. After obtaining the second encryption result, the network device sends the second encryption result to the terminal so that the terminal can also share the network device information and the generated key. The network device then obtains the first terminal handshake key and the first network device key based on the first decryption result and the second encryption result, and generates the second terminal handshake key and the second network device handshake key based on the second quantum key, the first terminal handshake key, the first network device handshake key, the first decryption result, and the second encryption result to encrypt the communication between the terminal and the network device.

At the same time, the terminal receives the second encryption result sent by the network device, and decrypts the second encryption result to obtain the second decryption result. The terminal then obtains the first terminal handshake key and the first network device key based on the first encryption result and the second decryption result, and generates the second terminal handshake key and the second network device handshake key based on the first quantum key, the first terminal handshake key, the first network device handshake key, the first decryption result, and the second encryption result to encrypt the communication between the terminal and the network device.

The following is an example to illustrate the method of the implementation mode of the present application. In the embodiment of the present application, the client is a terminal, the secure access gateway is a network device, the cryptographic service node is a service node, the quantum network node is a network node, the client hello message is the first encryption result, and the second encryption result includes a server hello message. Please refer to Figure 3. The client receives the first quantum key QK_UUID1 and the quantum key identifier UUID_QK sent from the cryptographic service node. The quantum key identifier UUID_QK helps to manage and use the first quantum key QK_UUID1. After obtaining the first quantum key QK_UUID1 and the quantum key identifier UUID_QK, the client performs post-quantum cryptographic encryption on the quantum key identifier UUID_QK, and sends the client hello message processed by post-quantum cryptographic encryption to the network device.

Then, the security access gateway receives the client hello message sent by the client, and performs post-quantum cryptographic decryption processing on the client hello message to obtain a first decryption result. The security access gateway then performs post-quantum cryptographic encryption processing on the first decryption result to obtain a server hello message. After obtaining the server hello message, the security access gateway sends the server hello message to the client. The security access gateway obtains client_handshake_traffic_secret, i.e., the first terminal handshake key and server_handshake_traffic_secret, i.e., the first network device handshake key, based on the relevant information in the first decryption result and the relevant information in the serverhello message. Then, based on the second quantum key, server_handshake_traffic_secret, client_handshake_traffic_secret, the first decryption result, and the server hello message, client_handshake_traffic_secret2, i.e., the second terminal handshake key and server_handshake_traffic_secret2, i.e., the second network device handshake key, are generated to encrypt the communication between the client and the security access gateway and protect the communication data.

At the same time, the client receives the server hello message sent by the secure access gateway, and decrypts the server hello message to obtain the second decryption result. Subsequently, the client obtains client_handshake_traffic_secret, i.e., the first terminal handshake key and server_handshake_traffic_secret, i.e., the first network device handshake key, according to the client hello message and the second decryption result. The client then generates client_handshake_traffic_secret2, i.e., the second terminal handshake key and server_handshake_traffic_secret2, i.e., the second network device handshake key, according to the first quantum key, server_handshake_traffic_secret, client_handshake_traffic_secret, the relevant key in the client hello message, and the second decryption result, to encrypt the communication between the client and the secure access gateway and protect the communication data. In this way, it is ensured that even in the face of possible threats from quantum computers, the TLS handshake between the client and the secure access gateway can still provide secure data transmission. By using post-quantum cryptography algorithms and quantum key distribution technology, communications can be more secure against possible threats from quantum computers.

In summary, in the anti-quantum security enhancement method, communication system, terminal and network device of the transport layer security protocol of the communication network of the implementation mode of the present application, for the communication process between the terminal and the network device, the terminal and the network device apply for a quantum key and a quantum key identifier, and use a post-quantum cryptographic algorithm to encrypt the quantum key identifier to generate an anti-quantum key that can resist quantum computing attacks. The post-quantum cryptographic algorithm is a series of encryption algorithms designed to resist quantum computing attacks. At the same time, the terminal and the network device generate a master key by exchanging their own randomly generated random numbers, and then derive the master key to obtain a first terminal handshake key and a first network device handshake key. The terminal and the network device then fuse the quantum key, the terminal handshake key, the network device handshake key and the anti-quantum key for use in the communication between the terminal and the network device. In this way, the ability of the network communication between the terminal and the network device to resist quantum computing attacks is enhanced.

Referring to FIG. 4 , in some embodiments, step 011 (obtaining a first quantum key and a quantum key identifier from a service node of an access terminal) includes:

0111: Use the service node to inject multiple keys into the terminal's cryptographic module;

0112: Send a quantum key application to the service node, and randomly use one of the multiple keys injected into the cryptographic module as the protection key to protect the quantum key application;

0113: receiving a quantum key encryption result obtained by the service node encrypting the first quantum key and the quantum key identifier according to the protection key, wherein the first quantum key is generated by the first network node accessing the service node and distributed to the service node, and the quantum key identifier is obtained by the first network node marking the first quantum key according to the identification code of the first network node and distributed to the service node;

0114: Decrypt the quantum key encryption result to obtain a first quantum key and a quantum key identifier.

In certain embodiments, the charging module is used to use the service node to perform key charging on the cryptographic module, the application module is used to send a quantum key application to the service node, the quantum key application is protected by the service node using the key of the cryptographic module randomly as a protection key, the receiving module is used to receive the quantum key encryption result obtained by the service node encrypting the first quantum key and the quantum key identifier according to the protection key, the first quantum key is generated by the first network node accessing the service node and distributed to the service node, the quantum key identifier is obtained by the first network node annotating the first quantum key according to the identification code of the first network node and distributed to the service node. The decryption module is used to decrypt the quantum key encryption result to obtain the first quantum key and the quantum key identifier.

In some embodiments, the processor is further used to use the service node to perform key filling on the cryptographic module, and to send a quantum key application to the service node, and the quantum key application is protected by the service node using the key of the cryptographic module as a protection key at random. In addition, the processor can also be used to receive the first quantum key and quantum key identifier distributed by the service node according to the quantum key application, the first quantum key is generated by the first network node accessing the service node and distributed to the service node, the quantum key identifier is obtained by the first network node by marking the first quantum key according to the identification code of the first network node and distributed to the service node, and the distribution process of the first quantum key and the quantum key identifier is encrypted by the protection key to protect the first quantum key and the quantum key identifier.

Specifically, the terminal uses the service node to charge the key in the cryptographic module so that the key in the cryptographic module is sufficient and will not affect the use. The terminal sends a quantum key application to the service node, and the quantum key application is encrypted and protected by using a key randomly used from the cryptographic module as a protection key. Subsequently, the terminal receives the quantum key encryption result obtained by the service node encrypting the first quantum key and the quantum key identifier according to the protection key. The first quantum key is generated by the first network node accessing the service node and distributed to the service node. The quantum key identifier is obtained by the first network node marking the first quantum key according to the identification code of the first network node and distributed to the service node. The terminal then decrypts the quantum key encryption result to obtain the first quantum key and the quantum key identifier. In this way, the first quantum key and the quantum key identifier are obtained. The first quantum key can be used to generate a key with the ability to resist quantum computing attacks. The quantum key identifier helps to use and manage the quantum key.

Continuing with the above example, the personal password module is a password module. Please refer to Figure 3 again. The client uses the password service node to charge the personal password module with a pre-shared key, with a total capacity of 1M bits of keys (128 bits in size). The personal password module used in this embodiment is a smart password key (HSM). In other schemes, other personal password modules such as virtual security modules (VSM) can be used. Then, the client sends a quantum key application to the password service node, and randomly uses a key in the smart password key as a protection key. One protection method is that the client uses the SM3 algorithm to perform a hash operation on the key ID and the application content. After that, the password service node uses the protection key to calculate HMAC (Hash-based Message Authentication Code) to ensure the integrity and authenticity of the data. HMAC is a method that uses hash functions and keys to provide data integrity and source authentication.

After the quantum key application is successful, the client receives the quantum key encryption result obtained by the cryptographic service node by encrypting the first quantum key QK_UUID1 and the quantum key identifier UUID_QK according to the protection key. The first quantum key QK_UUID1 is generated by the first quantum network node connected to the cryptographic service node and distributed to the cryptographic service node. The quantum key identifier UUID_QK is obtained by the first quantum network node marking the first quantum key according to its unique universal identification code and distributed to the cryptographic service node. The client then decrypts the quantum key encryption result according to the protection key to obtain the first quantum key QK_UUID1 and the quantum key identifier UUID_QK. This ensures the security of the quantum key application process. By using random keys and hash functions, the client can ensure the integrity and authenticity of the application content during the transmission process. In this way, the first quantum key and quantum key identifier are obtained. The first quantum key can be used to generate a key with the ability to resist quantum computing attacks. The quantum key identifier helps to use and manage quantum keys.

Please refer to FIG. 5 . In some embodiments, step 012 (performing post-quantum cryptography encryption processing on the quantum key and sending the first encryption result after the post-quantum cryptography encryption processing to the network device) includes:

0121: concatenate the quantum key identifier and the randomly generated first random number to obtain a first handshake message;

0122: Process the first handshake message and the first handshake random number in the first encryption result to generate a second handshake message;

0123: Perform post-quantum cryptographic derivation processing on the second handshake message to generate the first handshake key;

0124: Perform post-quantum cryptography encryption processing on the second handshake message to generate a first encrypted message in the first encryption result;

0125: concatenate the quantum key identifier and the first handshake random number to obtain a first verification message;

0126: Perform post-quantum cryptographic signature processing on the first verification message to generate a first signature message in the first encryption result;

0127: Send the first encryption result to the network device.

In some embodiments, the splicing module is used to splice the quantum key identifier and the randomly generated first random number to obtain a first handshake message. The processing module is used to process the first handshake message and the first handshake random number in the first encryption result to generate a second handshake message. The derivation module is used to perform post-quantum cryptographic derivation processing on the second handshake message to generate a first handshake key. The encryption module is used to perform post-quantum cryptographic encryption processing on the second handshake message to generate a first encrypted message in the first encryption result. The splicing module is also used to splice the quantum key identifier and the first handshake random number to obtain a first verification message. The signature module is used to perform post-quantum cryptographic signature processing on the first verification message to generate a first signature message in the first encryption result. The sending module is used to send the first encryption result to the network device.

In some embodiments, the processor is further configured to concatenate the quantum key identifier with the randomly generated first random number to obtain a first handshake message, process the first handshake message with the first handshake random number in the first encryption result to generate a second handshake message, and perform post-quantum cryptographic derivation processing on the second handshake message to generate a first handshake key. In addition, the processor is further configured to perform post-quantum cryptographic encryption processing on the second handshake message to generate a first encrypted message in the first encryption result, concatenate the quantum key identifier with the first handshake random number to obtain a first verification message, and perform post-quantum cryptographic signature processing on the first verification message to generate a first signature message in the first encryption result and send the first encryption result to the network device.

Specifically, the terminal performs a splicing process on the quantum key identifier and the randomly generated first random number to obtain a first handshake message, which increases the complexity of the quantum key identifier. Then, the terminal processes the first handshake message and the first handshake random number in the first encryption result to generate a second handshake message. The terminal then performs a post-quantum cryptographic derivation process on the second handshake message to generate a first handshake key, which has the ability to resist quantum computing attacks. Then, the terminal performs a post-quantum cryptographic encryption process on the second handshake message to generate a first encrypted message in the first encryption result. The terminal then performs a splicing process on the quantum key identifier and the first handshake random number to obtain a first verification message. Finally, the terminal performs a post-quantum cryptographic signature process on the first verification message to generate a first signature message in the first encryption result and sends the first encryption result to the network device. The first signature message is used to ensure the integrity of the message and the authenticity of the source, and any unauthorized access and tampering will be detected. In this way, the confidentiality of the quantum key identifier is increased by splicing with the first random number, and the quantum key identifier and its derivative products are processed using a post-quantum cryptographic algorithm to increase the complexity of the quantum key identifier by combining quantum key distribution technology with post-quantum cryptographic technology.

Continuing with the above example, the client integrates the PQC post-quantum cryptographic algorithm with the ECDHA key exchange and ECDSA signature of the classic PKI system, and organically combines the PQC key encapsulation and PQC digital signature algorithm with anti-quantum means such as QKD quantum key distribution. The client hello message is the first encryption result. Certificate Authorities is used to list the certificate authorities trusted by the client. DN is a string used to uniquely identify the certificate holder, including organization, geographic location, country and other information. Please refer to Figure 3 again. The client initiates a TLS handshake. When it has a post-quantum cryptography (PQC) certificate, the DN name of the CA (certificate authority) that issued the PQC certificate is added to the extension of type "Certificate Authorities". Two types of extensions are extended: pqc_key_share and pqc_signature.

The content of pqc_key_share includes the algorithm ID, algorithm parameters and key encapsulation information of the PQC key encapsulation.

The content of pqc_signature includes the algorithm ID, algorithm parameters and digital signature information of the PQC digital signature.

When there is no post-quantum cryptography certificate, the client does not add the DN name of the CA (certificate authority) that issued the PQC certificate to the extension of type "Certificate Authorities", and the secure access gateway does not process it. When there is no PQC certificate, the client and the secure access gateway can import each other's PQC signature public key and encryption public key in an offline manner. This method ensures that the communication between the client and the secure access gateway is based on mutual trust. After that, add extensions of the pqc_key_share and pqc_signature types based on the original client hello message of the TLS1.3 protocol.

Then, the client concatenates the quantum key identifier UUID_QK with the first random number r1 (128 bits) randomly generated by the client to obtain the first handshake message m1. Subsequently, the client XORs the first handshake message m1 with the first handshake random number R1 in the clienthello message to generate the second handshake message m2. Next, the client uses the second handshake message m2 as the encrypted message m in the PQC key encapsulation algorithm, runs the G function of the PQC algorithm to obtain the first handshake key K1, and uses the encapsulation information as the extension_data content of pqc_key_share. The second handshake message m2 is then post-quantum cryptographically encrypted to generate the first encrypted message in the client hello message. The client concatenates the quantum key identifier UUID_QK with the first handshake random number R1 to obtain the first verification message, and uses the first verification message as the signed message M in the PQC signature algorithm for PQC signature protection to generate the first signature message M1 in the client hello message, and the signature information is used as the extension_data content of pqc_signature. Finally, the client sends the client hello message to the secure access gateway. In this way, the client increases the confidentiality of the quantum key identifier by concatenating the quantum key identifier UUID_QK with the randomly generated first random number, and uses a post-quantum cryptographic algorithm to process the quantum key identifier UUID_QK and its derivatives to increase the complexity of the quantum key identifier by combining quantum key distribution technology with post-quantum cryptography technology.

Please refer to FIG. 6 . In some embodiments, step 013 (decrypting the second encryption result received and sent by the network device to obtain a second decryption result, where the second encryption result is obtained based on the first encryption result) includes:

0131: receiving a second encryption result sent by the network device, where the second encryption result is obtained by the network device performing post-quantum cryptography encryption processing on the first decryption result, and the first decryption result is obtained by the network device performing decryption processing on the first encryption result;

0132: Decrypt the second encryption result to obtain a second decryption result, where the second decryption result includes the second handshake random number, the fourth handshake message and the second signature message.

In some embodiments, the receiving module is also used to receive a second encryption result sent by the network device, the second encryption result is obtained by the network device performing post-quantum cryptography encryption processing on the first decryption result, the first decryption result is obtained by the network device performing decryption processing on the first encryption result, the decryption module is also used to decrypt the second encryption result to obtain a second decryption result, the second decryption result includes a second handshake random number, a fourth handshake message and a second signature message.

In some embodiments, the processor is also used to receive a second encryption result sent by the network device, the second encryption result is obtained by the network device performing post-quantum cryptography encryption processing on the first decryption result, the first decryption result is obtained by the network device decrypting the first encryption result, and decrypting the second encryption result to obtain a second decryption result, the second decryption result includes a second handshake random number, a fourth handshake message and a second signature message.

Specifically, the terminal receives the second encryption result sent by the network device, and the second encryption result is obtained by the network device performing post-quantum cryptographic encryption processing on the first decryption result, and the first decryption result is obtained by the network device performing decryption processing on the first encryption result. Then, the terminal decrypts the second encryption result to obtain a second decryption result, and the second decryption result includes a second handshake random number, a fourth handshake message, and a second signature message. In this way, the terminal determines the availability of the channel for communication with the network device, and obtains the key information of the network device, which can be combined with the relevant key information of the terminal to generate a more secure key.

Continuing with the above example, the server hello message is the second encryption result. Please refer to Figure 3 again. The client receives the server hello message sent by the secure access gateway. The server hello message is obtained by the secure access gateway encrypting the first decryption result. The first decryption result is obtained by the secure access gateway decrypting the client hello message. Then, the client decrypts the server hello message to obtain the second decryption result. The second decryption result includes the second handshake random number R2, the fourth handshake message m4 and the second signature message M2. In this way, the client determines the availability of the channel for communication with the secure access gateway and obtains the key information of the secure access gateway. These key information can be combined with the relevant key information of the client to generate a more secure key.

Referring to FIG. 7 , in some embodiments, the method further comprises:

016: Obtain the second handshake key according to the fourth handshake message;

017: Obtain the third handshake message and the quantum key identifier according to the fourth handshake message and the second handshake random number.

In some embodiments, the derivation module is used to obtain the second handshake key according to the fourth handshake message, and to obtain the third handshake message and the quantum key identifier according to the fourth handshake message and the second handshake random number.

In some embodiments, the processor is further configured to obtain a second handshake key based on the fourth handshake message, and obtain a third handshake message and a quantum key identifier based on the fourth handshake message and the second handshake random number.

Specifically, the terminal obtains the second handshake key according to the fourth handshake message. Then, the terminal obtains the third handshake message and the quantum key identifier according to the fourth handshake message and the second handshake random number. The second handshake key obtained in this way is used for subsequent key generation to obtain a key with good resistance to quantum computing attacks.

Continuing with the above example, please refer to Figure 3 again. The client obtains the second handshake key K2 according to the fourth handshake message m4. Then, the client obtains the third handshake message m3 according to the fourth handshake message m4 and the second handshake random number R2 by XOR, and then uses the third handshake message m3 to obtain the quantum key identifier UUID_QK. In this way, the client obtains the second handshake key K2 for subsequent key generation to obtain a key with good resistance to quantum computing attacks.

Referring to FIG. 8 , in some embodiments, the method further comprises:

018: Obtain a second verification message according to the second signature message;

019: Perform post-quantum cryptographic signature verification on the second signature message to confirm the correctness of the second verification message, where the second verification message is obtained by concatenating the quantum key identifier and the second handshake random number.

In some embodiments, the processing module is used to obtain a second verification message based on the second signature message, and the signature verification module is used to perform post-quantum cryptographic signature verification on the second signature message to confirm the correctness of the second verification message, and the second verification message is obtained by concatenating the quantum key identifier and the second handshake random number.

In some embodiments, the processor is further used to obtain a second verification message based on the second signature message, and perform post-quantum cryptographic signature verification on the second signature message to confirm the correctness of the second verification message, where the second verification message is obtained by concatenating the quantum key identifier and the second handshake random number.

Specifically, the terminal obtains the second verification message based on the second signature message, and then performs post-quantum cryptographic signature verification on the second signature message to confirm the correctness of the second verification message. By performing signature verification, the terminal can confirm the identity of the network device and the integrity of the data, providing security for subsequent data transmission.

Continuing with the above example, please refer to Figure 3 again. The client obtains the second verification message based on the second signature message, and then performs post-quantum cryptographic signature verification on the second signature message M2 to confirm the correctness of the second verification message, that is, to confirm that the correct quantum key identifier UUID_QK and the second handshake random number R2 have been received. Through this process, the client and the secure access gateway achieve secure data exchange and communication, ensuring the confidentiality, integrity and authenticity of the data.

Please refer to FIG. 9 . In some implementations, the first encryption result includes a first handshake random number, and the second decryption result includes a second handshake random number. Step 014 (obtaining a first terminal handshake key and a first network device handshake key according to the first encryption result and the second decryption result) includes:

0141: Generate a master key based on the first handshake random number and the second handshake random number;

0142: Derive a first terminal handshake key and a first network device handshake key according to the master key.

In some embodiments, the derivation module is further used to generate a master key according to the first handshake random number and the second handshake random number, and to derive a first terminal handshake key and a first network device handshake key according to the master key.

In some embodiments, the processor is further configured to generate a master key according to the first handshake random number and the second handshake random number, and derive a first terminal handshake key and a first network device handshake key according to the master key.

Specifically, the terminal generates a master key according to the first handshake random number and the second handshake random number, and then derives the first terminal handshake key and the first network device handshake key according to the master key. The terminal generates a master key by using a randomly generated random number, and then uses a cryptographic algorithm to derive the master key to generate a first terminal handshake key and a first network device handshake key for subsequent key derivation.

Continuing with the above example, please refer to Figure 3 again. The client generates a master key based on the first handshake random number R1 and the second handshake random number R2, and then calculates the first terminal handshake key client_handshake_traffic_secret and the first network device handshake key server_handshake_traffic_secret according to the TLS1.3 protocol specification.

In this way, the client generates a master key by using a randomly generated random number, and then uses a cryptographic algorithm to derive the master key to generate a first terminal handshake key client_handshake_traffic_secret and a first network device handshake key server_handshake_traffic_secret for subsequent key derivation.

Please refer to FIG. 10 . In some embodiments, step 015 (generating a second terminal handshake key and a second network device handshake key according to the first quantum key, the first terminal handshake key, the first network device handshake key, the first encryption result, and the second decryption result to encrypt the communication between the terminal and the network device) includes:

0151: Generate a second terminal handshake key according to the first quantum key, the first terminal handshake key, the first handshake key, and the second handshake key;

0152: Generate a second network device handshake key according to the first quantum key, the first network device handshake key, the first handshake key, and the second handshake key;

0153: Encrypt the communication between the terminal and the network device according to the second terminal handshake key and the second network device handshake key.

In some embodiments, the derivation module is further used to generate a second terminal handshake key according to the first quantum key, the first terminal handshake key, the first handshake key, and the second handshake key, and to generate a second network device handshake key according to the first quantum key, the first network device handshake key, the first handshake key, and the second handshake key. The encryption module is also used to encrypt the communication between the terminal and the network device according to the second terminal handshake key and the second network device handshake key.

In some embodiments, the processor is also used to generate a second terminal handshake key based on the first quantum key, the first terminal handshake key, the first handshake key, and the second handshake key, and to generate a second network device handshake key based on the first quantum key, the first network device handshake key, the first handshake key, and the second handshake key, and to encrypt communication between the terminal and the network device based on the second terminal handshake key and the second network device handshake key.

Specifically, the terminal generates a second terminal handshake key according to the first quantum key, the first terminal handshake key, the first handshake key, and the second handshake key. Then, the second network device handshake key is generated according to the first quantum key, the first network device handshake key, the first handshake key, and the second handshake key. Finally, the communication between the terminal and the network device is encrypted according to the second terminal handshake key and the second network device handshake key. In this way, the ability of communication between network devices to resist quantum computing attacks is enhanced by using a key generated by combining quantum key distribution technology and post-quantum cryptography technology, and the data transmitted during the communication process is protected.

Continuing with the above example, the client generates the second terminal key client_handshake_traffic_secret2 according to the first terminal handshake key client_handshake_traffic_secret, the first quantum key QK_UUID1, the first handshake key K1, and the second handshake key K2. Then, the client generates the second network device key server_handshake_traffic_secret2 according to the first network device handshake key server_handshake_traffic_secret, the first quantum key QK_UUID1, the first handshake key K1, and the second handshake key K2. The generated second terminal key and the second network device key are then used to encrypt the communication between the terminal and the network device. In this way, the ability of the communication between network devices to resist quantum computing attacks is enhanced by using the key generated by combining quantum key distribution technology and post-quantum cryptography technology, and the data transmitted during the communication process is protected. After generating the second terminal key and the second network device key, the client and the secure access gateway carry out subsequent handshake messages under the protection of the second terminal key client_handshake_traffic_secret2 and the second network device key server_handshake_traffic_secret2 and their derived write_key and write_iv in accordance with the TLS1.3 protocol specification. When the PQC certificate is available, the client adds the PQC signature certificate and the PQC encryption certificate to the client Certificate message. The authentication scope of the CerficateVerify and Finished messages of the client and the secure access gateway covers the above newly added PQC related messages. The client and the gateway finally generate the client application traffic key client_application_traffic_secret and the gateway application traffic key server_application_traffic_secret and their derived write_key and write_iv for application data protection of the record layer protocol. The client application traffic key client_application_traffic_secret and the gateway application traffic key server_application_traffic_secret are used to encrypt the application data sent by the client to ensure the confidentiality and integrity of the data during transmission.

Please refer to FIG. 11 . The embodiment of the present application provides a method for enhancing the anti-quantum security of a transport layer security protocol of a communication network. The communication network includes a terminal and a network device. The method is used for the network device. The method includes:

021: receiving a first encryption result of a post-quantum cryptographic encryption process performed by a terminal on a quantum key identifier, where the quantum key identifier is obtained by a cryptographic service node to which the terminal has accessed;

022: Decrypt the first encryption result to obtain a first decryption result;

023: Perform post-quantum cryptography encryption processing on the first decryption result to obtain a second encryption result;

024: Obtain a first terminal handshake key and a first network device handshake key according to the first decryption result and the second encryption result;

025: Generate a second terminal handshake key and a second network device handshake key according to the second quantum key, the first terminal handshake key, the first network device handshake key, the first decryption result, and the second encryption result to encrypt the communication between the terminal and the network device.

The embodiment of the present application also provides a network device, including a memory and a processor. The method of the embodiment of the present application can be implemented by the network device of the embodiment of the present application. Specifically, a computer program is stored in the memory, and the processor is used to receive a first encryption result of a terminal performing post-quantum cryptographic encryption processing on a first quantum key, and the first quantum key is obtained by the cryptographic service node to which the terminal accesses. And the first encryption result is decrypted to obtain a first decryption result and the first decryption result is post-quantum cryptographic encryption to obtain a second encryption result. The processor is also used to obtain a first terminal handshake key and a first network device handshake key according to the first decryption result and the second encryption result, and to generate a second terminal handshake key and a second network device handshake key according to the second quantum key, the first terminal handshake key, the first network device handshake key, the first decryption result, and the second encryption result to encrypt the communication between the terminal and the network device.

The embodiment of the present application also provides a network device. The method of the embodiment of the present application can be implemented by the network device of the embodiment of the present application. Specifically, the network device includes a receiving module, a decryption module, an encryption module and a derivation module. The receiving module is used to receive a first encryption result of a post-quantum cryptographic encryption process of a first quantum key by a terminal, and the first quantum key is obtained by a cryptographic service node to which the terminal accesses. The decryption module is used to decrypt the first encryption result to obtain a first decryption result. The encryption module is used to perform post-quantum cryptographic encryption on the first decryption result to obtain a second encryption result. The derivation module is used to obtain a first terminal handshake key and a first network device handshake key according to the first decryption result and the second encryption result, and to generate a second terminal handshake key and a second network device handshake key according to the second quantum key, the first terminal handshake key, the first network device handshake key, the first decryption result, and the second encryption result, so as to encrypt the communication between the terminal and the network device.

Specifically, in the implementation mode of the present application, the terminal sends a quantum key application, obtains a first quantum key and a quantum key identifier from a service node of the access terminal, the first quantum key and the quantum key identifier can be used to generate a key with the ability to resist quantum computing attacks, and the quantum key identifier helps to use and manage the quantum key. After obtaining the first quantum key and the quantum key identifier, the terminal performs post-quantum cryptographic encryption processing on the quantum key identifier, and sends the first encryption result of the post-quantum cryptographic encryption processing to the network device. By performing post-quantum cryptographic encryption processing on the quantum key identifier, the quantum key distribution technology is combined with the post-quantum cryptographic technology to improve the complexity of the key, and the encryption result is sent to the network device for sharing so that the communication data of the terminal and the network device in the communication network are consistent.

Then, after receiving the first encryption result sent by the terminal, the network device decrypts the first encryption result to obtain the first decryption result. The network device then performs post-quantum cryptographic encryption on the first decryption result to obtain the second encryption result. After obtaining the second encryption result, the network device sends the second encryption result to the terminal so that the terminal can also share the network device information and the generated key. The network device then obtains the first terminal handshake key and the first network device key based on the first decryption result and the second encryption result, and generates the second terminal handshake key and the second network device handshake key based on the second quantum key, the first terminal handshake key, the first network device handshake key, the first decryption result, and the second encryption result to encrypt the communication between the terminal and the network device.

At the same time, the terminal receives the second encryption result sent by the network device, and decrypts the second encryption result to obtain the second decryption result. The terminal then obtains the first terminal handshake key and the first network device key based on the first encryption result and the second decryption result, and generates the second terminal handshake key and the second network device handshake key based on the first quantum key, the first terminal handshake key, the first network device handshake key, the first decryption result, and the second encryption result to encrypt the communication between the terminal and the network device.

In this way, during the communication process between the terminal and the network device, the terminal and the network device apply for a quantum key and a quantum key identifier, and use a post-quantum cryptographic algorithm to encrypt the quantum key identifier to generate an anti-quantum key that can resist quantum computing attacks. The post-quantum cryptographic algorithm is a series of encryption algorithms designed to resist quantum computing attacks. At the same time, the terminal and the network device exchange their own randomly generated random numbers to generate a master key, and then derive the master key to obtain a first terminal handshake key and a first network device handshake key. The terminal and the network device then integrate the quantum key, the terminal handshake key, the network device handshake key and the anti-quantum key for use in the communication between the terminal and the network device. In this way, the ability of the network communication between the terminal and the network device to resist quantum computing attacks is enhanced.

Continuing with the above example, please refer to Figure 3 again. The client receives the first quantum key QK_UUID1 and the quantum key identifier UUID_QK sent from the cryptographic service node. The quantum key identifier UUID_QK helps to manage and use the first quantum key QK_UUID1. After obtaining the first quantum key QK_UUID1 and the quantum key identifier UUID_QK, the client performs post-quantum cryptography encryption on the quantum key identifier UUID_QK and sends the clienthello message processed by post-quantum cryptography encryption to the network device.

Then, after receiving the client hello message sent by the client, the security access gateway performs quantum cryptography decryption processing on the client hello message to obtain a first decryption result. The security access gateway then performs post-quantum cryptography encryption processing on the first decryption result to obtain a server hello message. After obtaining the server hello message, the security access gateway sends the server hello message to the client. The security access gateway obtains client_handshake_traffic_secret, i.e., the first terminal handshake key and server_handshake_traffic_secret, i.e., the first network device handshake key, based on the relevant information in the first decryption result and the relevant information in the serverhello message. Then, based on the second quantum key, server_handshake_traffic_secret, client_handshake_traffic_secret, the first decryption result, and the server hello message, client_handshake_traffic_secret2, i.e., the second terminal handshake key and server_handshake_traffic_secret2, i.e., the second network device handshake key, are generated to encrypt the communication between the client and the security access gateway and protect the communication data.

At the same time, the client receives the server hello message sent by the secure access gateway, and decrypts the server hello message to obtain a second decryption result. Subsequently, the client obtains client_handshake_traffic_secret, i.e., the first terminal handshake key, and server_handshake_traffic_secret, i.e., the first network device handshake key, based on the client hello message and the second decryption result. The client then generates client_handshake_traffic_secret2, i.e., the second terminal handshake key, and server_handshake_traffic_secret2, i.e., the second network device handshake key, based on the first quantum key, server_handshake_traffic_secret, client_handshake_traffic_secret, the relevant key in the client hello message, and the second decryption result, to encrypt the communication between the client and the secure access gateway and protect the communication data.

This ensures that even in the face of possible threats from quantum computers, the TLS handshake between the client and the secure access gateway can still provide secure data transmission. By using post-quantum cryptography algorithms and quantum key distribution technology, communications can be more secure against possible threats from quantum computers.

Referring to FIG. 12 , in some embodiments, the method further comprises:

026: Access the second network node through the pre-established channel;

027: Load the terminal's security certificate or the network device's security certificate.

In some implementations, the access module is used to access the second network node through a pre-established channel, and the loading module is used to load a security certificate of the terminal or a security certificate of the network device.

In some embodiments, the processor is further configured to access the second network node through a pre-established channel, and load a security certificate of the terminal or a security certificate of the network device.

Specifically, before transmitting data with the terminal, the network device accesses the second network node through a pre-established channel. The pre-established channel can protect data during the data transmission process and reduce the risk of unauthorized access. Then, the network device loads the security certificate of the network device or the security certificate of the terminal. After the security certificate is loaded, it will be used to establish and maintain a secure communication channel to enhance the security of data during transmission.

Continuing with the above example, please refer to Figure 3 again. Before the secure access gateway and the client transmit data, the secure access gateway accesses the second quantum network node with the closest physical distance and completed authorization through a trusted channel. The trusted channel refers to a mechanism or protocol that provides a secure communication path between two communication entities. One way to establish it is that the secure access gateway and the second quantum network node are in the same cabinet and directly connected by a shielded network cable. This channel ensures the confidentiality, integrity and availability of data during transmission, and prevents unauthorized access, tampering or eavesdropping. At the same time, through offline import, the secure access gateway and the client load the public key of the key pair of each other's post-quantum cryptography algorithm, or the certificate of its own post-quantum cryptography algorithm issued by the certificate system. The certificate includes an encryption certificate and a signature certificate. The offline import method means that the transmission of the key or certificate will not pass through the Internet or other network paths that may be monitored or attacked, ensuring the security of the transmission process. In this way, the secure access gateway accesses the second quantum network node through a trusted channel and loads the security certificate by offline import, ensuring the confidentiality of network device data and reducing the risk of data leakage.

Referring to FIG. 13 , in some implementations, the first decryption result includes the second handshake message and the first handshake random number, and the method further includes:

028: Obtain the first handshake message according to the second handshake message and the first handshake random number;

029: Obtain a quantum key identifier according to the first handshake message.

In some embodiments, the derivation module is further used to obtain the first handshake message based on the second handshake message and the first handshake random number, and the processing module is used to obtain the quantum key identifier based on the first handshake message.

In some embodiments, the processor is further configured to obtain a first handshake message based on the second handshake message and the first handshake random number, and to obtain a quantum key identifier based on the first handshake message.

Specifically, the network device obtains the first handshake message according to the second handshake message and the first handshake random number, and obtains the quantum key identifier according to the first handshake message. In this way, the quantum key identifier is obtained, and the quantum key identifier can be used to apply for the second quantum key.

Continuing with the above example, please refer to Figure 3 again. The secure access gateway obtains the first handshake message by XORing the second handshake message m2 with the first handshake random number R1, and then obtains the quantum key identifier UUID_QK according to the first handshake message. In this way, the quantum key identifier UUID_QK is obtained, and the quantum key identifier UUID_QK can be used to apply for a quantum key.

Referring to FIG. 14 , in some implementations, the first decryption result includes a first signature message, and the method further includes:

030: Obtain a first verification message according to the first signature message;

031: Perform post-quantum cryptographic signature verification on the first signature message to confirm that a correct first verification message is obtained, where the first verification message is formed by concatenating the first handshake random number and the quantum key identifier;

032: When the obtained quantum key identifier is correct, obtain a second quantum key from a network node of the self-access network device.

In some embodiments, the processing module is used to obtain a first verification message based on the first signature message, the verification module is used to perform post-quantum cryptographic verification on the first signature message to confirm that the correct first verification message is obtained, the first verification message is spliced by the first handshake random number and the quantum key identifier, and the acquisition module is used to obtain the second quantum key from the network node of the self-access network device when the quantum key identifier is obtained correctly.

In some embodiments, the processor is also used to obtain a first verification message based on the first signature message, and perform post-quantum cryptographic signature verification on the first signature message to confirm that a correct first verification message is obtained, the first verification message is spliced by the first handshake random number and the quantum key identifier, and when the quantum key identifier is obtained correctly, obtain the second quantum key from the network node of the self-access network device.

Specifically, the network device performs post-quantum cryptographic signature verification on the first signature message to confirm that the correct first verification message has been received, ensuring the integrity of the data and the legitimacy of the source. When the received first verification message is correct, that is, when the received quantum key identifier is correct, the network device applies to the network node accessing the network device for the second quantum key through the quantum key identifier. This ensures that the acquired second quantum key matches the first quantum key of the first network device, and the quantum key is used to generate a more secure key.

Continuing with the above example, the secure access gateway performs post-quantum cryptographic signature verification on the first signature message M1 to confirm that the correct first verification message has been received, that is, to confirm that the correct quantum key identifier UUID_QK and the first handshake random number R1 have been received. When the received first verification message is correct, that is, when the received quantum key identifier UUID_QK is correct, the network device applies to the second quantum network node connected to the secure access gateway for the second quantum key QK_UUID2 through the quantum key identifier UUID_QK. This ensures that the acquired second quantum key QK_UUID2 matches the first quantum key of the terminal, and the quantum key is used to generate a more secure key.

Please refer to FIG. 15 . In some embodiments, step 023 (performing post-quantum cryptography encryption on the first decryption result to obtain a second encryption result) includes:

0231: concatenate the quantum key identifier and the randomly generated second random number to obtain a third handshake message;

0232: Process the third handshake message and the second handshake random number in the second encryption result to generate a fourth handshake message;

0233: performing post-quantum cryptographic derivation processing on the fourth handshake message to generate a second handshake key;

0234: performing post-quantum cryptography encryption processing on the fourth handshake message to generate a second encrypted message in the second encryption result;

0235: concatenate the quantum key identifier and the second handshake random number to obtain a second verification message;

0236: Performing post-quantum cryptographic signature processing on the second verification message to generate a second signature message in the second encryption result;

0237: Send the second encryption result to the terminal.

In some embodiments, the splicing module is used to splice the quantum key identifier and the randomly generated second random number to obtain a third handshake message. The processing module is used to process the third handshake message and the second handshake random number in the second encryption result to generate a fourth handshake message. The derivation module is used to perform post-quantum cryptographic derivation processing on the fourth handshake message to generate a second handshake key. The encryption module is used to perform post-quantum cryptographic encryption processing on the fourth handshake message to generate a second encrypted message in the second encryption result. The splicing module is also used to splice the quantum key identifier and the second handshake random number to obtain a second verification message. The signature module is used to perform post-quantum cryptographic signature processing on the second verification message to generate a second signature message in the second encryption result, and the sending module is used to send the second encryption result to the terminal.

In some embodiments, the processor is further configured to concatenate the quantum key identifier with the randomly generated second random number to obtain a third handshake message, and to process the third handshake message with the second handshake random number in the second encryption result to generate a fourth handshake message, and to perform post-quantum cryptographic derivation processing on the fourth handshake message to generate a second handshake key. In addition, the processor is further configured to perform post-quantum cryptographic encryption processing on the fourth handshake message to generate a second encrypted message in the second encryption result, and to concatenate the quantum key identifier with the second handshake random number to obtain a second verification message, and to perform post-quantum cryptographic signature processing on the second verification message to generate a second signature message in the second encryption result and to send the second encryption result to the terminal.

Specifically, the network device performs a splicing process on the quantum key identifier and the randomly generated second random number to obtain a third handshake message. Then, the network device performs an XOR process on the third handshake message and the second handshake random number in the second encryption result to generate a fourth handshake message in the second encryption result. Next, the network device performs a post-quantum cryptographic derivation process on the fourth handshake message to generate a second handshake key, and performs a post-quantum cryptographic encryption process on the fourth handshake message to generate a second encrypted message in the second encryption result. The network device then performs a splicing process on the quantum key identifier and the second handshake random number to obtain a second verification message. Finally, the network device performs a post-quantum cryptographic signature process on the second verification message to generate a second signature message in the second encryption result. The second encryption result is sent to the terminal. The confidentiality of the quantum key identifier is increased by splicing with the second random number, and the quantum key identifier and its derivatives are encrypted using a post-quantum cryptographic algorithm to increase the complexity of the quantum key identifier by combining quantum key distribution technology with post-quantum cryptographic technology.

Continuing with the above example, the secure access gateway integrates the PQC post-quantum cryptographic algorithm with the ECDHA key exchange and ECDSA signature of the classic PKI system, and organically combines the PQC key encapsulation and PQC digital signature algorithm with anti-quantum means such as QKD quantum key distribution. The second encryption result contains a server hello message. Certificate Authorities is used to list the certificate authorities trusted by the client. DN is a string used to uniquely identify the certificate holder, including information such as organization, geographic location, and country. Please refer to Figure 3 again. When a post-quantum cryptography (PQC) certificate is available, the secure access gateway adds the DN name of the CA (certificate authority) that issued the PQC certificate to the extension of type "Certificate Authorities". Two types of extensions are extended: pqc_key_share and pqc_signature.

The content of pqc_key_share includes the algorithm ID, algorithm parameters and key encapsulation information of the PQC key encapsulation.

The content of pqc_signature includes the algorithm ID, algorithm parameters and digital signature information of the PQC digital signature.

When there is no post-quantum cryptography certificate, the client does not add the DN name of the CA (certificate authority) that issued the PQC certificate to the extension of type "Certificate Authorities", and the secure access gateway does not process it. When there is no PQC certificate, the client and the secure access gateway can import each other's PQC signature public key and encryption public key in an offline manner to ensure that the communication between the client and the secure access gateway is based on mutual trust. After that, add extensions of the pqc_key_share and pqc_signature types based on the original TLS1.3 protocol server hello message.

Then, the secure access gateway concatenates the quantum key identifier UUID_QK with the first random number r2 (128 bits) randomly generated by the secure access gateway to obtain the third handshake message m3. Subsequently, the secure access gateway XORs the third handshake message m3 with the second handshake random number R2 in the server hello message to generate the fourth handshake message m4. Then, the secure access gateway uses the fourth handshake message m4 as the encrypted message m in the PQC key encapsulation algorithm, runs the G function of the PQC algorithm to obtain the second handshake key K2, and uses the encapsulation information as the extension_data content of pqc_key_share. The fourth handshake message m4 is then subjected to post-quantum cryptographic encryption to generate the second encrypted message in the server hello message. The secure access gateway concatenates the quantum key identifier UUID_QK with the second handshake random number R2 to obtain the second verification message, and uses the second verification message as M in the PQC signature algorithm for PQC signature protection to generate the second signature message M2 in the server hello message, and the signature information is used as the extension_data content of pqc_signature. Finally, the secure access gateway sends a server hello message to the client. In this way, the secure access gateway increases the confidentiality of the quantum key identifier by concatenating the quantum key identifier UUID_QK with the randomly generated second random number r2, and processes the quantum key identifier UUID_QK and its derivatives using a post-quantum cryptographic algorithm to increase the complexity of the quantum key identifier by combining quantum key distribution technology with post-quantum cryptography technology.

Please refer to FIG. 16 . In some implementations, the first decryption result includes a first handshake random number, and the second encryption result includes a second handshake random number. Step 024 (obtaining a first terminal handshake key and a first network device handshake key according to the first decryption result and the second encryption result) includes:

0241: Generate a master key based on the first handshake random number and the second handshake random number;

0242: Derive a first terminal handshake key and a first network device handshake key according to the master key.

In some embodiments, the derivation module is further used to generate a master key based on the first handshake random number and the second handshake random number, and to derive a first terminal handshake key and a first network device handshake key based on the master key.

In some embodiments, the processor is further configured to generate a master key based on the first handshake random number and the second handshake random number, and derive a first terminal handshake key and a first network device handshake key based on the master key.

Specifically, the security access gateway generates a master key based on the first handshake random number in the first decryption result and the second handshake random number in the second encryption result. Then, the security access gateway derives the first terminal handshake key and the first network device handshake key based on the generated master key. In this way, the master key is generated by using the randomly generated random number, and then the master key is derived by using a cryptographic algorithm to generate the first terminal handshake key and the first network device handshake key for subsequent key derivation.

Continuing with the above example, please refer to Figure 3 again. The secure access gateway generates a master key based on the first handshake random number R1 and the second handshake random number R2, and then calculates the first terminal handshake key client_handshake_traffic_secret and the first network device handshake key server_handshake_traffic_secret according to the TLS1.3 protocol specification. The secure access gateway generates a master key by using a randomly generated random number, and then uses a cryptographic algorithm to derive the master key to generate the first terminal handshake key client_handshake_traffic_secret and the first network device handshake key server_handshake_traffic_secret for subsequent key derivation.

Please refer to FIG. 17 . In some embodiments, the first decryption result includes a second handshake message. Step 025 (generating a second terminal handshake key and a second network device handshake key according to the second quantum key, the first terminal handshake key, the first network device handshake key, the first decryption result, and the second encryption result to encrypt communication between the terminal and the network device) includes:

0251: Perform post-quantum cryptographic derivation processing on the second handshake message to generate a first handshake key;

0252: Generate a second terminal handshake key according to the second quantum key, the first terminal handshake key, the first handshake key, and the second handshake key;

0253: Generate a second network device handshake key according to the second quantum key, the first network device handshake key, the first handshake key, and the second handshake key;

0254: Encrypt the communication between the terminal and the network device according to the second terminal handshake key and the second network device handshake key.

In some embodiments, the derivation module is further used to perform post-quantum cryptographic derivation processing on the second handshake message to generate a first handshake key, and to generate a second terminal handshake key according to the second quantum key, the first terminal handshake key, the first handshake key, and the second handshake key, and to generate a second network device handshake key according to the second quantum key, the first network device handshake key, the first handshake key, and the second handshake key. The communication module is used to encrypt the communication between the terminal and the network device according to the second terminal handshake key and the second network device handshake key.

In some embodiments, the processor is also used to perform post-quantum cryptographic derivation processing on the second handshake message to generate a first handshake key, and to generate a second terminal handshake key based on the second quantum key, the first terminal handshake key, the first handshake key, and the second handshake key, and to generate a second network device handshake key based on the second quantum key, the first network device handshake key, the first handshake key, and the second handshake key, and to encrypt communications between the terminal and the network device based on the second terminal handshake key and the second network device handshake key.

Specifically, first, the network device performs post-quantum cryptographic derivation processing on the second handshake message to generate a first handshake key. Then, the network device generates a second terminal key based on the first terminal handshake key, the second quantum key, the first handshake key, and the second handshake key. Next, the network device generates a second network device key based on the first network device handshake key, the second quantum key, the first handshake key, and the second handshake key. The network device then uses the generated second terminal key and the second network device key to encrypt the communication between the terminal and the network device, thereby enhancing the ability of the communication between network devices to resist quantum computing attacks by using a key generated by combining quantum key distribution technology and post-quantum cryptography technology, and protecting the data transmitted during the communication process.

Continuing with the above example, first, the security access gateway performs post-quantum cryptographic derivation processing on the second handshake message to generate the first handshake key K1. Then, the security access gateway generates the second terminal key client_handshake_traffic_secret2 according to the first terminal handshake key client_handshake_traffic_secret, the first quantum key QK_UUID1, the first handshake key K1, and the second handshake key K2. Next, the client generates the second network device key server_handshake_traffic_secret2 according to the first network device handshake key server_handshake_traffic_secret, the first quantum key QK_UUID1, the first handshake key K1, and the second handshake key K2. The generated second terminal key and the second network device key are then used to encrypt the communication between the terminal and the network device, so that the ability of the communication between network devices to resist quantum computing attacks is enhanced by using the key generated by combining quantum key distribution technology and post-quantum cryptography technology, and the data transmitted during the communication process is protected. After generating the second terminal key and the second network device key, the client and the secure access gateway carry out subsequent handshake messages under the protection of the second terminal key client_handshake_traffic_secret2 and the second network device key server_handshake_traffic_secret2 and their derived write_key and write_iv in accordance with the TLS1.3 protocol specification. When the PQC certificate is available, the client adds the PQC signature certificate and the PQC encryption certificate to the client Certificate message. The authentication scope of the CerficateVerify and Finished messages of the client and the secure access gateway covers the above newly added PQC related messages. The client and the gateway finally generate the client application traffic key client_application_traffic_secret and the gateway application traffic key server_application_traffic_secret and their derived write_key and write_iv for application data protection of the record layer protocol. The client application traffic key client_application_traffic_secret and the gateway application traffic key server_application_traffic_secret are used to encrypt the application data sent by the client to ensure the confidentiality and integrity of the data during transmission.

The present application also provides a computer-readable storage medium containing a computer program. When the computer program is executed by one or more processors, the one or more processors execute the voice interaction method of the present application.

It is understood that a computer program includes computer program code. The computer program code may be in source code form, object code form, executable file or some intermediate form. Computer readable storage media may include: any entity or device capable of carrying computer program code, recording medium, USB flash drive, mobile hard disk, magnetic disk, optical disk, computer memory, read-only memory (ROM), random access memory (RAM), and software distribution medium.

In the description of this specification, the descriptions with reference to the terms "specifically", "further", "particularly", "understandably", etc. are intended to mean that the specific features, structures, materials or characteristics described in conjunction with the embodiments or examples are included in at least one embodiment or example of the present application. In this specification, the schematic representations of the above terms are not intended to refer to the same embodiment or example. Moreover, the specific features, structures, materials or characteristics described may be combined in any one or more embodiments or examples in a suitable manner. In addition, those skilled in the art may combine and combine the different embodiments or examples described in this specification and the features of the different embodiments or examples, unless they are contradictory.

Any process or method description in a flowchart or otherwise described herein may be understood to represent a module, segment or portion of code that includes one or more executable instructions for implementing the steps of a specific logical function or process, and the scope of the preferred embodiments of the present application includes alternative implementations in which functions may not be performed in the order shown or discussed, including performing functions in a substantially simultaneous manner or in the reverse order depending on the functions involved, which should be understood by technicians in the technical field to which the embodiments of the present application belong.

Although the embodiments of the present application have been shown and described above, it can be understood that the above embodiments are exemplary and cannot be understood as limitations to the present application. Ordinary technicians in this field can change, modify, replace and modify the above embodiments within the scope of the present application.

Claims (15)

1. A method for enhancing the quantum security of a transport layer security protocol of a communication network, wherein the communication network includes a terminal and a network device, the method is used for the terminal, and the method includes: Obtaining a first quantum key and a quantum key identifier from a service node connected to the terminal; Performing post-quantum cryptography encryption processing on the quantum key identifier, and sending a first encryption result of the post-quantum cryptography encryption processing to the network device; decrypting the received second encryption result sent by the network device to obtain a second decryption result, where the second encryption result is obtained based on the first encryption result; Obtain a first terminal handshake key and a first network device handshake key according to the first encryption result and the second decryption result; A second terminal handshake key and a second network device handshake key are generated according to the first quantum key, the first terminal handshake key, the first network device handshake key, the first encryption result, and the second decryption result to encrypt the communication between the terminal and the network device. 2. The method according to claim 1, characterized in that the obtaining of the first quantum key and the quantum key identifier from the service node accessing the terminal comprises: Using the service node to inject multiple keys into the cryptographic module of the terminal; Sending a quantum key application to the service node, and randomly using one of the multiple keys injected into the cryptographic module as a protection key to protect the quantum key application; receiving a quantum key encryption result obtained by the service node encrypting the first quantum key and the quantum key identifier according to the protection key, where the first quantum key is generated by a first network node connected to the service node and distributed to the service node, and the quantum key identifier is obtained by the first network node marking the first quantum key according to an identification code of the first network node and distributed to the service node; The quantum key encryption result is decrypted to obtain the first quantum key and the quantum key identifier. 3. The method according to claim 2, characterized in that the step of performing post-quantum cryptographic encryption processing on the quantum key identifier and sending the first encryption result of the post-quantum cryptographic encryption processing to the network device comprises: Concatenating the quantum key identifier with a randomly generated first random number to obtain a first handshake message; Processing the first handshake message and the first handshake random number in the first encryption result to generate a second handshake message; Performing post-quantum cryptographic derivation processing on the second handshake message to generate a first handshake key; Performing post-quantum cryptography encryption processing on the second handshake message to generate a first encrypted message in the first encryption result; Concatenate the quantum key identifier and the first handshake random number to obtain a first verification message; perform post-quantum cryptographic signature processing on the first verification message to generate a first signature message in the first encryption result; The first encryption result is sent to the network device. 4. The method according to claim 3, characterized in that the second decryption result obtained by decrypting the second encryption result received and sent by the network device comprises: receiving the second encryption result sent by the network device, where the second encryption result is obtained by the network device performing post-quantum cryptography encryption processing on the first decryption result, and the first decryption result is obtained by the network device performing decryption processing on the first encryption result; The second encryption result is decrypted to obtain a second decryption result, where the second decryption result includes a second handshake random number, a fourth handshake message, and a second signature message. 5. The method according to claim 4, characterized in that the method further comprises: Obtaining a second handshake key according to the fourth handshake message; A third handshake message and a quantum key identifier are obtained according to the fourth handshake message and the second handshake random number. 6. The method according to claim 4, characterized in that the method further comprises: Obtain a second verification message according to the second signature message; The second signature message is subjected to post-quantum cryptographic signature verification processing to confirm the correctness of the second verification message, where the second verification message is obtained by concatenating the quantum key identifier and the second handshake random number. 7. The method according to claim 5, wherein the first encryption result includes a first handshake random number, the second decryption result includes a second handshake random number, and the obtaining of a first terminal handshake key and a first network device handshake key according to the first encryption result and the second decryption result comprises: Generate a master key according to the first handshake random number and the second handshake random number; A first terminal handshake key and a first network device handshake key are derived according to the master key. 8. The method according to claim 7, characterized in that the generating a second terminal handshake key and a second network device handshake key according to the first quantum key, the first terminal handshake key, the first network device handshake key, the first encryption result, and the second decryption result to encrypt the communication between the terminal and the network device comprises: Generate a second terminal handshake key according to the first quantum key, the first terminal handshake key, the first handshake key, and the second handshake key; Generate a second network device handshake key according to the first quantum key, the first network device handshake key, the first handshake key, and the second handshake key; The communication between the terminal and the network device is encrypted according to the second terminal handshake key and the second network device handshake key. 9. A method for enhancing the quantum security resistance of a transport layer security protocol of a communication network, characterized in that the communication network includes a terminal and a network device, the method is used for the network device, and the method includes: receiving a first encryption result of post-quantum cryptographic encryption processing performed by the terminal on a quantum key identifier, where the quantum key identifier is obtained by the terminal from an accessed cryptographic service node; Decrypting the first encryption result to obtain a first decryption result; Performing post-quantum cryptography encryption on the first decryption result to obtain a second encryption result; Obtain a first terminal handshake key and a first network device handshake key according to the first decryption result and the second encryption result; A second terminal handshake key and a second network device handshake key are generated according to a second quantum key, the first terminal handshake key, the first network device handshake key, the first decryption result, and the second encryption result to encrypt communication between the terminal and the network device. 10. The method according to claim 9, characterized in that the method further comprises: accessing a second network node through a pre-established channel; Load the security certificate of the terminal or the security certificate of the network device. 11. The method according to claim 9, wherein the first decryption result comprises a second handshake message and a first handshake random number, and the method further comprises: Obtain a first handshake message according to the second handshake message and the first handshake random number; The quantum key identifier is obtained according to the first handshake message. 12. The method according to claim 10, wherein the first decryption result comprises a first signature message, and the method further comprises: Obtain a first verification message according to the first signed message; Performing post-quantum cryptographic signature verification on the first signature message to confirm that a correct first verification message is obtained, where the first verification message is formed by concatenating a first handshake random number and the quantum key identifier; When the obtained quantum key identifier is correct, the second quantum key is obtained from the second network node connected to the network device. 13. The method according to claim 11, characterized in that the step of performing post-quantum cryptographic encryption processing on the first decryption result to obtain a second encryption result comprises: Concatenating the quantum key identifier with a randomly generated second random number to obtain a third handshake message; Processing the third handshake message and the second handshake random number in the second encryption result to generate a fourth handshake message; Performing post-quantum cryptographic derivation processing on the fourth handshake message to generate a second handshake key; Performing post-quantum cryptography encryption processing on the fourth handshake message to generate a second encrypted message in the second encryption result; Concatenating the quantum key identifier and the second handshake random number to obtain a second verification message; Performing post-quantum cryptographic signature processing on the second verification message to generate a second signature message in the second encryption result; The second encryption result is sent to the terminal. 14. The method according to claim 13, wherein the first decryption result includes a first handshake random number, the second encryption result includes a second handshake random number, and the obtaining of a first terminal handshake key and a first network device handshake key according to the first decryption result and the second encryption result comprises: Generate a master key according to the first handshake random number and the second handshake random number; A first terminal handshake key and a first network device handshake key are derived according to the master key. 15. The method according to claim 14, characterized in that the first decryption result includes a second handshake message, and generating a second terminal handshake key and a second network device handshake key according to the second quantum key, the first terminal handshake key, the first network device handshake key, the first decryption result, and the second encryption result to encrypt communication between the terminal and the network device, comprising: Performing post-quantum cryptographic derivation processing on the second handshake message to generate a first handshake key; Generate a second terminal handshake key according to the second quantum key, the first terminal handshake key, the first handshake key, and the second handshake key; Generate a second network device handshake key according to the second quantum key, the first network device handshake key, the first handshake key, and the second handshake key; The communication between the terminal and the network device is encrypted according to the second terminal handshake key and the second network device handshake key.