A multiple-time identity certification system and method base on quantum communication network with time stamp as random number

An identity authentication and quantum communication technology, applied in digital transmission systems, user identity/authority verification, transmission systems, etc., can solve problems such as high system time synchronization requirements, difficulty in implementing large-scale distributed systems, and security risks.

Active Publication Date: 2018-10-19
RUBAN QUANTUM TECH CO LTD
View PDF3 Cites 6 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] (1) Existing identity authentication technology based on the Kerberos authentication scheme uses time stamps, resulting in the possibility of replay attacks
[0007] (2) The requirements of the Kerberos protocol are based on clock synchronization in the network, which has high requirements for time synchronization of the entire system, and is difficult to achieve in large-scale distributed systems
[0008] (3) In the prior art, the server has to distribute the session key to the two clients respectively, which has certain security risks
[0009] (4) In the prior art, the client key is stored in the client memory, which can be stolen by malicious software or malicious operations
[0010] (5) In the prior art, the number of information transmitted by identity authentication is relatively large, and five pieces of information need to be transmitted to complete one identity authentication

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A multiple-time identity certification system and method base on quantum communication network with time stamp as random number
  • A multiple-time identity certification system and method base on quantum communication network with time stamp as random number
  • A multiple-time identity certification system and method base on quantum communication network with time stamp as random number

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0091] Embodiment 1, authentication of two client terminals belonging to the same quantum network service station in the local area network

[0092]In the following steps, the encryption, decryption and encryption operations involved in each client side are all performed in the matched quantum key card. The encryption and decryption operations involved in the identity authentication server and ticket permission server are completed in the encryption and decryption server of the quantum network service station.

[0093] When both client A and client B belong to the same quantum network service station, the quantum key card involved in the identity authentication process is registered and issued at the local quantum network service station. For specific steps, see figure 2 , in the figure, the curly brackets indicate the encrypted part, and the brackets indicate multiple transmitted contents, separated by commas, and the following content indicates the key used, such as {A, N ...

Embodiment 2

[0126] Embodiment 2, identity authentication of two client terminals in the wide area network

[0127] Such as image 3 As shown, when client A and client B do not belong to the same quantum network service station, the quantum key cards involved in the identity authentication process are registered and issued by the quantum network service station to which the client belongs. The difference between the system architecture in this embodiment and Embodiment 1 is that it is applied in a wide area network. The first-level switching center is a quantum network core station in a prefecture-level city or a fairly large area, and the second-level switching center is a county-level city or equivalent. The quantum network core station of a large or small area, the quantum network service station is a quantum communication access site of a fairly large area of ​​a township or street office.

[0128] The primary switching center is connected with multiple subordinate secondary switching...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a multiple-time identity certification system and method base on quantum communication network with time stamp as random number. The system includes a client A, a client B anda quantum network service station, when the client A applies for ticket to the client B, the time stamp is generated by the client B and sent to the quantum network service station, the ticket is generated by utilizing the time stamp and the session key through the quantum network service station, and the ticket is distributed to the client A and is distributed to the client B through the client A; the session key is used for enforcing the enciphering communication between the client A and the client B and is synchronously generated between the client A and the quantum network service station;and each client is configurated with a quantum secret key card used for generating true random number as the certification identification during the ticket distribution and the using of the ticket. The multiple-time certification is enforced based on the quantum communication network with time stamp as random number, furthermore the safety is improved, the generation mode of the session key is improved, and information transfer in identity certification is reduced.

Description

technical field [0001] The invention relates to the technical field of quantum communication, in particular to a system and method for identity authentication based on a quantum network service station. Background technique [0002] Identity authentication is the basic technology to achieve information security. The system checks the user's identity to confirm whether the user has access and use rights to certain resources, and can also perform identity authentication between systems. [0003] Currently, the identity authentication system in the communication network generally adopts the Kerberos authentication scheme. Kerberos is a network authentication protocol designed to provide strong authentication services for client / server applications through a key system. The realization of the authentication process does not depend on the authentication of the host operating system, does not require trust based on the host address, does not require the physical security of all h...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L9/32H04L9/08
CPCH04L9/0852H04L9/3213H04L9/3297
Inventor 富尧钟一民
Owner RUBAN QUANTUM TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap