Authentication method, apparatus and system used in quantum key distribution process

US 10,505,724 B2
Filed: 08/17/2016
Issued: 12/10/2019
Est. Priority Date: 08/18/2015
Status: Active Grant

First Claim

Patent Images

1. A method for distributing quantum keys, the method comprising:

generating, with a transmitter, a transmitter authentication bit string and a key bit string, wherein the transmitter authentication bit string is non-random and the key bit string is random, and the transmitter authentication bit string includes control bits and authentication bits, and the key bit string includes control bits and key bits, wherein the control bits and the authentication bits of the transmitter authentication bit string are transmitted on different wavelengths, and the control bits and the key bits of the key bit string are transmitted on different wavelengths;

sequentially transmitting, with the transmitter, the transmitter authentication bit string and the key bit string as quantum states, the transmitter authentication bit string being transmitted as quantum states using a predetermined basis;

receiving, with a receiver, the quantum states;

measuring, with the receiver, the quantum states of the transmitter authentication bit string using the predetermined basis to generate a receiver-measured transmitter authentication bit string;

generating, with the receiver, a receiver-determined transmitter authentication bit string; and

when the receiver-measured transmitter authentication bit substantially matches the receiver-determined transmitter authentication bit string, measuring the quantum states of the key bit string using a random basis to generate a receiver-measured key bit string.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present application discloses an authentication method used in a QKD process, and further discloses additional authentication methods and corresponding apparatuses, as well as an authentication system. The method comprises: selecting, by a transmitter according to a basis selection rule, a basis of preparation for transmitter authentication information that is generated with a first pre-provisioned algorithm and varies dynamically, and transmitting quantum states containing key information and the transmitter authentication information; and measuring, by a receiver, quantum states of the transmitter authentication information according to the basis selection rule, and ending the QKD process if a measurement result is inconsistent with corresponding information calculated with the first pre-provisioned algorithm. By means of this technical solution, dynamic authentication of a requestor of QKD can be achieved in a QKD process, a defense can be provided against spoofing attacks, man-in-the-middle attacks and distributed denial of service (DDoS) attacks, and the security of the QKD process is improved; furthermore, a waste of quantum key resources can be avoided as well.

120 Citations

16 Claims

1. A method for distributing quantum keys, the method comprising:
- generating, with a transmitter, a transmitter authentication bit string and a key bit string, wherein the transmitter authentication bit string is non-random and the key bit string is random, and the transmitter authentication bit string includes control bits and authentication bits, and the key bit string includes control bits and key bits, wherein the control bits and the authentication bits of the transmitter authentication bit string are transmitted on different wavelengths, and the control bits and the key bits of the key bit string are transmitted on different wavelengths;
  
  sequentially transmitting, with the transmitter, the transmitter authentication bit string and the key bit string as quantum states, the transmitter authentication bit string being transmitted as quantum states using a predetermined basis;
  
  receiving, with a receiver, the quantum states;
  
  measuring, with the receiver, the quantum states of the transmitter authentication bit string using the predetermined basis to generate a receiver-measured transmitter authentication bit string;
  
  generating, with the receiver, a receiver-determined transmitter authentication bit string; and
  
  when the receiver-measured transmitter authentication bit substantially matches the receiver-determined transmitter authentication bit string, measuring the quantum states of the key bit string using a random basis to generate a receiver-measured key bit string.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1, further comprising:
    - generating, with the receiver, a receiver authentication bit-string;
      
      transmitting, with the receiver, the receiver authentication bit string and an identification of the random basis;
      
      receiving, with the transmitter, the receiver authentication bit string as a transmitter-receiver authentication bit string, and the identification of the random basis as transmitter-received random basis;
      
      generating with the transmitter, a transmitter-determined receiver authentication bit string;
      
      when the transmitter-received receiver authentication bit string matches the transmitter-determined receiver authentication bit string, determining a correct measurement basis based on the transmitter-received random basis; and
      
      extracting, with the transmitter, a secret key from the bit string using the correct measurement basis.
  - 3. The method of claim 2, further comprising:
    - transmitting, with the transmitter, the correct measurement basis;
      
      receiving, with the receiver, the correct measurement basis as a received corrected basis; and
      
      extracting the secret key from the receiver-measured key bit string using the received corrected basis.
  - 4. The method of claim 1, wherein generating the transmitter authentication bit string includes:
    - determining, with the transmitter, a transmitter identification;
      
      determining, with the transmitter, a synchronously changing parameter according to a preset policy by both the transmitter and the receiver andinputting the transmitter identification and the synchronously changing parameter into a first pre-provisioned algorithm to generate the transmitter authentication bit string.
  - 5. The method of claim 4, wherein the synchronously changing parameter according to the preset policy includes a number of times the transmitter and the receiver perform a quantum key distribution (“
    - QKD”
      
      ) processes.
  - 6. The method of claim 4, wherein generating the receiver-determined transmitter authentication bit string includes:
    - determining, with the receiver, the transmitter identification;
      
      determining, with the receiver, the synchronously changing parameter according to the preset policy; and
      
      inputting the transmitter identification and the synchronously changing parameter into the first pre-provisioned algorithm to generate the receiver-determined transmitter authentication bit string.
  - 7. The method of claim 6 wherein generating the receiver authentication bit string includes:
    - determining, with the receiver, a receiver identification;
      
      determining, with the receiver, a variant of the synchronously changing parameter according to the preset policy; and
      
      inputting the receiver identification and the variant of the synchronously changing parameter into a second pre-provisioned algorithm to generate the receiver authentication bit string.
  - 8. The method of claim 7, wherein generating the transmitter-determined receiver authentication bit string includes:
    - determining, with the transmitter, the receiver identification;
      
      determining, with the transmitter, the variant of the synchronously changing parameter according to the preset policy; and
      
      inputting the receiver identification and the variant of the synchronously changing parameter into the second pre-provisioned algorithm to generate the receiver authentication bit string.
  - 9. The method of claim 7, wherein the first and second pre-provisioned algorithms include a hash function.
  - 10. The method of claim 1, wherein the transmitter authentication bit string having an agreed length.

11. An apparatus for distributing quantum keys, the apparatus comprising:
- a memory;
  
  a processor coupled to the memory, the processor to;
  
  generate a transmitter authentication bit string and a key bit string, wherein the transmitter authentication bit string is non-random and the key bit string is random, and the transmitter authentication bit string includes control bits and authentication bits, and the key bit string includes control bits and key bits, wherein the control bits and the authentication bits of the transmitter authentication bit string are transmitted on different wavelengths, and the control bits and the key bits of the key bit string are transmitted on different wavelengths;
  
  sequentially transmit the transmitter authentication bit string the key bit string as quantum states, the transmitter authentication bit string being transmitted as quantum states using a predetermined basis;
  
  receive a receiver authentication bit string as a transmitter-received receiver authentication bit string, and an identification of a random basis as a transmitter-received random basis;
  
  generate a transmitter-determined receiver authentication bit string;
  
  when the transmitter-received receiver authentication bit string matches the transmitter-determined receiver authentication bit string, determine a correct measurement basis based on the transmitter-received random basis; and
  
  extract a secret key from the key bit string using the correct measurement basis.
- View Dependent Claims (12, 13)
- - 12. The apparatus of claim 11 wherein to generate the transmitter authentication bit string, the processor to further:
    - determine a transmitter identification;
      
      determine a synchronously changing parameter according to a preset policy; and
      
      input the transmitter identification and the synchronously changing parameter into a first pre-provisioned algorithm to generate the transmitter authentication bit string.
  - 13. The apparatus of claim 12, wherein to generate the transmitter-determined receiver authentication bit string, the processor to further:
    - determine a receiver identification;
      
      determine a variant of the synchronously changing parameter according to the preset policy; and
      
      input the receiver identification and the variant of the synchronously changing parameter into a second pre-provisioned algorithm to generate the transmitter-determined receiver authentication bit string.

14. An apparatus for distributing quantum keys, the apparatus comprising:
- a memory;
  
  a processor coupled to the memory, the processor to;
  
  receive a plurality of quantum states, the plurality of quantum states representing a transmitter authentication bit string and a key bit string, wherein the transmitter authentication bit string is non-random and the key bit string is random, and the transmitter authentication bit string includes control bits and authentication bits, and the key bit string includes control bits and key bits, wherein the control bits and the authentication bits of the transmitter authentication bit string are transmitted on different wavelengths, and the control bits and the key bits of the key bit string are transmitted on different wavelengths;
  
  measure the quantum states of the transmitter authentication bit string using a predetermined basis to generate a receiver-measured transmitter authentication bit string;
  
  generate a receiver-determined transmitter authentication bit string; and
  
  when the receiver-measured transmitter authentication bit string substantially matches the receiver-determined transmitter authentication bit string, measure the quantum states of the key bit string using a random basis.
- View Dependent Claims (15, 16)
- - 15. The apparatus of claim 14, wherein to generate a receiver-determined transmitter authentication bit string, the processor to further:
    - determine a transmitter identification;
      
      determine a synchronously changing parameter according to a preset policy; and
      
      input the transmitter identification and the synchronously changing parameter into a pre-provisioned algorithm to generate the receiver-determined transmitter authentication bit string.
  - 16. The apparatus of claim 15, wherein the processor to further:
    - generate a receiver authentication bit string; and
      
      transmit the receiver authentication bit string and an identification of the random basis.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Alibaba Group Holding Ltd.
Original Assignee
Alibaba Group Holding Ltd.
Inventors
Fu, Yingfang
Primary Examiner(s)
Giddins, Nelson S.

Application Number

US15/239,131
Publication Number

US 20170054556A1
Time in Patent Office

Days
Field of Search
US Class Current
CPC Class Codes

H04L 63/083   using passwords cryptograph...

H04L 9/0852   Quantum cryptography transm...

H04L 9/3226   using a predetermined code,...

H04W 12/06   Authentication

Authentication method, apparatus and system used in quantum key distribution process

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

120 Citations

16 Claims

Specification

Solutions

Use Cases

Quick Links

Authentication method, apparatus and system used in quantum key distribution process

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

120 Citations

16 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links