KR20230030758A - Method for Communication Using Quantum Cryptography and Network for the Same - Google Patents

Abstract

The present invention relates to a quantum encryption communication method with increased stability using parity and a device therefor. A communication method of a transmission side therefor comprises: generating random numbers for quantum encrypted communication; generating parity bits according to a predetermined standard in the random number; transmitting the random number and the parity bit to a receiving side using a randomly generated transmission code sequence; and checking whether there is an error using the first part of the random number and the parity bit corresponding to the part of the transmission code string that matches the reception code string used for reception by the receiving side. The checking of an error includes checking for an error in a parity bit in a first part of the random number and the parity bit.

Description

Quantum encryption communication method with increased stability using parity and apparatus therefor {Method for Communication Using Quantum Cryptography and Network for the Same}

The present invention relates to a quantum encryption communication method with increased stability using parity and an apparatus therefor. It relates to a quantum cryptographic communication method and apparatus for increasing stability by increasing the probability of detecting a man-in-the-middle.

Recently, the term 'quantum security' can be seen quite often in the media. Quantum security, to be exact, refers to ‘Quantum-Safe Security’, which means a security technology that cannot be penetrated even with the computational power of a quantum computer.

On the other hand, as wired and wireless communication services have recently been widely spread and social awareness of personal privacy has increased, the security problem of communication networks has emerged as an important issue. In particular, since security in communication networks related to countries, corporations, finance, etc. can be important enough to extend beyond individual problems to social problems, the importance of security is greatly emphasized.

Along with the importance of security in such communication, especially quantum encryption, intensive research is being conducted on Quantum Key Distribution (QKD) technology.

Specifically, in a quantum cryptographic communication system, a quantum cryptographic key distribution device (QKD) in which an application generates a quantum cryptographic key is quantum cryptography according to the required specifications (eg, quantum cryptographic key length, quantum cryptographic key renewal cycle, etc.) A key is requested and obtained, and data is encrypted using the obtained quantum encryption key to perform communication.

However, the above-described QKD method can detect a man in the middle (eavesdropper) when an error of 25% or more exists. Therefore, if the man-in-the-middle attacks by lowering the attack rate, there is a disadvantage in that man-in-the-middle detection cannot be performed with the conventional QKD method described above.

In order to solve the above problem, in one aspect of the present invention, even if the attack rate of the man-in-the-middle is less than a certain rate in a quantum encryption method such as QKD, it is intended to increase stability by increasing the probability of man-in-the-middle detection using parity information.

In addition, as the error detection method (eg, BB84 method) in the QKD method is added with parity information as described above, how to perform it in detail is proposed, and a configuration for this is to be specified.

The problems to be solved in the present invention are not limited to the technical problems mentioned above, and other technical problems not mentioned will be clearly understood by those skilled in the art from the description below. You will be able to.

In one aspect of the present invention for solving the above problems, in a method of a transmitting side for quantum cryptographic communication, generating a random number for the quantum cryptographic communication; generating parity bits according to a predetermined criterion in the random number; transmitting the random number and the parity bit to a receiving side using a randomly generated transmission code sequence; Checking whether or not there is an error using the first part of the parity bit and the random number corresponding to the part corresponding to the received code string used for reception of the receiving side among the transmitted code strings, It proposes a quantum encryption communication method, characterized in that it comprises checking the error of the parity bit in the first part of the random number and the parity bit.

In this case, checking whether or not there is an error may further include supporting the receiving side to additionally check whether or not there is an error with respect to the second part having no parity bit error among the first part.

The quantum cryptographic communication may be quantum cryptographic communication using a Quantum Key Distribution (QKD) method, and the transmitting side and the receiving side may be nodes equipped with a hardware configuration for supporting QKD.

In addition, the transmitting side and the receiving side may be connected by a path supporting optical communication for supporting QKD.

Here, the transmission code string may be a code string in which the transmission side randomly generates a first value (+) or a second value (x) corresponding to each bit string of the random number, and the first part is It may be a part of the random number and the parity bit corresponding to a part in which code values of the received code string and the transmitted code string randomly generated by the side are identical.

More specifically, the first part may include the random number corresponding to a part in which the code value of the combination of the parity bits corresponding to the random number of the received code sequence and the transmitted code sequence arbitrarily generated by the receiving side coincide with the random number and the transmission code sequence. It may be part of a parity bit.

Meanwhile, checking the error of the parity bit checks a parity bit having a value different from a value generated according to the predetermined criterion from a bit string of the random number and the corresponding random number among the parity bits in the first part of the parity bits. may include doing

The predetermined criterion may be defined to generate the parity bit as a bit corresponding to the exclusive OR in units of 2 bits of the random number.

Based on this, the transmitting side may further include performing communication with the receiving side using a third part other than the first part of the random number and the parity bit.

On the other hand, in another aspect of the present invention, in a transmitting device for performing quantum cryptographic communication, a processor configured to generate random numbers for the quantum cryptographic communication and to generate parity bits according to a predetermined standard in the random numbers; a transceiver configured to transmit the random number and the parity bit to a receiving side using a randomly generated transmission code sequence; and a memory for storing the transmission code sequence, wherein the processor determines the random number and the parity bit corresponding to a portion identical to a received code sequence used for reception at the reception side among the transmission code sequences stored in the memory. It is configured to check whether there is an error using part 1, and the checking whether there is an error is to propose a quantum encryption communication device, characterized in that checking the error of the parity bit in the first part of the random number and the parity bit. do.

The processor may support the receiving side to additionally check whether or not there is an error in the second part having no parity bit error among the first part.

The quantum cryptographic communication may be quantum cryptographic communication using a Quantum Key Distribution (QKD) method, and the transmitting device may be installed in a host node of the transmitting device as a hardware configuration.

In addition, the transceiver may be connected to the receiver through a path supporting optical communication for QKD support.

Meanwhile, the transmission code string may be a code string in which the processor randomly generates a first value (+) or a second value (x) corresponding to each bit string of the random number, and the first part is It may be a part of the random number and the parity bit corresponding to a part in which code values of the randomly generated received code string and the transmitted code string match.

More specifically, the first part may include the random number corresponding to a part in which the code value of the combination of the parity bits corresponding to the random number of the received code sequence and the transmitted code sequence arbitrarily generated by the receiving side coincide with the random number and the transmission code sequence. It may be part of a parity bit.

Meanwhile, the processor detects an error of the parity bits by checking a parity bit having a value different from a value generated according to the predetermined criterion from a bit string of the random number and the corresponding random number among the parity bits in the first part of the parity bits. It can be configured to check.

The predetermined criterion may be defined to generate the parity bit as a bit corresponding to the exclusive OR in units of 2 bits of the random number.

In addition, the processor may control the transceiver to perform communication with the receiving side using a third portion of the random number and the parity bit other than the first portion.

On the other hand, in another aspect of the present invention, in a receiving side method for quantum cryptographic communication, receiving a random number and parity bit transmitted from a transmitting side using a randomly generated received code sequence; Checking whether there is an error using the first part of the parity bit and the random number corresponding to a portion of the received code sequence that matches the transmission code sequence used by the transmission side for transmission, wherein the checking whether the error occurs , check the error of the parity bit in the first part of the random number and the parity bit; We propose a quantum encryption communication method comprising additionally checking whether or not there is an error in the second part having no parity bit error among the first part.

The method may further include obtaining the random number information for the second part from the sender in order to further check whether or not there is an error in the second part.

Meanwhile, the quantum cryptographic communication may be quantum cryptographic communication using a Quantum Key Distribution (QKD) method, and the transmitting side and the receiving side may be nodes equipped with hardware configurations for QKD support.

The transmitting side and the receiving side may be connected through a path supporting optical communication for supporting QKD.

Meanwhile, the received code string may be a code string in which the receiving side randomly generates a first value (+) or a second value (x) corresponding to each bit string of the random number, and the first part is the transmitted code string. It may be a part of the random number and the parity bit corresponding to a part in which a code value of the transmitted code string randomly generated by the side and the received code string coincide.

Specifically, the first part includes the random number and the parity data corresponding to a portion in which code values of combinations of the parity bits corresponding to the random number are identical among the received code sequence and the received code sequence arbitrarily generated by the transmitter. It can be part of a bit.

Meanwhile, checking the error of the parity bit checks a parity bit having a value different from a value generated according to the predetermined criterion from a bit string of the random number and the corresponding random number among the parity bits in the first part of the parity bits. may include doing

The predetermined criterion may be defined to generate the parity bit as a bit corresponding to the exclusive OR in units of 2 bits of the random number.

In addition, the receiving side may further include performing communication with the transmitting side using a third part other than the first part of the random number and the parity bit.

On the other hand, in another aspect of the present invention, in a receiving device for quantum cryptographic communication, a transceiver configured to receive a random number and a parity bit transmitted from a transmitting side using a randomly generated received code sequence; A processor configured to check whether there is an error using the random number corresponding to a portion of the received code sequence that matches the transmission code sequence used by the transmitting side for transmission and a first part of the parity bit, Checking is to check an error of a parity bit in the first part of the random number and the parity bit; We propose a quantum encryption communication device, characterized in that it further includes checking whether or not there is an error in the second part having no parity bit error among the first part.

In addition, in order to further check whether or not there is an error in the second part, the processor may obtain the random number information about the second part from the sender.

Meanwhile, the quantum cryptographic communication may be a quantum cryptographic communication using a Quantum Key Distribution (QKD) method, and the receiving device may be installed in a host node of the receiving device as a hardware configuration.

The transceiver may be connected to the transmitter through a path supporting optical communication for supporting QKD.

Meanwhile, the received code string may be a code string in which the processor randomly generates a first value (+) or a second value (x) corresponding to each bit string of the random number, and the first part is It may be a part of the random number and the parity bit corresponding to a part in which code values of the randomly generated transmission code sequence and the reception code sequence match.

More specifically, the first part may include the random number corresponding to a part in which the code value for the combination of the parity bits corresponding to the random number among the received code sequence randomly generated by the transmitter and the received code sequence coincides with the random number and the received code sequence. It may be part of a parity bit.

Meanwhile, the processor detects an error of the parity bits by checking a parity bit having a value different from a value generated according to the predetermined criterion from a bit string of the random number and the corresponding random number among the parity bits in the first part of the parity bits. It can be configured to check.

In addition, the predetermined criterion may be defined to generate the parity bit as a bit corresponding to the exclusive OR in units of 2 bits of the random number.

In addition, the processor may control the transceiver to perform communication with the transmission side using a third part of the random number and the parity bit other than the first part.

According to the embodiments of the present invention as described above, even if the attack rate of the man-in-the-middle is less than a certain rate (eg, 25%) in a quantum encryption scheme such as QKD, the probability of detecting a man-in-the-middle is obtained by using parity information in addition to the generated random number. can increase stability.

In addition, as the parity information is added to the error detection method in the QKD method as described above, it is possible to efficiently perform quantum encryption communication by clarifying how to perform it in detail.

The effects obtainable in the present invention are not limited to the effects mentioned above, and other effects not mentioned can be clearly understood by those skilled in the art from the description below. will be.

1 is a diagram for explaining the configuration of a QKD quantum encryption key distribution system according to an embodiment of the present invention.
2 and 3 are diagrams for explaining the BB84 scheme of the QKD protocol according to an embodiment of the present invention.
4 is a diagram for explaining the concept of parity information for increasing stability according to an embodiment of the present invention.
5 is a diagram for explaining an operation method of a transmitting side and a receiving side according to an embodiment of the present invention.
6 and 7 are diagrams for explaining increased stability when parity is additionally utilized according to an embodiment of the present invention.
8 is a diagram for explaining device configurations of a transmitting side and a receiving side according to an embodiment of the present invention.

Hereinafter, with reference to the accompanying drawings, embodiments of the present invention will be described in detail so that those skilled in the art can easily carry out the present invention. However, the present invention may be embodied in many different forms and is not limited to the embodiments described herein. And in order to clearly explain the present invention in the drawings, parts irrelevant to the description are omitted, and similar reference numerals are attached to similar parts throughout the specification.

Throughout the specification, when a certain component is said to "include", it means that it may further include other components without excluding other components unless otherwise stated.

1 is a diagram for explaining the configuration of a QKD quantum encryption key distribution system according to an embodiment of the present invention.

As can be seen in Figure 1, the quantum encryption key distribution system 10 of the QKD method according to an embodiment of the present invention is composed of a source node 11, a receiving node 12 and a quantum path 13 The originating node 11 and the receiving node 12 generate and share a quantum encryption key while exchanging optical signals through the quantum path 13.

At this time, the originating node 11 and the receiving node 12 may be servers, clients or terminal devices connected to the server, or communication devices such as gateways and routers, or portable devices having mobility. In addition to , it may be configured using various devices capable of generating and sharing quantum cryptographic keys to perform communication.

In addition, the quantum path 13 is provided between the originating node 11 and the receiving node 12 to transmit an optical signal. The quantum path 13 may be configured using an optical fiber, but the present invention is not necessarily limited thereto. can be used

Accordingly, the originating node 11 and the receiving node 12 exchange information necessary for generating a quantum cryptographic key using the phase, polarization, etc. of the optical signal using various protocols such as the BB84 protocol, and obtain a quantum cryptographic key It is created and shared, and it is possible to effectively prevent the attacker 14 from stealing the quantum cryptographic key and attempting hacking.

Furthermore, in the quantum cryptographic communication system, communication is performed by performing encryption and decryption using the quantum cryptographic key generated in the quantum cryptographic key distribution system 10, thereby enhancing the security of the communication system.

However, in the case of using the QKD method as described above, there is a limit to detecting a man in the middle when an error of 25% or more exists. Hereinafter, the reason why such a limit occurs and how to use parity information to solve it explain about

2 and 3 are diagrams for explaining the BB84 scheme of the QKD protocol according to an embodiment of the present invention.

First, as shown in FIG. 2, the sender 11 (Alice) generates a random number sequence (a column of 1, 0: transmission data), and also transmits a code (+: a measuring device capable of identifying light polarized in the horizontal and vertical directions). Corresponding to , ×: Corresponding to a measuring device capable of identifying light polarized in an oblique direction) can be randomly determined. The combination of the random number sequence and the transmission code automatically determines the polarization direction of the transmitted light. Here, the combination of 0 and + produces light polarized in the horizontal direction, the combination of 1 and + produces light polarized in the vertical direction, the combination of 0 and × produces light polarized in the 45° direction, and the combination of 1 and × The light polarized in the direction of 135° is transmitted to the quantum communication path, respectively.

Next, the receiver 12 (Bob) randomly determines a reception code (+: a measurer capable of identifying light polarized in the horizontal and vertical directions, X: a measurer capable of identifying light polarized in an oblique direction), and By measuring light, received data (raw key) is obtained. Here, since the sender and the receiver each arbitrarily determine the transmit code and the receive code, the transmit code and the receive code may coincide or may not match with a probability of 1/2. If they match, the receiver gets the same bits as the random number sequence generated by the sender as received data. For example, the combination of light polarized in the horizontal direction and the reception code + gives 0, the combination of light polarized in the vertical direction and the reception code + gives 1, and the combination of light polarized in the 45° direction and the reception code × gives 0 and 1 are obtained by combining the light polarized in the 135° direction and the receiving code X, respectively. However, in the case of inconsistency, there is no relationship between the random number sequence generated by the sender and the received data measured by the receiver due to quantum mechanical properties.

Next, the sender and the receiver transmit/share code information to the other party to check whether the transmitted code and the received code match, and leave only the random number sequence or received data for the matched part.

In the example of FIG. 2 , it is assumed that only the part (++xxxx++xx) where the code matches is shown as described above in order to reduce the complexity of description.

Next, the sender/receiver 11, 12 discloses a randomly determined predetermined portion (eg, half) of the remaining random number sequence and received data to check the degree of error (Quantum Bit Error Rate; hereinafter abbreviated as 'QBER'), thereby attacking the attacker. Check whether (14; Eve) is eavesdropping. For example, in the examples of FIGS. 2 and 3, the lower 6 bits of the 12 bits of the remaining bit string are disclosed to determine whether or not there is an error.

If there is no error in the transmission/reception system and communication channel, the remaining random number sequence and the received data will be perfectly matched, but in general, a QBER of 3 to 7% occurs due to the imperfection of the transmission/reception system and channel. However, if the eavesdropping attack of the man in the middle 14 (Eve) is performed on the entire bit string, a QBER of 25% or more occurs due to quantum mechanical principles, and through this, the existence of the man in the middle 14 can be detected.

However, when the man-in-the-middle 14 intentionally does not carry out an eavesdropping attack on the entire bit stream and lowers the attack rate, a problem in which the existence of the man-in-the-middle 14 is unknown may occur.

4 is a diagram for explaining the concept of parity information for increasing stability according to an embodiment of the present invention.

As shown in FIG. 4, the sender (A) proposes to transmit the parity bit (P) based on the 0 and 1 values through the BB84 protocol as well as the existing 0 and 1 values when transmitting the signal. do. The first row of FIG. 4 indicates the 0/1st bit value of the generated random number and the index of the parity bit (P) value based on it, and the second row shows the value (random number) transmitted by the sender (A). there is.

In the example of FIG. 4 , the parity bit corresponds to the 0/1st bit value's multiplication value as an example. That is, when the 0/1th values are different from each other, the corresponding parity bit is set to 1, and when the 0/1th values are different from each other, the corresponding parity bit is set to 0.

As described above with reference to FIGS. 2 and 3, the sender A transmits a combination of a random number and parity generated using a randomly determined transmission code string (+++xxx+xx++++x+xxx), The receiver B may also receive a combination of random numbers and parity using a randomly determined reception code string (++xxxxxx++x+x++xx). Since a randomly generated received code sequence is used, the probability that the observation basis (i.e., code) is the same can be seen as 1/2 for each bit.

In an embodiment of the present invention, it is proposed to perform an error checking procedure only for a portion where transmission/reception code values corresponding to 0/1th bit values match and transmission/reception codes match up to parity bits. For example, in FIG. 4, the transmission/reception codes corresponding to the first 0/1 bit match and the received random number value matches the transmitted random number value, but the transmission/reception code used for parity bit transmission does not match, so this 0/1 The combination of the th bit and the parity bit is not used for error checking. On the other hand, the combination of the 0/1th bit and the parity bit indicated by reference numeral 410 matches all of the transmission and reception codes corresponding to them, so errors are checked through this combination. will be.

5 is a diagram for explaining an operation method of a transmitting side and a receiving side according to an embodiment of the present invention.

The method illustrated in FIG. 5 introduces the parity addition concept described above with respect to FIG. 4 to the BB84 method, but the present invention introduces the parity addition concept described above with respect to FIG. 4 to other QKD methods as well as the BB84 method. can be applied

First, in step S510, the transmitting side (Alice) may generate a random number. Also, the transmitting side according to an embodiment of the present invention may generate 1-bit parity for every 2 bits as described above with reference to FIG. 4 . However, it is possible to change how many bits to generate parity, and the example of FIG. 4 is only an example for convenience of understanding.

In step S530, the transmitting side (Alice) may transmit a random number and parity to the receiving side (Bob) through polarization. For example, the signal transmitted as described above with reference to FIG. 4 is random number-random number-parity-random number-random number-parity-... can have the same format as

In step S540, in the sifting process between the transmitting side (Alice) and the receiving side (Bob), when the bases of the transmitting and receiving side are the same among the two bits and the parity value of one (ie, 0/1 as described above with reference to FIG. 4) When the transmit/receive codes of the combination of the th bit and the parity bit match), only the error rate can be selected and used for checking the error rate.

Accordingly, in step S550, the transmitting side and the receiving side may randomly select some of the parity bits according to the BB84 algorithm and then exchange their positions and values. Based on this, the error rate of the parity bits is It can be checked (S560). That is, error checking using only the parity part among the parts selected in step S550 is performed first, and this method will be described in detail below.

In step S570, the receiving side may additionally compare error rates of random number bits and parity bits in order to determine whether eavesdropping or not. This error rate check can be seen as secondarily determining whether or not wiretapping has occurred.

After checking whether or not there is an error through the above process, if it is determined that there is no intermediary, the transmitting side and the receiving side can perform communication using the remaining part not used for the above-described error checking (S580).

6 and 7 are diagrams for explaining increased stability when parity is additionally utilized according to an embodiment of the present invention.

6 shows an example in which the transmitting side A generates parity P based on the 0/1 th bit of the generated random number and transmits it using an arbitrary transmission code, similarly to FIG. 4 . are doing However, unlike FIG. 4, it is a diagram for explaining the concept that a random error occurs due to the presence of a man in the middle (E: Eve), and the detection probability increases according to the present embodiment.

FIG. 6 shows a case in which only the parts where transmission/reception codes corresponding to the 0/1 th bit and parity combination of the transmission side (A) and the reception side (B) match are collected as described above with respect to FIG. 4 . Even in this case, if the middleman E exists, an error may appear as shown.

As described above in relation to step S560 of FIG. 5 , it is possible to find out that an error exists only through parity comparison rather than actual comparison between the transmission side A and the reception side B of the 0th and 1st data. (Part 610 in Fig. 6)

For example, in the first combination of information denoted by reference numeral 610, the values corresponding to the 0/1 bits are 1 and 1, but the parity is also observed as 1, indicating the presence of a middleman (E). The second combination of the positives and negatives denoted by reference numeral 610 also has observed values of 0 and 1 in values corresponding to the 0/1 bit, but the parity is observed as 0, indicating the existence of a middleman (E).

Subsequently, as described above in relation to step S570 of FIG. 5 , it is possible to secondarily check whether or not an error exists by utilizing the 0/1 th bit and the parity bit. For example, in the part indicated by reference numeral 620 in FIG. 6, the value of the transmitted 0/1 bit is 1, 1, but the observed value is 0, 0, so an error can be additionally checked.

In the case of combining these methods, according to the present embodiment, the probability of detecting a meson can be increased compared to the conventional QKD method. Specifically, in addition to the probability that the middleman (E) has an error in parity value (25%), there is no error in parity additionally, and the probability of having an error in either 0 or 1 (75% * (75% * 25% + 25 %*75%) = 28.125%) to detect the meson better.

In FIG. 7, when parity is sent as 0 but parity is received as 1 (lines 5 to 8), the existence of a man in the middle (E) can be basically found out, but with the existing BB84 protocol, when the parity is 0, the existence of a man in the middle can be found out. can't However, since 0 and 1 bits are additionally sent, when this value and the parity value are different (lines 2-3, reference numeral 710), the presence of an additional intermediate person can be found. In addition, the parity check according to the present embodiment can detect an error even in a part where the 0 and 1 bit values and the parity value do not match, as indicated by reference numeral 720 .

8 is a diagram for explaining device configurations of a transmitting side and a receiving side according to an embodiment of the present invention.

As shown in FIG. 8, a transmitting device (Alice) 850 generates a random number for quantum cryptographic communication, and a processor 890 configured to generate parity bits according to a predetermined standard in the random number, and the random number and the parity bit are randomly selected. It may include a transceiver 870 configured to transmit the generated transmission code sequence to a receiving side using the generated transmission code sequence, and a memory 880 storing the transmission code sequence.

The processor 890 uses the first part of the parity bits and the random number corresponding to the portion of the transmitted code sequence stored in the memory 880 that matches the received code sequence used for reception by the receiving side (Bob; 860). It can be configured to check whether The first part of the random number and the parity bit means the part of the random number and the parity bit corresponding to the part where the code value of the received code string randomly generated by the processor 930 of the receiving side 860 and the transmitted code string match. And, as described above with reference to FIG. 4, it means a part where not only the random number bit string but also the transmission/reception code string of parity corresponding thereto coincide.

Meanwhile, in the above description, checking whether there is an error includes primarily checking an error in a parity bit in the first part of the random number and the parity bit. That is, as indicated by reference numerals 710 and 720 in FIG. 7 , it means checking whether or not an error is included by comparing the parity part with the corresponding random number value.

On the other hand, in actual communication, the receiving side 860 performs secondary error checking, including additionally checking whether or not there is an error in the second part having no parity bit error among the first part, and as a result, the error level is It is performed when it is below a certain level, and communication may be performed using a part other than the first part.

As shown in FIG. 8 , quantum encryption communication may be quantum encryption communication using a QKD method, and accordingly, the transmitting device 850 and the receiving device 860 are hardware configurations of the host node 830 of the transmitting device. , may be mounted on the host node 840 of the receiving device.

That is, the QKD device (the transmitting device 850 and the receiving device 860) according to the present embodiment may be a hardware configuration mounted on the host devices 830 and 840 such as a PC. Transceivers 870 and 910 of the key distribution device may be connected to each other through a path P200 serving as a quantum channel, such as an optical cable, and through this, quantum encryption keys may be shared. The encryption key shared through this path (P200) is transmitted through a first value (+) or a second value (x) randomly generated by the processor 890 of the transmitting side 850, and the receiving side 860 It can be received by a received code sequence arbitrarily generated by the processor 930 of .

Meanwhile, as shown in FIG. 8 , the transmitting device 850 and the receiving device 860 may operate while being connected to separate encryption devices 810 and 820 connected through a general communication channel.

The receiving device 860 may also include a transceiver 910, a memory 920, and a processor 930, and the above-described method may be performed through this configuration.

Detailed descriptions of the preferred embodiments of the present invention disclosed as described above are provided to enable those skilled in the art to implement and practice the present invention. Although the above has been described with reference to preferred embodiments of the present invention, those skilled in the art will understand that the present invention can be variously modified and changed without departing from the scope of the present invention. For example, those skilled in the art can use each configuration described in the above-described embodiments in a manner of combining with each other.

Accordingly, the present invention is not intended to be limited to the embodiments shown herein but is to be accorded the widest scope consistent with the principles and novel features disclosed herein.

As described above, the heterogeneous quantum cryptography-based communication method and the network therefor according to the embodiments of the present invention can be used in various ways by increasing security performance and compatibility in a network in which QKD supporting nodes and QKD non-supporting nodes are mixed.

Claims (36)

In the method of the sending side for quantum cryptographic communication,
generate random numbers for the quantum cryptographic communication;
generating parity bits according to a predetermined criterion in the random number;
transmitting the random number and the parity bit to a receiving side using a randomly generated transmission code sequence;
Checking whether or not there is an error using the random number corresponding to a portion of the transmission code sequence that matches the received code sequence used for reception at the receiving side and the first part of the parity bit,
To check whether the above error is,
Characterized in that it comprises checking the error of the parity bit in the first part of the random number and the parity bit, quantum encryption communication method. According to claim 1,
To check whether the above error is,
The quantum encryption communication method further comprising supporting the receiving side to additionally check whether or not there is an error with respect to the second part having no parity bit error among the first part. According to claim 1,
The quantum cryptographic communication is quantum cryptographic communication using a Quantum Key Distribution (QKD) method,
The transmitting side and the receiving side are nodes having a hardware configuration for QKD support, quantum encryption communication method. According to claim 2,
The transmitting side and the receiving side are connected by a path supporting optical communication for QKD support, quantum encryption communication method. According to claim 4,
The transmission code sequence is a code sequence in which the transmission side randomly generates a first value (+) or a second value (x) corresponding to each bit string of the random number,
The first part,
The part of the random number and the parity bit corresponding to the part in which the code value matches among the received code string and the transmitted code string randomly generated by the receiving side. According to claim 5,
The first part,
A part of the random number and the parity bit corresponding to a part in which the code value for the combination of the parity bit corresponding to the random number is identical among the received code string and the transmitted code string randomly generated by the receiving side, quantum encryption communication method . According to claim 1,
Checking the error of the parity bit,
And checking a parity bit having a value different from a value generated according to the predetermined criterion from a bit string of a corresponding random number among parity bits in a first part of the random number and the parity bits. According to claim 7,
The predetermined criterion is defined to generate the parity bit as a bit corresponding to an exclusive OR in units of 2 bits of the random number. According to claim 1,
The transmitting side further comprises performing communication with the receiving side using a third part other than the first part of the random number and the parity bit, the quantum encryption communication method. In the transmitting device for performing quantum cryptographic communication,
a processor configured to generate random numbers for the quantum cryptographic communication, and to generate parity bits according to a predetermined standard in the random numbers;
a transceiver configured to transmit the random number and the parity bit to a receiving side using a randomly generated transmission code sequence; and
A memory for storing the transmission code string;
The processor is configured to check whether there is an error using the first part of the parity bit and the random number corresponding to a portion of the transmission code sequence stored in the memory that matches the received code sequence used for reception at the receiving side,
To check whether the above error is,
Characterized in that to check the error of the parity bit in the first part of the random number and the parity bit, quantum encryption communication device. According to claim 10,
The processor supports the receiving side to additionally check whether or not there is an error with respect to the second part having no parity bit error among the first part. According to claim 10,
The quantum cryptographic communication is quantum cryptographic communication using a Quantum Key Distribution (QKD) method,
The transmission-side device is a hardware configuration mounted on a host node of the transmission-side device. According to claim 12,
The transceiver is connected to the receiving side by a path that supports optical communication for QKD support. According to claim 13,
The transmission code sequence is a code sequence in which the processor randomly generates a first value (+) or a second value (x) corresponding to each bit sequence of the random number,
The first part,
A portion of the random number and the parity bit corresponding to a portion in which a code value matches among the received code sequence and the transmitted code sequence arbitrarily generated by the receiving side. 15. The method of claim 14,
The first part,
A part of the random number and the parity bit corresponding to a part in which the code value for the combination of the parity bit corresponding to the random number is identical among the received code string and the transmitted code string randomly generated by the receiving side, quantum encryption communication device . According to claim 10,
The processor checks a parity bit having a value different from a value generated according to the predetermined criterion from a bit string of a corresponding random number among parity bits in the first part of the random number and the parity bits, thereby checking an error of the parity bit. A quantum cryptographic communication device configured. 17. The method of claim 16,
The predetermined criterion is defined to generate the parity bit as a bit corresponding to an exclusive OR in units of 2 bits of the random number. According to claim 10,
Wherein the processor controls to perform communication with the receiving side through the transceiver using a third part other than the first part of the random number and the parity bit. In the method of the receiving side for quantum cryptographic communication,
Receiving a random number and parity bits transmitted from a transmitting side using a randomly generated received code sequence;
Checking whether or not there is an error using the random number corresponding to a portion of the received code sequence that matches the transmission code sequence used by the transmission side for transmission and the first part of the parity bit,
To check whether the above error is,
check the random number and the first part of the parity bits for errors in parity bits;
Characterized in that, it comprises additionally checking whether or not there is an error in the second part having no parity bit error among the first part. According to claim 19,
Further comprising obtaining the random number information for the second part from the transmitting side to further check whether or not there is an error in the second part. According to claim 19,
The quantum cryptographic communication is quantum cryptographic communication using a Quantum Key Distribution (QKD) method,
The transmitting side and the receiving side are nodes having a hardware configuration for QKD support, quantum encryption communication method. According to claim 21,
The transmitting side and the receiving side are connected by a path supporting optical communication for QKD support, quantum encryption communication method. 23. The method of claim 22,
The received code string is a code string in which the receiving side randomly generates a first value (+) or a second value (x) corresponding to each bit string of the random number,
The first part,
The part of the random number and the parity bit corresponding to the part in which the code value matches among the transmission code sequence and the reception code sequence arbitrarily generated by the transmitting side. 24. The method of claim 23,
The first part,
A part of the random number and the parity bit corresponding to a part in which the code value for the combination of the parity bit corresponding to the random number among the received code string arbitrarily generated by the transmitting side and the received code string coincides, quantum encryption communication method . According to claim 19,
Checking the error of the parity bit,
And checking a parity bit having a value different from a value generated according to the predetermined criterion from a bit string of a corresponding random number among parity bits in a first part of the random number and the parity bits. 26. The method of claim 25,
The predetermined criterion is defined to generate the parity bit as a bit corresponding to an exclusive OR in units of 2 bits of the random number. According to claim 19,
The receiving side further comprises performing communication with the transmitting side using a third part other than the first part of the random number and the parity bit, the quantum encryption communication method. In the receiving device for quantum cryptographic communication,
a transceiver configured to receive a random number and parity bits transmitted from a transmitting side by using a randomly generated received code sequence;
A processor configured to check whether there is an error using the first part of the parity bit and the random number corresponding to a portion of the received code sequence that matches a transmission code sequence used by the transmission side for transmission,
To check whether the above error is,
check the random number and the first part of the parity bits for errors in parity bits;
Characterized in that, it comprises additionally checking whether or not there is an error with respect to the second part having no parity bit error among the first part. 29. The method of claim 28,
Wherein the processor obtains the random number information for the second part from the transmitter in order to further check whether or not there is an error in the second part. 29. The method of claim 28,
The quantum cryptographic communication is quantum cryptographic communication using a Quantum Key Distribution (QKD) method,
The receiving device is a hardware configuration mounted on a host node of the receiving device. 31. The method of claim 30,
The transceiver is connected to the transmitting side by a path that supports optical communication for QKD support. 32. The method of claim 31,
The received code sequence is a code sequence in which the processor randomly generates a first value (+) or a second value (x) corresponding to each bit string of the random number,
The first part,
A portion of the random number and the parity bit corresponding to a portion in which a code value matches among the transmission code sequence and the reception code sequence randomly generated by the transmitting side. 33. The method of claim 32,
The first part,
A part of the random number and the parity bit corresponding to a part in which the code value for the combination of the parity bit corresponding to the random number among the received code string arbitrarily generated by the transmitting side and the received code string coincides, quantum encryption communication device . 29. The method of claim 28,
The processor checks a parity bit having a value different from a value generated according to the predetermined criterion from a bit string of a corresponding random number among parity bits in the first part of the random number and the parity bits, thereby checking an error of the parity bit. A quantum cryptographic communication device configured. 35. The method of claim 34,
The predetermined criterion is defined to generate the parity bit as a bit corresponding to an exclusive OR in units of 2 bits of the random number. 29. The method of claim 28,
Wherein the processor controls to perform communication with the transmitting side through the transceiver using a third part other than the first part of the random number and the parity bit.

Images