本文選題：量子密鑰分發(fā) + 安全威脅��； 參考：《電子科技大學(xué)》2014年碩士論文

【摘要】：具有物理安全特性的量子密鑰分發(fā)(quantum key distribution,QKD)技術(shù)發(fā)展迅速,越來越受到人們的廣泛關(guān)注。在安全保密方面,量子密鑰在協(xié)商過程中的無條件安全性也決定了它在軍事、政務(wù)、金融等領(lǐng)域當(dāng)中的地位和作用。近年來,量子通信和量子密鑰分發(fā)在理論和實(shí)驗(yàn)方面均取得了較大突破,也有少量的商品和應(yīng)用場(chǎng)景出現(xiàn),但受制于非理性的器件、復(fù)雜的電磁環(huán)境、應(yīng)用環(huán)境安全性和速率等性能瓶頸因素,難以在現(xiàn)實(shí)生活中推廣使用。本文正是針對(duì)上述部分問題,以量子密鑰分發(fā)網(wǎng)絡(luò)和經(jīng)典網(wǎng)絡(luò)的融合網(wǎng)絡(luò)為研究對(duì)象,在量子密鑰分發(fā)技術(shù)和“一次一密亂碼本”(one time pad,OTP)體制基礎(chǔ)上,主要對(duì)量子密鑰分發(fā)技術(shù)在經(jīng)典網(wǎng)絡(luò)中應(yīng)用的模式進(jìn)行了架構(gòu),對(duì)其安全威脅和解決辦法進(jìn)行了分析和探討,還對(duì)量子密鑰的應(yīng)用方法進(jìn)行了研究以及對(duì)關(guān)鍵設(shè)備方案進(jìn)行了設(shè)計(jì)。主要內(nèi)容為:1、研究QKD如何在經(jīng)典網(wǎng)絡(luò)中應(yīng)用,提出了直接應(yīng)用、密分保護(hù)和密鑰擴(kuò)展三種模式。直接應(yīng)用模式解決了OTP體制下的密鑰安全分發(fā)問題;密分保護(hù)模式克服了經(jīng)典密碼系統(tǒng)中頂級(jí)密鑰(主密鑰)須離線傳遞的困難;密鑰擴(kuò)展模式解決了密鑰分發(fā)碼率低以適應(yīng)高速應(yīng)用的問題。2、研究融合網(wǎng)絡(luò)的安全威脅及解決辦法,提出了融合網(wǎng)絡(luò)的安全模型,分析了量子終端、QKD應(yīng)用設(shè)備在身份信任、物理防護(hù)、外設(shè)管控、數(shù)據(jù)保護(hù)、計(jì)算環(huán)境、狀態(tài)監(jiān)控等方面的安全威脅,針對(duì)此建立了安全防護(hù)體系,設(shè)計(jì)了相應(yīng)的安全防護(hù)措施,可為QKD在經(jīng)典網(wǎng)絡(luò)中的應(yīng)用提供整體安全支撐和指導(dǎo)。3、研究量子密鑰的應(yīng)用安全,提出了密鑰擴(kuò)展前和預(yù)協(xié)商時(shí)按照NIST標(biāo)準(zhǔn)進(jìn)行16項(xiàng)檢測(cè),擴(kuò)展后應(yīng)用前進(jìn)行常規(guī)5項(xiàng)檢測(cè)的機(jī)制,設(shè)計(jì)了量子密鑰的存儲(chǔ)格式和使用后的銷毀方法,并對(duì)其隨機(jī)性能進(jìn)行了驗(yàn)證,結(jié)果表明其隨即性能滿足標(biāo)準(zhǔn)要求。4、設(shè)計(jì)并研制了QKD應(yīng)用樣機(jī),實(shí)現(xiàn)了量子密鑰在安全話音、安全數(shù)據(jù)等業(yè)務(wù)中的應(yīng)用,并進(jìn)行了相關(guān)驗(yàn)證,結(jié)果表明其密鑰擴(kuò)展功能以及速率滿足應(yīng)用要求,為QKD技術(shù)的實(shí)用和推廣提供了支撐。
[Abstract]:Quantum key distribution (QKD) technology, which has physical security properties, has developed rapidly and attracted more and more attention.In terms of security and security, the unconditional security of quantum keys in the negotiation process also determines its position and role in military, government, finance and other fields.In recent years, quantum communication and quantum key distribution have made great breakthroughs in both theory and experiment, and a small number of commodities and applications have emerged, but they are constrained by irrational devices and complex electromagnetic environment.It is difficult to popularize it in real life because of the performance bottleneck factors such as environment security and rate.In order to solve the above problems, this paper takes the fusion network of quantum key distribution network and classical network as the research object, based on the quantum key distribution technology and the "one time pado OTP" system.In this paper, the application mode of quantum key distribution technology in classical network is constructed, and its security threats and solutions are analyzed and discussed.The application method of quantum key and the design of key equipment are also studied.The main content is: 1. How to apply QKD in classical network is studied. Three modes of direct application, secret division protection and key extension are proposed.The direct application mode solves the problem of key security distribution in OTP system, and the secret protection mode overcomes the difficulty of off-line transfer of top-level key (master key) in classical cryptosystem.The key extension mode solves the problem of low code rate of key distribution to adapt to high speed application. The security threats and solutions of the fusion network are studied. The security model of the fusion network is proposed, and the identity trust of the QKD application device in the quantum terminal is analyzed.Physical protection, peripheral control, data protection, computing environment, state monitoring and other aspects of the security threats, this paper established a security protection system, designed the corresponding safety protection measures,It can provide the whole security support and guidance for the application of QKD in the classical network. It studies the application security of quantum key, and proposes 16 items of detection according to the NIST standard before and before the key expansion and pre-negotiation.The mechanism of conventional 5 items detection before application is extended, the storage format of quantum key and the method of destruction after use are designed, and its random performance is verified.The results show that its random performance meets the requirements of standard .4. the prototype of QKD application is designed and developed, and the application of quantum key in secure voice, secure data and other services is realized, and the relevant verification is carried out.The results show that the function and rate of key expansion can meet the requirements of application and provide support for the application and popularization of QKD technology.
【學(xué)位授予單位】：電子科技大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2014
【分類號(hào)】：O413;TN918.4

【相似文獻(xiàn)】

相關(guān)期刊論文 前10條

1 ;世界最大量子密鑰分布網(wǎng)絡(luò)建成[J];企業(yè)技術(shù)開發(fā);2009年07期

2 ;世界最大量子密鑰分布網(wǎng)絡(luò)建成[J];中國科技信息;2009年15期

3 徐人鳳;肖正興;李粵平;聶哲;溫曉軍;;互聯(lián)網(wǎng)中任意終端間量子密鑰中繼協(xié)議[J];計(jì)算機(jī)應(yīng)用研究;2013年02期

4 曾貴華,諸鴻文;基于非正交態(tài)的量子密鑰驗(yàn)證方案[J];物理學(xué)報(bào);2002年04期

5 陳敏;張際平;;淺議量子密鑰管理[J];科協(xié)論壇(下半月);2009年01期

6 陳燕彬;程虎來;龔黎華;;量子密鑰注入方案[J];南昌大學(xué)學(xué)報(bào)(理科版);2013年06期

7 陳彥;胡渝;;湍流大氣對(duì)量子密鑰分布系統(tǒng)性能的影響[J];光學(xué)學(xué)報(bào);2007年01期

8 曹婭;;使用多方態(tài)的量子密鑰共享方案(英文)[J];徐州師范大學(xué)學(xué)報(bào)(自然科學(xué)版);2011年04期

9 崔明路;王治強(qiáng);劉薇;;一種星地量子密鑰通信仿真平臺(tái)[J];中國科學(xué)院研究生院學(xué)報(bào);2011年02期

10 陳巍;韓正甫;莫小范;許方星;衛(wèi)國;郭光燦;;量子密鑰傳輸系統(tǒng)的主動(dòng)相位補(bǔ)償[J];科學(xué)通報(bào);2007年19期

相關(guān)會(huì)議論文 前4條

1 譚政;單欣;孫獻(xiàn)平;羅軍;詹明生;;利用量子密鑰的加密／解密實(shí)現(xiàn)身份認(rèn)證[A];第十二屆全國量子光學(xué)學(xué)術(shù)會(huì)議論文摘要集[C];2006年

2 高靜;谷利澤;卓新建;;一種結(jié)合量子身份認(rèn)證的量子密鑰共享方案[A];中國電子學(xué)會(huì)第十五屆信息論學(xué)術(shù)年會(huì)暨第一屆全國網(wǎng)絡(luò)編碼學(xué)術(shù)年會(huì)論文集（上冊(cè)）[C];2008年

3 吳令安;梁冰;廖靜;隋媛媛;魏亞軍;;量子密鑰隨機(jī)數(shù)的產(chǎn)生與分發(fā)[A];第八屆全國量子光學(xué)學(xué)術(shù)報(bào)告會(huì)論文摘要選[C];1998年

4 湯穎鍇;陳小余;;量子密鑰誘騙態(tài)的經(jīng)典仿真研究[A];浙江省電子學(xué)會(huì)2011學(xué)術(shù)年會(huì)論文集[C];2011年

相關(guān)重要報(bào)紙文章 前4條

1 董路;量子密鑰是目前最安全的保密技術(shù)[N];科學(xué)導(dǎo)報(bào);2009年

2 記者 楊雪;量子密鑰通過嘈雜光纖傳輸距離創(chuàng)新紀(jì)錄[N];科技日?qǐng)?bào);2012年

3 張巍巍;量子密鑰有望實(shí)現(xiàn)潛艇安全通信[N];科技日?qǐng)?bào);2011年

4 記者 桂運(yùn)安;我科學(xué)家成功解決量子黑客隱患[N];安徽日?qǐng)?bào);2013年

相關(guān)碩士學(xué)位論文 前9條

1 白元慶;航天測(cè)控網(wǎng)絡(luò)中量子密鑰通信技術(shù)應(yīng)用研究[D];沈陽航空工業(yè)學(xué)院;2009年

2 劉岳啟;量子密鑰共享和量子身份認(rèn)證研究[D];南京理工大學(xué);2008年

3 肖e，

本文編號(hào)：1738495