Authentication method, apparatus and system used in quantum key distribution process
First Claim
1. A method for distributing quantum keys, the method comprising:
- generating, with a transmitter, a transmitter authentication bit string and a key bit string, wherein the transmitter authentication bit string is non-random and the key bit string is random, and the transmitter authentication bit string includes control bits and authentication bits, and the key bit string includes control bits and key bits, wherein the control bits and the authentication bits of the transmitter authentication bit string are transmitted on different wavelengths, and the control bits and the key bits of the key bit string are transmitted on different wavelengths;
sequentially transmitting, with the transmitter, the transmitter authentication bit string and the key bit string as quantum states, the transmitter authentication bit string being transmitted as quantum states using a predetermined basis;
receiving, with a receiver, the quantum states;
measuring, with the receiver, the quantum states of the transmitter authentication bit string using the predetermined basis to generate a receiver-measured transmitter authentication bit string;
generating, with the receiver, a receiver-determined transmitter authentication bit string; and
when the receiver-measured transmitter authentication bit substantially matches the receiver-determined transmitter authentication bit string, measuring the quantum states of the key bit string using a random basis to generate a receiver-measured key bit string.
1 Assignment
0 Petitions
Accused Products
Abstract
The present application discloses an authentication method used in a QKD process, and further discloses additional authentication methods and corresponding apparatuses, as well as an authentication system. The method comprises: selecting, by a transmitter according to a basis selection rule, a basis of preparation for transmitter authentication information that is generated with a first pre-provisioned algorithm and varies dynamically, and transmitting quantum states containing key information and the transmitter authentication information; and measuring, by a receiver, quantum states of the transmitter authentication information according to the basis selection rule, and ending the QKD process if a measurement result is inconsistent with corresponding information calculated with the first pre-provisioned algorithm. By means of this technical solution, dynamic authentication of a requestor of QKD can be achieved in a QKD process, a defense can be provided against spoofing attacks, man-in-the-middle attacks and distributed denial of service (DDoS) attacks, and the security of the QKD process is improved; furthermore, a waste of quantum key resources can be avoided as well.
-
Citations
16 Claims
-
1. A method for distributing quantum keys, the method comprising:
-
generating, with a transmitter, a transmitter authentication bit string and a key bit string, wherein the transmitter authentication bit string is non-random and the key bit string is random, and the transmitter authentication bit string includes control bits and authentication bits, and the key bit string includes control bits and key bits, wherein the control bits and the authentication bits of the transmitter authentication bit string are transmitted on different wavelengths, and the control bits and the key bits of the key bit string are transmitted on different wavelengths; sequentially transmitting, with the transmitter, the transmitter authentication bit string and the key bit string as quantum states, the transmitter authentication bit string being transmitted as quantum states using a predetermined basis; receiving, with a receiver, the quantum states; measuring, with the receiver, the quantum states of the transmitter authentication bit string using the predetermined basis to generate a receiver-measured transmitter authentication bit string; generating, with the receiver, a receiver-determined transmitter authentication bit string; and when the receiver-measured transmitter authentication bit substantially matches the receiver-determined transmitter authentication bit string, measuring the quantum states of the key bit string using a random basis to generate a receiver-measured key bit string. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. An apparatus for distributing quantum keys, the apparatus comprising:
-
a memory; a processor coupled to the memory, the processor to; generate a transmitter authentication bit string and a key bit string, wherein the transmitter authentication bit string is non-random and the key bit string is random, and the transmitter authentication bit string includes control bits and authentication bits, and the key bit string includes control bits and key bits, wherein the control bits and the authentication bits of the transmitter authentication bit string are transmitted on different wavelengths, and the control bits and the key bits of the key bit string are transmitted on different wavelengths; sequentially transmit the transmitter authentication bit string the key bit string as quantum states, the transmitter authentication bit string being transmitted as quantum states using a predetermined basis; receive a receiver authentication bit string as a transmitter-received receiver authentication bit string, and an identification of a random basis as a transmitter-received random basis; generate a transmitter-determined receiver authentication bit string; when the transmitter-received receiver authentication bit string matches the transmitter-determined receiver authentication bit string, determine a correct measurement basis based on the transmitter-received random basis; and extract a secret key from the key bit string using the correct measurement basis. - View Dependent Claims (12, 13)
-
-
14. An apparatus for distributing quantum keys, the apparatus comprising:
-
a memory; a processor coupled to the memory, the processor to; receive a plurality of quantum states, the plurality of quantum states representing a transmitter authentication bit string and a key bit string, wherein the transmitter authentication bit string is non-random and the key bit string is random, and the transmitter authentication bit string includes control bits and authentication bits, and the key bit string includes control bits and key bits, wherein the control bits and the authentication bits of the transmitter authentication bit string are transmitted on different wavelengths, and the control bits and the key bits of the key bit string are transmitted on different wavelengths; measure the quantum states of the transmitter authentication bit string using a predetermined basis to generate a receiver-measured transmitter authentication bit string; generate a receiver-determined transmitter authentication bit string; and when the receiver-measured transmitter authentication bit string substantially matches the receiver-determined transmitter authentication bit string, measure the quantum states of the key bit string using a random basis. - View Dependent Claims (15, 16)
-
Specification