Research On The Key Technology Of Fusing Quantum Key Distribution And Classical Encryption Methods

Data encryption transmission is an important measure to ensure data security in the network.Important and confidential data in various fields are transmitted in encryption through networks with the rapid development of computer and network technologies.While the rise of cloud computing,big data,and quantum computing has brought challenges to classical network encryption methods that rely on the mathematical complexity to ensure security.The cracking task that originally requires hundreds of thousands of years to complete has been shortened to a couple of days or even several hours.The advantage of classical encryption methods is that there are mature encryption algorithms for various transmission requirements and data formats in the network with the critical point lying in how to protection the security of keys.Quantum keys are distributed and encrypted through the QKD(quantum key distribution)technology to implement bit-based “one-time pad” on confidential data that should be protected,which is the reliable and secure encryption communication technology.And ensuring high security of quantum keys is an advantage of the QKD technology.Therefore,advantages of QKD and classical encryption methods can be effectively utilized through the fusion of QKD and classical encryption methods,so that security encryption of mass data can be achieved.The quantum network that is relatively independent from the classical network is adopted in QKD.When data are encrypted by the fusion of the classical network,there are problems such as quantum key management,quantum network state detection,quantum key storage and unloading as well as routing for QKD,etc.Therefore,it's necessary to design models and methods that can effectively fuse QKD and the classical encryption,so as to implement network data encryption transmission with quantum keys in a highly-secure manner.A research has been conducted on the key technology of infusing QKD and encryption methods for specific application including the symmetric encryption method,the asymmetric encryption system,and image encryption,etc.in classical methods.Main contributions and innovations of this paper involve:1.A method of fusing QKD and classical symmetric encryption(1)A Random Sliding Quantum Key Window(RSQKW)management algorithm is proposed for handling the problem of updating management in the fusion of QKD and the classical symmetric encryption methods.Firstly,a sliding window mechanism is introduced to control the consumption of quantum keys.Then,the control parameters of the sliding window are negotiated by the quantum key generation rate.Finally,stochastic characteristics of quantum keys are utilized to calculate the sliding step width of the sliding window,while the quantum key sequence in the sliding window can be used as a new key for a classical encryption algorithm.Experimental results in the real QKD network demonstrate that the proposed algorithm can manage quantum keys in a more effective way.(2)A SQKR model containing three-layer structure for the self-adjusting quantum key management is further proposed according to the quantum network state,when QKD is infused with classical symmetric encryption methods.Firstly,the fusion model of the quantum key distribution and the classical network symmetric encryption is defined to present the definition and function of each layer.Secondly,key management can be implemented through detecting parameters such as QBER of the network state based on the working condition of quantum network to coordinate QKD with AES,DES,VPN and other classical symmetric encryption methods for working.Finally,experiments are performed in the real QKD network environment to verify that the SQKR model can conduct dynamic management of quantum keys based on the network state of quantum,effectively encrypting data through the infusion of QKD network and multiple classical symmetric encryption algorithms.(3)Quantum keys can only be forwarded to the destination node via multiple relay nodes,when remote quantum encryption transmission is conducted on data through classical networks.Thus,a dynamically-weighted QKD network routing model QDTM is proposed against the routing problem of QKD network.Firstly,trust evaluation is performed on the relay node through obtaining the state of the relay node in the QKD network.Secondly,communication cost of selecting the QKD routing is calculated.Consequently,comprehensive weights of both are regarded as the base of QKD routing to dynamically select the QKD route for data transmission of remote quantum symmetrical encryption when the quantum network increases in scale.An identity encryption scheme QIBE based on the quantum key and the cloud service is proposed to deal with security problems in the IBE(Identity-Based Encryption)public key encryption scheme.Firstly,the quantum encryption technology is introduced to solve the problem of information transmission between a key generator and the cloud service,involving user privacy information and revocation lists.And then,the quantum time token mechanism is proposed to securely distribute and manage users' keys.Lastly,user revocation management is implemented securely and efficiently by sharing quantum keys and using cloud services.Experimental results in the real QKD and the cloud computing environment verify that the scheme features superior security and practicality.Meanwhile,performance analysis of the scheme is presented.3.A method of fusing QKD and specific encryption application(1)A two-dimensional logistic mapping image encryption method is put forward based on quantum keys is proposed,since the security of image transmission can be effectively with the infusion of QKD and classical image encryption algorithm.Firstly,an initial value of two-dimensional logistic mapping is constructed by quantum keys.Secondly,the image is encrypted by the chaotic sequence generated by two-dimensional logistic mapping.Finally,network multimedia images based on quantum keys can be securely transmitted in the “one-time pad” through continuously updating the quantum key sequence.(2)A random forest algorithm based on MapReduce is proposed to deal with the problem that automatic classification of data should be automatically classified and encrypted as per different security levels in the network gateway or core node under the environment of big data,which is also applied in the scene of conducting quantum encryption on the automatic classification of data.Meanwhile,the accuracy of classified results is verified through data sets.(3)A mobile cloud data transmission model based on quantum encryptions and a secure authentication protocol QHK based on quantum keys and distance constraints are proposed to effectively and securely transfer quantum keys to a mobile device and to allow it to access the cloud data through quantum keys.Experimental results show that quantum keys can be securely transferred to users' mobile devices;at the same time,the encrypted transmission of data in the mobile cloud can be achieved through quantum keys.