Quantum random number-based passive lock quantum security authentication method and system

Abstract

This invention discloses a quantum-secure authentication method and system for passive locks based on quantum random numbers, belonging to the field of quantum information security and smart lock technology. The system includes a passive lock, a mobile terminal, and a key management platform. The passive lock has a built-in security chip, and its non-volatile memory contains a sequence of truly random numbers generated by a quantum random number generator as a quantum key pool. During authentication, after power-on, the passive lock extracts a random number from the key pool as a challenge code and sends it to the mobile terminal. The mobile terminal performs a quantum-secure signature operation on the challenge code based on the pre-set quantum key and returns the result. The passive lock verifies the signature to complete two-way authentication. After successful authentication, encrypted communication is performed using a one-time pad symmetric key. This invention utilizes the inherent randomness of quantum random numbers to fundamentally eliminate random number prediction attacks. Combined with a lightweight quantum security protocol, it achieves high-strength security authentication resistant to quantum computing attacks in low-power passive lock scenarios.

Description

Technical Field

[0001] This invention relates to the fields of quantum information security technology and smart lock technology, and in particular to a passive lock quantum security authentication method and system based on quantum random numbers. Background Technology

[0002] Passive locks, which are locks that do not carry their own power supply or rely only on temporary external power, are widely used in industrial control, logistics and transportation, power facilities, smart homes, and the sharing economy due to their low power consumption, high reliability, and ease of deployment. (Refer to...) Figure 1 When these locks are in operation, they typically obtain temporary power through wireless communication (such as NFC, Bluetooth) or physical contact with mobile terminals (such as smartphones, dedicated keyers), and complete identity authentication and command interaction in the process.

[0003] In existing technologies, passive lock authentication schemes mainly suffer from the following technical defects: First, the security of random number sources is insufficient. Traditional passive lock authentication protocols often rely on pseudo-random numbers generated by software algorithms as challenge codes or session keys. For example, random numbers generated using the rand() function in the C standard library or a linear feedback shift register (LFSR). These pseudo-random numbers have inherent periodicity and determinism. Once an attacker obtains the random number generation algorithm and initial seed through reverse engineering or side-channel attacks, they can predict all subsequent random numbers, easily cracking the authentication mechanism or launching a replay attack. More seriously, in IoT and Industrial Internet scenarios, passive locks are numerous and widely distributed. Once the pseudo-random number algorithm of one lock is cracked, attackers can predict the random numbers of all locks of the same model in batches, causing large-scale, cascading security risks, with the harm amplified exponentially.

[0004] Second, there is a lack of resistance to quantum computing attacks. Currently, some high-end passive locks use digital signature schemes based on traditional public-key cryptography (such as RSA and Elliptic Curve Cryptography, ECC) for authentication. However, with the rapid development of quantum computing technology, quantum algorithms such as Shor's algorithm can break these asymmetric encryption systems in polynomial time. Attackers can currently intercept and store encrypted unlocking commands, and then use them to crack them in bulk once quantum computers mature—a "collect now, decrypt later" threat that compromises the long-term security of locks. This "collect now, decrypt later" attack pattern poses a fundamental challenge to traditional security systems because it requires security solutions to cover decades of technological evolution, a timescale in which traditional public-key systems based on mathematical problems are no longer reliable.

[0005] Third, there is a contradiction between the limited physical resources and the high security requirements of passive locks. Passive locks typically use low-power microcontrollers (MCUs), which have limited computing power and storage space, and only operate for a brief period after power is supplied. This makes them unable to support complex, multi-round authentication handshake protocols. Traditional security chips or complex cryptographic operations would significantly increase hardware costs and power consumption, even exceeding the instantaneous power supply capability of passive locks, thus limiting the deployment of high-security solutions in the passive lock field. Furthermore, the instantaneous power supply characteristic of passive locks requires the authentication protocol to be completed within tens of milliseconds. Any complex calculations exceeding this time window will cause the lock to lose power before authentication is complete, resulting in the failure of the entire unlocking process. Therefore, in the field of passive locks, the computational complexity and power consumption of the security protocol are hard constraints determining its feasibility, rather than a simple performance optimization problem.

[0006] Therefore, designing a highly secure authentication method and system that can fundamentally solve the problem of predictability of random numbers, resist future quantum computing attacks, and adapt to the low power consumption and instantaneous power supply characteristics of passive locks is a technical challenge that urgently needs to be solved in this field. Summary of the Invention

[0007] To address the shortcomings of existing technologies, the purpose of this invention is to provide a quantum-secure authentication method and system for passive locks based on quantum random numbers, so as to achieve quantum-secure level identity authentication and communication encryption of passive locks under low power consumption conditions.

[0008] The above-mentioned objective of this invention is achieved through the following technical solutions: This invention provides a passive lock quantum-secure authentication system based on quantum random numbers, comprising: At least one passive lock, at least one mobile terminal, and a quantum random number cloud service platform; The passive lock integrates a first quantum random number generator chip, a security chip, and a verification module. The security chip includes a non-volatile memory for storing a first quantum key pool generated and written by the first quantum random number generator chip during the initialization phase. The verification module is used to generate challenge information and verify the quantum security response information returned by the mobile terminal after the passive lock is temporarily powered by the mobile terminal. The mobile terminal integrates a second quantum random number generator chip and a quantum secure signature module; the mobile terminal stores a second quantum key pool, the contents of which are identical and synchronized with the first quantum key pool; the quantum secure signature module is used to respond to the challenge of the passive lock by generating a response signature using the quantum key in the second quantum key pool. The quantum random number cloud service platform is used to distribute the same quantum key pool to the passive lock and the mobile terminal during the initialization phase, and to record the usage status of the key pool.

[0009] The first quantum random number generator chip is connected to the security chip via a physically non-clonable on-chip bus, ensuring that random numbers are not detected or tampered with externally during generation and transmission. The verification module integrates a hardware-accelerated symmetric cryptography engine, specifically designed to perform hash message authentication code or block cipher-based message authentication code operations. Under instantaneous power supply conditions, the power consumption of this hardware-accelerated engine is reduced by at least 90% compared to a general-purpose microcontroller performing software cryptographic operations, thereby ensuring that the entire authentication process is completed within the limited instantaneous power supply window of the passive lock.

[0010] The quantum-secure signature module of the mobile terminal further includes an isolated execution environment, in which the second quantum key pool is stored to ensure that the key data remains confidential even if the mobile terminal's operating system is compromised.

[0011] The quantum random number cloud service platform has a built-in quantum random number generator array. Its entropy source is based on vacuum fluctuations or photon arrival time measurement. The output true random number sequence passes the State Cryptography Administration or internationally recognized randomness detection standards, ensuring the physical intrinsic randomness of the key pool and eliminating the periodic or predictable defects of pseudo-random number generators from the source.

[0012] In the technical solution of this invention, both the first and second quantum random number generator chips are true random number sources based on quantum physical processes, such as the photon shot noise effect, quantum tunneling effect, or spontaneous emission effect. These physical processes possess intrinsic and unpredictable randomness, and the output random number sequences do not exhibit any periodicity or determinism, thus fundamentally solving the security defects of traditional pseudo-random number schemes. Furthermore, since the random numbers output by the quantum random number generator chips are directly used to construct the key pool and generate challenge values, the security foundation of the entire system is built upon physical laws, rather than on the complexity assumptions of mathematical problems. This combination of "physical security" and "mathematical security" produces a synergistic effect: physical security ensures the unpredictability of the key source, while mathematical security (symmetric cryptography) ensures the security of key usage. Together, they construct a secure system that is unpredictable in the generation stage and unbreakable in the usage stage.

[0013] According to one embodiment of the present invention, the verification module of the passive lock generates challenge information by specifically calling the first quantum random number generator chip to generate a first random number as a key index, and generating a second random number as an anti-replay challenge value; Send the first random number and the second random number to the mobile terminal; The system receives the response credentials returned by the mobile terminal, extracts the corresponding quantum key from the first quantum key pool according to the first random number, performs cryptographic operations on the second random number to obtain a local verification value, and performs identity determination by comparing the response credentials with the local verification value.

[0014] The first random number serves as the key index, with a length of at least 16 bits, enabling the key pool to support at least 65,536 independent key groups, thus meeting the needs of passive locks for massive authentication throughout their entire lifecycle. The second random number serves as the anti-replay challenge value, with a length of at least 128 bits, sufficient to resist any actual brute-force attack and birthday attack, ensuring the freshness of each authentication.

[0015] The first random number serves as the key index, and its value space determines the maximum capacity of the key pool. In practical deployments, the length of the key index can be flexibly configured based on the expected number of uses and storage space of the passive lock. For example, for an industrial-grade lock with an expected lifespan of 100,000 uses, a 20-bit key index can be selected, supporting a key pool of over 1 million groups, far exceeding actual needs and providing ample redundancy. This quantum random number-based key indexing method has an unexpected effect: since the key index itself is generated by a true random number generator, attackers cannot narrow down the key search space by predicting the index value. This makes any exhaustive attack on the key pool more difficult due to the lack of index determinism, effectively adding another layer of uncertainty to the index space on top of the original key space, forming a double security guarantee.

[0016] According to one embodiment of the present invention, the quantum-secure signature module of the mobile terminal is specifically used for: Receive the first and second random numbers sent by the passive lock; The corresponding quantum key is extracted from the second quantum key pool according to the first random number; The quantum key is used to perform a message authentication code operation or a symmetric encryption operation on the second random number to generate a response credential and send it to the passive lock.

[0017] The message authentication code operation preferably employs either HMAC-SHA256 or CMAC-AES algorithms. HMAC-SHA256 is based on the one-wayness of hash functions, while CMAC-AES is based on the pseudo-randomness of block ciphers. Both are internationally recognized secure algorithms, and in the post-quantum cryptography era, because they belong to symmetric cryptosystems, their security is unaffected by quantum computing attacks such as Shor's algorithm, providing long-term, quantum-resistant security. This choice, combined with quantum random numbers, forms a quantum-resistant capability throughout the entire process from key generation to cryptographic operations. The synergistic effect is that quantum random numbers provide high-entropy key input, while symmetric cryptographic algorithms provide quantum-resistant computational security. Together, they ensure the system's security in the quantum computing era, a feat unmatched by any scheme using only traditional random numbers or asymmetric cryptographic techniques.

[0018] The security of the message authentication code operation or symmetric encryption operation relies on the confidentiality of the key and the algorithm's resistance to analysis. This invention preferably uses HMAC based on hash functions or CMAC based on block ciphers. These algorithms have been proven in the industry over a long period and possess extremely high security, remaining secure even in the post-quantum era. More importantly, the computational overhead of these symmetric cryptographic operations is far lower than that of asymmetric cryptographic operations. On the mobile terminal side, even software implementations can be completed in milliseconds without affecting the user experience. On the passive lock side, since the verification operation only involves simple hash or block cipher decryption, its power consumption is extremely low, perfectly suited for scenarios requiring instantaneous power supply. This lightweight and quantum-resistant cryptographic algorithm selection, combined with a quantum random number source, constitutes a highly efficient and secure authentication foundation.

[0019] This invention also provides a passive lock quantum security authentication method based on quantum random numbers, applied to a passive lock quantum security authentication system based on quantum random numbers described in the above embodiments, comprising the following steps: Step S1: Initialization phase, the quantum random number cloud service platform generates a massive number of true random number sequences as a quantum key pool, and pre-installs them into the security chip of the target passive lock and the secure storage area of ​​the authorized mobile terminal respectively; Step S2: Authentication phase. When the mobile terminal establishes a physical connection with the passive lock and supplies it with power, the passive lock uses its built-in quantum random number generator to generate a first random number as a key index and a second random number as an anti-replay challenge value, and sends the first and second random numbers to the mobile terminal. Step S3: The mobile terminal extracts the corresponding quantum key K from its stored second quantum key pool according to the received first random number, and uses the quantum key K to perform message authentication code operation on the second random number to generate a response certificate, and sends the response certificate to the passive lock. Step S4: The passive lock obtains the same quantum key K based on its own stored first quantum key pool and first random number, and uses the same algorithm as the mobile terminal to calculate the second random number to obtain the local verification value; Step S5: The passive lock compares the received response credential with the local verification value. If they match, the mobile terminal is deemed to be legitimate and authentication is successful; otherwise, authentication fails. Step S6: After successful authentication, the passive lock and the mobile terminal establish an encrypted communication channel based on the quantum key K used in this authentication, and perform unlocking, locking, or status reading operations.

[0020] Steps S2 to S5 of the above method constitute a lightweight challenge-response protocol. The lightweight nature of this protocol is reflected in the fact that the passive lock only needs to perform random number generation, key lookup, hash operations, and numerical comparison operations; all complex message authentication code calculations are performed on the mobile terminal side. This asymmetric computational load distribution perfectly adapts to the physical characteristics of the passive lock, which has instantaneous power supply and limited computing power. The unexpected technical effect is that, in traditional understanding, high security strength often means high computational overhead. However, this invention, through ingenious system architecture design, deploys high-security quantum-resistant cryptographic operations (symmetric MAC) on a resource-rich mobile terminal, while the extremely resource-constrained passive lock only undertakes the lightest amount of computation. This breaks the technical bias that security is positively correlated with resource consumption, achieving the highest security level with the lowest power consumption.

[0021] The core of the authentication step in the above method lies in utilizing a pre-shared quantum key pool and a real-time generated quantum random number challenge value to achieve zero-knowledge proof of the mobile terminal's identity. The mobile terminal verifies its identity by proving it possesses the correct key without directly transmitting the key. This mechanism, combined with quantum random numbers, produces unexpected technical effects: traditional zero-knowledge proof schemes typically require multiple rounds of interaction and complex computation, while this invention completes identity verification with a single challenge-response process. Furthermore, the challenge value itself is generated by quantum random numbers, ensuring the independence and unpredictability of each verification, thereby achieving efficient protocol execution while guaranteeing theoretical security.

[0022] According to one embodiment of the present invention, a two-way authentication step is further included: After the one-way authentication is successful in step S5, the mobile terminal uses its built-in quantum random number generator to generate a third random number as the key index and a fourth random number as the challenge value, and sends them to the passive lock. The passive lock extracts another set of quantum keys from the first quantum key pool based on the third random number, performs cryptographic operations on the fourth random number to generate a second response credential, and returns it to the mobile terminal; The mobile terminal extracts the same quantum key from the second quantum key pool based on the third random number, performs the same operation on the fourth random number to obtain the second local verification value, and completes the two-way authentication after comparison and confirmation.

[0023] This two-way authentication process ensures mutual verification of the identities of both communicating parties, effectively defending against man-in-the-middle attacks and lock forgery attacks. In high-security application scenarios, such as financial equipment maintenance or critical infrastructure authorization, two-way authentication provides stronger security than one-way authentication. The synergistic effect lies in the fact that one-way authentication establishes trust in a unidirectional direction, while two-way authentication establishes trust symmetrically. The combination of the two allows the system to immediately terminate interaction when faced with complex attacks where attackers simultaneously forge mobile terminals and locks, even if one party's authentication fails, thus building a more robust foundation of trust.

[0024] Two-way authentication ensures the legitimacy of communicating parties by reversing the roles of challenger and responder. In high-risk scenarios, such as data center rack access control, two-way authentication effectively prevents attackers from deploying counterfeit locks to trick mobile terminals into revealing key information. Its synergistic effect lies in the fact that one-way and two-way authentication can be flexibly combined according to actual security needs to form multi-level security strategies. For ordinary application scenarios, one-way authentication is sufficient; for high-risk scenarios, enabling two-way authentication achieves the optimal balance between security and system overhead.

[0025] According to one embodiment of the present invention, a key pool dynamic refresh step is also included: After each successful authentication, the passive lock uses its built-in quantum random number generator to generate a new true random number as the new key; The passive lock will update the key set used for this authentication in the first quantum key pool to the new key; The passive lock sends the new key to the mobile terminal through the established encrypted communication channel, and the mobile terminal updates the corresponding key group in the second quantum key pool with the new key.

[0026] The dynamic key pool refresh step implements "one-time pad" authentication keys. After each authentication, the used key set is immediately replaced by a completely new key generated by a physical true random number generator. This mechanism brings unexpected synergies: it not only achieves perfect forward security—that is, the leakage of a key in one authentication will not affect the security of historical or future authentications—but more importantly, it extends the physical randomness of quantum random numbers from the static key pool to the dynamic key evolution process. Traditional one-time pad schemes typically require a massive number of pre-set keys, while this invention, through dynamic refresh, allows a limited key pool space to support an unlimited number of secure authentications, greatly improving the system's scalability and lifespan, while maintaining the theoretical strength of quantum security.

[0027] The dynamic key pool refresh step is one of the core innovations of this invention. It upgrades the traditional one-time pre-set key pool into a dynamically evolving key library. After each authentication, the used key is immediately replaced by a new, truly random number generated by a quantum random number generator. This process achieves true "one-time pad," meaning that the key used for each authentication is unique and discarded after use. The unexpected synergistic effects are: first, it solves the problem of unlimited use of finite key pool space, theoretically supporting an unlimited number of secure authentications; second, it achieves perfect forward security, ensuring that a key leak during any authentication will not affect other authentications; and finally, it combines the dynamic generation capability of quantum random numbers with the static storage capability of the key pool, enabling finite physical storage space to support an unlimited number of secure sessions—something traditional static key pool schemes cannot achieve.

[0028] According to one embodiment of the present invention, an offline working mode is also included: Before going offline, the mobile terminal downloads multiple quantum key pool subsets corresponding to passive locks from the quantum random number cloud service platform through a secure interface and stores them in a local secure area. When there is no network signal in the field, the mobile terminal and the passive lock directly execute steps S2 to S6 to independently complete the authentication and unlocking operations of multiple passive locks.

[0029] The offline working mode solves the challenge of high-security authentication in environments without network coverage. By pre-distributing a subset of the quantum key pool, the mobile terminal becomes an independent authentication center, without relying on real-time online services. This mode, together with the online mode, constitutes the flexibility of the system architecture. Their synergistic effect lies in combining centralized management of the key pool with distributed use, ensuring both absolute security during the key distribution phase (conducted in a controlled environment) and autonomy and availability during actual use. This "centralized distribution, distributed use" architecture is an innovative practice of quantum key distribution technology in engineering applications, overcoming the traditional mindset that quantum key pools must be synchronized online, while also meeting the practical needs of harsh environments.

[0030] The offline working mode, by pre-distributing a subset of the key pool, enables mobile terminals to perform high-security authentication operations even in network-free environments. This mode is particularly suitable for scenarios where public network communication is not possible, such as underground mines, tunnel construction, and military facilities. Its synergistic effect lies in extending the applicability of quantum-safe authentication from networked environments to completely offline environments, achieving a balance between security and availability. Simultaneously, because the key pool subset is pre-distributed, mobile terminals can complete authentication without any external dependencies during offline periods, which greatly enhances the system's autonomy and robustness.

[0031] According to one embodiment of the present invention, an online working mode is also included: The mobile terminal maintains online communication with the quantum random number cloud service platform during the authentication process; The mobile terminal forwards the first and second random numbers sent by the passive lock to the quantum random number cloud service platform; The quantum random number cloud service platform extracts the corresponding quantum key from its main quantum key pool based on the first random number, calculates the response credential and returns it to the mobile terminal, which then forwards it to the passive lock for verification.

[0032] In online mode, the mobile terminal acts as a transparent forwarding bridge, never handling the plaintext quantum key, further reducing the risk of key leakage due to attacks on the mobile terminal. This mode complements the offline mode, allowing users to flexibly switch according to their actual network environment and security needs. An unexpected technical effect is that the online mode shifts the burden of cryptographic computation from the mobile terminal to the cloud service platform. This not only reduces the storage and computational burden on the mobile terminal but also allows it to function as a lightweight device (such as a wearable device) without requiring a built-in high-security hardware security module. This significantly expands the system's application scenarios, enabling ordinary smartphones and even smart bracelets to be used as high-security "quantum keys," achieving a balance between security and universality.

[0033] The online working mode completely offloads the cryptographic computation load from the mobile terminal to the cloud service platform. In this mode, the mobile terminal only acts as a data relay, never handling any plaintext keys, greatly reducing the impact of the mobile terminal's own security risks on the entire system. An unexpected benefit of this mode is that it allows the mobile terminal to be a lightweight device with virtually no security capabilities, such as a simple NFC card reader or a wearable device, because all security-related operations are completed in the cloud. This not only reduces the cost of the mobile terminal but also enables the system to support more diverse terminal forms, further expanding application scenarios.

[0034] The present invention also provides a passive lock, which is applied to a quantum security authentication system based on quantum random numbers in the above embodiments, or to a quantum security authentication method based on quantum random numbers in the above embodiments; the passive lock integrates a quantum random number generator chip, a security chip and a verification module, and the security chip is pre-loaded with a quantum key pool for quantum security level challenge-response authentication with a mobile terminal.

[0035] The passive lock's security chip employs a side-channel attack protection design, featuring power consumption balancing and timing randomization, effectively resisting physical attacks that extract keys by analyzing power consumption or electromagnetic leakage. This design, combining a quantum random number generator with a physically protected security chip, achieves physical-level security throughout the entire key lifecycle, from key generation and storage to use. Its synergistic effect lies in the fact that quantum random numbers ensure the mathematical unpredictability of the key, while the side-channel protection chip ensures the key's non-leakage within the physical device. Together, they form a double defense that cannot be breached by mathematical analysis or physical detection.

[0036] The security chip of the passive lock adopts an integrated packaging design, combining a quantum random number generator, non-volatile memory, and cryptographic engine within the same physical package. It also features an active shielding layer and voltage / temperature sensors, enabling immediate responses to physical intrusion, voltage tampering, and abnormal temperature attacks, such as triggering a self-destruct mechanism or clearing the key pool. This highly integrated and robust design ensures the security of the passive lock in harsh physical environments. Its synergistic effect lies in the following: the quantum random number generator provides a secure key source, the cryptographic engine provides efficient computing power, and the active protection mechanism resists physical attacks. Combined, these three elements make the passive lock itself an indestructible security unit, capable of protecting key security even under extreme conditions.

[0037] The present invention also provides a mobile terminal, which is applied to a quantum-secure authentication system for a passive lock based on quantum random numbers according to the above embodiments, or to execute a quantum-secure authentication method for a passive lock based on quantum random numbers according to the above embodiments; the mobile terminal integrates a quantum random number generator chip and a quantum secure signature module, and has a pre-set quantum key pool synchronized with the passive lock, for completing quantum secure identity authentication of the passive lock under temporary power supply.

[0038] The mobile terminal further includes a biometric authentication module for verifying the operator's identity before activating the quantum-secure signature module, using methods such as fingerprint recognition, facial recognition, or iris recognition. This biometric authentication module synergizes with the quantum-secure authentication mechanism: biometrics ensure the physical authenticity of the operator's identity, while quantum-secure authentication ensures the mathematical security of the interaction between the mobile terminal and the passive lock. The combination of these two elements constructs a two-factor authentication system of "physical identity + mathematical credentials," which is far more secure than schemes relying solely on device keys. An unexpected benefit is that in traditional schemes, biometrics are typically only used to unlock the mobile terminal, while this invention uses biometrics as a prerequisite for quantum-secure authentication. This ensures that the entire authentication chain begins with a unique and uncopyable biometric feature and ends with an unpredictable quantum key, thus achieving a seamless, end-to-end trust transfer from "person" to "device" to "lock."

[0039] The secure area of ​​the mobile terminal is implemented using a trusted execution environment or an independent secure chip, ensuring that the storage of the quantum key pool and the execution of the quantum-secure signature module are unaffected by potential malware in rich operating systems (such as Android or iOS). This hardware-software integrated security design allows the mobile terminal to provide security comparable to dedicated hardware, even as a general-purpose computing device. Its synergistic effect lies in its perfect combination of the convenience of a general-purpose mobile terminal and the protective capabilities of dedicated security hardware. Users can use their smartphones to perform high-security lock operations without carrying additional dedicated key devices, greatly enhancing the user experience without sacrificing any security.

[0040] In summary, compared with the prior art, the present invention has at least one of the following beneficial technical effects: Ultra-high randomness based on physical source: By integrating a quantum random number generator chip, the challenge code, key index and key pool in the authentication process are all derived from true random numbers from quantum physical processes, which completely eliminates the periodicity and predictability of pseudo-random numbers and fundamentally defends against random number prediction attacks and seed theft attacks.

[0041] Resistant to quantum computing attacks: This invention employs a symmetric cryptography system (such as MAC) combined with quantum random numbers to achieve one-time pad or dynamic key refresh, without relying on mathematical problems easily cracked by quantum algorithms, such as large integer factorization or discrete logarithms. Even if quantum computers mature in the future, they will not be able to crack intercepted authentication data using Shor's algorithm, ensuring the security of the lock throughout its entire lifespan.

[0042] Perfectly adapted to the low-power characteristics of passive locks: The challenge-response protocol designed in this invention only requires the lock to perform simple table lookups, hash operations, and comparisons. All complex calculations (such as key lookup and MAC operations) are completed on the mobile terminal or in the cloud. The lock does not need to perform asymmetric encryption and decryption, which greatly reduces instantaneous power consumption and computation time, enabling a high-security solution to be reliably deployed on passive locks with extremely limited resources.

[0043] Flexible system architecture: This invention supports both offline and online working modes, which can be flexibly switched according to the actual network environment and security requirements. The offline mode ensures high-security operation in network-free environments, while the online mode enables centralized key management and real-time distribution, making it suitable for various commercial and industrial scenarios.

[0044] Physical-level one-time password: Through a dynamic key pool refresh mechanism, the key set used for each authentication is immediately updated to a new physical true random number after each use, realizing the "one-time password" of authentication credentials. Even if a key is leaked once, it will not affect the security of subsequent authentications, reaching the highest level of information security in theory.

[0045] In summary, this invention achieves a comprehensive security effect far exceeding the sum of the individual components by systematically integrating a quantum random number generator, a quantum-resistant symmetric cryptography protocol, dynamic key pool refresh, and a flexible offline / online architecture. Specifically, quantum random numbers ensure the unpredictability of the key source, quantum-resistant cryptography ensures the long-term security of the computation process, dynamic refresh ensures forward security of the key, and the flexible architecture ensures the deployability of the solution in various practical scenarios. The synergistic effect of these four security mechanisms constructs a multi-dimensional quantum security protection system covering the entire lifecycle of key generation, storage, use, and update, and adapting to various network environments, achieving an unexpected and groundbreaking security gain of "1+1+1+1>4". Attached Figure Description

[0046] Figure 1 This is a schematic diagram of the wireless communication method of passive locks in the prior art of the present invention.

[0047] Figure 2 This is a schematic diagram of the overall structure of a passive lock quantum security authentication system based on quantum random numbers, provided in an embodiment of the present invention.

[0048] Figure 3 This is a schematic diagram of a quantum key pool storage structure provided in an embodiment of the present invention.

[0049] Figure 4 This is a flowchart of the method of the present invention.

[0050] Figure labels: 100, Quantum Random Number Cloud Service Platform; 200, Passive Lock; 300, Mobile Terminal. Detailed Implementation

[0051] The technical solutions in the embodiments of this application will be clearly and completely described below with reference to the accompanying drawings. Obviously, the described embodiments are only some embodiments of this application, and not all embodiments. All other embodiments obtained by those skilled in the art based on the embodiments of this application without creative effort are within the scope of protection of this application.

[0052] In the description of this application, it should be noted that the terms "upper," "lower," "inner," "outer," "top / bottom," etc., indicating the orientation or positional relationship are based on the orientation or positional relationship shown in the accompanying drawings, and are only for the convenience of describing this application and simplifying the description, and do not indicate or imply that the device or element referred to must have a specific orientation, or be constructed and operated in a specific orientation, and therefore should not be construed as a limitation of this application. Furthermore, the terms "first" and "second" are used for descriptive purposes only and should not be construed as indicating or implying relative importance.

[0053] In the description of this application, it should be noted that, unless otherwise expressly specified and limited, the terms "installed," "equipped with," "sleeved / connected," "connected," etc., should be interpreted broadly. For example, "connection" can be a fixed connection, a detachable connection, or an integral connection; it can be a mechanical connection or an electrical connection; it can be a direct connection or an indirect connection through an intermediate medium; it can be a connection within two components. Those skilled in the art can understand the specific meaning of the above terms in this application based on the specific circumstances. Example 1: System Architecture and Initialization

[0054] like Figure 2 As shown, this embodiment provides a passive lock quantum security authentication system based on quantum random numbers. The system includes: a quantum random number cloud service platform 100, at least one passive lock 200 (this embodiment uses a single passive lock as an example) and at least one mobile terminal 300.

[0055] The Quantum Random Number Cloud Service Platform 100, deployed on a cloud server or security management center, comprises a high-performance quantum random number generator array, a key management module, and a secure distribution module. The high-performance quantum random number generator array generates truly random number sequences with intrinsic randomness based on quantum physics mechanisms such as vacuum fluctuations or photon detection. The key management module is responsible for grouping these truly random number sequences to form quantum key pools and assigning a unique key ID to each group. The secure distribution module is responsible for writing the same quantum key pool into the security chip of the passive lock 200 and the secure storage area of ​​the mobile terminal 300 respectively during the factory manufacturing or deployment initialization phase of the passive lock 200 and the mobile terminal 300 through physically isolated write interfaces or authenticated secure channels. Simultaneously, the key management module itself also maintains a complete copy of the quantum key pool for subsequent auditing, synchronization, and online authentication assistance.

[0056] In practical implementation, the quantum random number cloud service platform 100 can employ a quantum random number generator array. Its entropy source is based on four-state non-orthogonal quantum state measurement or laser phase noise. The output random number sequence undergoes online randomness testing (such as the NISTSP800-22 standard) to ensure that each bit possesses physical randomness. The key management module is implemented using a hardware security module (HSM). All key management operations are completed within the HSM, ensuring the absolute security of key materials in the cloud. During the initialization phase, the secure distribution module can use a one-time programmable (OTP) method to write the key pool into the security chip of the passive lock 200, ensuring that it cannot be modified or exported after being written.

[0057] The passive lock 200 includes: a physical lock body, a security chip, a first quantum random number generator chip, a communication interface (such as an NFC antenna, Bluetooth module, or metal contacts), and a microcontroller unit. The security chip is a physically protected chip with integrated non-volatile memory (such as Flash or EEPROM) to store the first quantum key pool written during initialization. The first quantum random number generator chip generates the necessary random numbers (such as key index random numbers and challenge random numbers) in real time at the start of each authentication, ensuring that the challenge value for each authentication originates from a physically true random source. The microcontroller unit, as the core of the verification module, performs challenge generation, cryptographic operations, and comparison logic.

[0058] The mobile terminal 300 can be a smartphone, a dedicated smart key, or a PDA. Internally, it includes: a main control chip, a secure storage area, a second quantum random number generator chip, a quantum-secure signature module, and a communication interface. The secure storage area stores a second quantum key pool synchronized with the passive lock 200. The second quantum random number generator chip generates random numbers in two-way authentication or online mode. The quantum-secure signature module can be a hardware security module (HSM) or a software library executed by the main control chip, used to extract a key from the key pool based on challenge information and perform cryptographic operations.

[0059] The system architecture of this embodiment ensures that the source of random numbers throughout the entire authentication chain is at the quantum level by deploying quantum random number generators at each node of the passive lock 200, mobile terminal 300, and cloud service platform 100. This end-to-end quantum randomness coverage has the following synergistic effect: In traditional schemes, even if both communicating parties use quantum keys, the challenge value, if generated by pseudo-random numbers, still carries the risk of being predicted. However, in this invention, from the construction of the key pool and the generation of the key index to the generation of the challenge value, all random numbers originate from quantum processes, completely eliminating predictability at any stage and forming a complete randomness closed loop from key to authentication process. Example 2: Quantum-safe authentication method

[0060] Reference Figure 4 This invention provides a passive lock quantum security authentication method based on quantum random numbers, applied to the aforementioned system. The method includes the following steps: Step S1: Initialization phase, the quantum random number cloud service platform 100 generates a massive number of true random number sequences as a quantum key pool, and pre-installs them into the security chip of the target passive lock 200 and the secure storage area of ​​the authorized mobile terminal 300 respectively. Step S2: Authentication phase. When the mobile terminal 300 establishes a physical connection with the passive lock 200 and supplies power to it, the passive lock 200 uses its built-in quantum random number generator to generate a first random number as a key index and a second random number as an anti-replay challenge value, and sends the first random number and the second random number to the mobile terminal 300. Step S3: The mobile terminal 300 extracts the corresponding quantum key K from its stored second quantum key pool according to the received first random number, and uses the quantum key K to perform message authentication code (MAC) operation or lightweight symmetric encryption operation on the second random number to generate a response certificate, and sends the response certificate to the passive lock 200. Step S4: The passive lock 200 obtains the same quantum key K based on its own stored first quantum key pool and first random number, and uses the same algorithm as the mobile terminal 300 to calculate the second random number to obtain the local verification value; Step S5: The passive lock 200 compares the received response credential with the local verification value. If they match, the mobile terminal 300 is deemed to be legitimate and authentication is successful; otherwise, authentication fails. Step S6: After successful authentication, the passive lock 200 and the mobile terminal 300 establish an encrypted communication channel based on the quantum key K used in this authentication, and perform unlocking, locking or status reading operations.

[0061] The core logic of the authentication method in this embodiment lies in separating random number generation from cryptographic operations, allowing the passive lock 200 to perform only the simplest operations. Specifically, the passive lock 200 only needs to perform: 1) calling a quantum random number generator to generate two random numbers; 2) reading the key from the key pool according to the index; 3) performing a MAC operation; and 4) performing a comparison operation. The total time of these operations is typically in the millisecond range, and the total power consumption is in the microwatt range, which is well within the instantaneous power supply capabilities of near-field communication technologies such as NFC or Bluetooth. This unexpected effect is that it breaks through the conventional thinking that high security inevitably leads to high power consumption, proving that quantum-level security authentication can be fully implemented in extremely low-power passive devices under a carefully designed system architecture.

[0062] The method also includes a two-way authentication process: after the mobile terminal 300 completes the one-way authentication of the passive lock 200, the mobile terminal 300 generates a third random number as a key index and a fourth random number as a challenge value, and sends them to the passive lock 200; the passive lock 200 uses the quantum key pool to calculate the response value and returns it; after the mobile terminal 300 verifies the response, the two-way authentication is completed.

[0063] In the two-way authentication process, the roles of the mobile terminal 300 and the passive lock 200 are reversed. The passive lock 200 needs to perform a MAC operation to generate a response credential. Due to the lightweight nature of MAC operations, the additional power consumption of the passive lock 200 is minimal and remains within the allowable range of instantaneous power supply. This makes two-way authentication possible in passive locks, whereas in traditional solutions, two-way authentication often requires asymmetric encryption, whose power consumption and computation time far exceed the tolerance of passive locks. Therefore, this invention introduces two-way authentication into the field of passive locks, representing another unexpected technological contribution.

[0064] The quantum key pool adopts a group storage structure, with each group of keys having a unique key index number, and each group of keys having a length of 128 bits, 192 bits, or 256 bits; the quantum random number generator is a true random number chip based on photonic shot noise or quantum tunneling effect.

[0065] The choice of key length should be optimized based on actual security needs and application scenarios. A 128-bit key provides basic security strength and is suitable for general civilian scenarios; 192-bit and 256-bit keys offer higher security strength and are suitable for scenarios with extremely high long-term security requirements, such as government, finance, and military applications. The choice of quantum random number generator chip also affects the system's cost and performance. Chips based on photonic shot noise offer the highest randomness quality but are also more expensive; chips based on quantum tunneling effects are less expensive and more suitable for consumer products. This flexible configuration capability allows the technical solution of this invention to be widely adaptable to the needs of different levels of customers.

[0066] The method also includes a key pool dynamic refresh step: after each successful authentication, the passive lock 200 and the mobile terminal 300 jointly update the key pool for that set of keys or the key set to be used later, based on the key index used for this authentication and the newly generated quantum random number, to achieve one-time key.

[0067] In a preferred dynamic refresh implementation, after successful authentication, the passive lock 200 invokes its first quantum random number generator chip to generate a new set of 128-bit true random numbers K_new. Subsequently, the passive lock 200 sends K_new to the mobile terminal 300 through the established encrypted channel (encrypted using the original key K). Both parties update the key group value indexed as the first random number R1 in their key pools to K_new. This process ensures that the key group used for each authentication is used only once, and the key used next cannot be predicted before the end of the current authentication, achieving perfect forward and backward security. The resulting synergistic effect is that even if an attacker obtains the key K of a certain authentication through some means, they cannot use this K to decrypt previous communications (because the previous key has been updated), nor can they predict future keys (because the new key is generated by quantum random numbers and securely transmitted through an encrypted channel), thus limiting the attacker's capabilities to a single session and greatly improving the overall security of the system.

[0068] The method supports offline working mode: before going offline, the mobile terminal 300 downloads a subset of the quantum key pool corresponding to multiple passive locks 200 from the quantum random number cloud service platform 100 through a secure interface, stores it in a local secure area, and independently completes the authentication and unlocking operations of multiple passive locks 200 when there is no network signal in the field.

[0069] In offline working mode, the mobile terminal 300 acts as a "mobile keystore." To support operations on multiple locks, the mobile terminal 300's local secure area needs to store multiple key pool subsets. Each subset corresponds to a specific lock, indexed by the lock's unique identifier (such as a lock ID). When a user needs to unlock, the mobile terminal 300 first obtains the lock's ID via NFC or Bluetooth, then selects the corresponding key pool subset based on the ID, and performs authentication according to the standard process. This "one terminal, multiple key pools" management method allows a single mobile terminal 300 to securely manage hundreds or thousands of passive locks 200, greatly improving operational efficiency. Its synergistic effect lies in perfectly combining the flexibility of centralized key management with the reliability of distributed deployment, achieving an organic unity of unified key distribution and decentralized use.

[0070] The method supports an online working mode: during the authentication process, the mobile terminal 300 maintains online communication with the quantum random number cloud service platform 100. The authentication request of the passive lock 200 is forwarded by the mobile terminal 300 to the cloud platform. The cloud platform directly participates in the challenge-response calculation or issues quantum keys in real time, reducing the key storage pressure on the mobile terminal 300.

[0071] In online operating mode, the mobile terminal 300 can operate without storing any quantum key pool locally, acting solely as a secure communication relay. When the passive lock 200 sends challenges R1 and R2, the mobile terminal 300 encrypts them and forwards them to the quantum random number cloud service platform 100. After verifying the identity of the mobile terminal 300, the cloud platform extracts the key K from the main quantum key pool based on R1, calculates Response=MAC(K,R2), and returns the encrypted Response to the mobile terminal 300. The mobile terminal 300 then forwards it to the passive lock 200. An unexpected benefit of this mode is that it not only reduces the storage burden on the mobile terminal 300, but more importantly, it allows the mobile terminal 300 to be a "zero-trust" device. Even if the mobile terminal 300 is completely compromised, the attacker cannot obtain any useful key information because the key is never stored or processed on the mobile terminal 300. This significantly enhances the security of the entire system on the mobile terminal side.

[0072] The present invention provides a passive lock 200, which uses the above-mentioned authentication system or method for identity authentication.

[0073] The present invention provides a mobile terminal 300 that uses the above-mentioned authentication system or method to authenticate the identity of a passive lock 200.

[0074] The present invention provides a computer-readable storage medium having a computer program stored thereon, which, when executed by a processor, implements some or all of the steps of the above-described method. Example 3: Quantum Key Pool Structure

[0075] like Figure 3 As shown, the quantum key pool uses a tabular structure for storage. Each row represents a set of keys, containing two fields: key index (KeyID) and key value (KeyValue). The key index can be a consecutive integer (such as 0x0001, 0x0002, ...) or a random value generated by a quantum random number generator. The key value length can be set to 128 bits, 192 bits, or 256 bits depending on the security level. For a passive lock that needs to perform 10,000 opening and closing operations, using a 128-bit key requires only about 160KB of storage space, which is within the acceptable range of current low-power MCUs and lightweight security chips, balancing security and storage cost.

[0076] During initialization, the quantum random number cloud service platform 100 generates, for example, 10,000 sets of quantum keys. Through a secure writing device, the entire key pool is burned into the security chip of the passive lock 200. At the same time, the same copy is written to the secure storage area of ​​the mobile terminal 300 through encrypted transmission or a secure SD card.

[0077] In this embodiment, the key pool structure can be further optimized, for example, by adopting a "key slot" approach. Each slot contains a key index and a key value, and an additional "valid bit" flag is added to indicate whether the slot has been used or refreshed. When the key pool is dynamically refreshed, the content of the corresponding slot can be directly overwritten, while keeping the valid bit unchanged. The synergistic effect of this structural design is that it makes the key pool refresh operation atomic and efficient, eliminating the need to move or rearrange other key slots, reducing computational overhead and potential error risks during the refresh process, and making it particularly suitable for scenarios requiring high-frequency, low-latency authentication. Example 4: One-way authentication method flow

[0078] This embodiment describes in detail a typical one-way authentication process (i.e., the mobile terminal proving its legitimacy to the passive lock), applied to an unlocking scenario.

[0079] Step S401: Physical Connection and Power Supply The user operates a mobile terminal 300 to approach the passive lock 200 and establish a physical connection via NFC or contact points. The mobile terminal 300 provides momentary power to the passive lock 200 via a wireless radio frequency field or direct contact. Upon power-up, the passive lock 200 starts up, and the microcontroller initializes the security chip and the first quantum random number generator chip.

[0080] In NFC communication, the mobile terminal 300 acts as a reader / writer, emitting a radio frequency field. The passive lock 200 obtains energy and starts up through coil coupling. At this time, the microcontroller unit of the passive lock 200 needs to complete initialization within milliseconds and begin executing the authentication process. In this invention, because the authentication process of the passive lock 200 is extremely short, typically completed within 10-20 milliseconds, it falls entirely within the typical power supply window of NFC communication, ensuring a high success rate for unlocking.

[0081] Step S402: Generate challenge information The microcontroller unit of the passive lock 200 calls the first quantum random number generator chip to generate two truly random numbers: The first random number R1, as a key index indicator, with a length of, for example, 16 bits, is used to locate the specific key group used for this authentication from the quantum key pool.

[0082] The second random number R2, used as a one-time challenge value (Nonce), has a length of, for example, 128 bits, to prevent replay attacks and ensure the freshness of this authentication.

[0083] The microcontroller sends R1 and R2 to the mobile terminal 300 via the communication interface.

[0084] Since both R1 and R2 originate from a quantum random number generator, attackers cannot predict their values. Even if an attacker intercepts R1 and R2 from this communication, R1 and R2 will be regenerated randomly during the next authentication, preventing the attacker from using this information for a replay attack or predicting the challenge value for the next authentication. This challenge mechanism driven by a physical random source offers significantly higher security than pseudo-random number-based schemes and is one of the core technical points of this invention for resisting quantum prediction attacks.

[0085] Step S403: Generate response credentials The communication interface of mobile terminal 300 receives R1 and R2. The quantum-secure signature module searches its local second quantum key pool based on the value of R1 to obtain the corresponding quantum key K. Then, the module uses key K to perform a message authentication code (MAC) operation on R2, for example, using the HMAC-SHA256 algorithm (a hash message authentication code), to generate a response credential Response=MAC(K,R2). Mobile terminal 300 sends Response back to passive lock 200.

[0086] The HMAC-SHA256 algorithm is one-way and collision-resistant. Even if an attacker obtains Response and R2, they cannot reverse-calculate K without knowing the key K, nor can they forge another R2' and Response' pair. This ensures the unforgeability of the response credentials. Furthermore, because the HMAC-SHA256 algorithm executes extremely quickly on general mobile terminals, typically within microseconds, it will not impact the user experience.

[0087] Step S404: Local Verification The microcontroller unit of the passive lock 200 extracts the same quantum key K' from the first quantum key pool in its own security chip according to R1. Since the preset content is the same, K'=K. The microcontroller unit uses the same MAC algorithm as the mobile terminal 300 to calculate R2 and obtain the local verification value Response'=MAC(K',R2).

[0088] The microcontroller compares Response with Response'.

[0089] The local verification process involves only one key lookup and one MAC operation. Because the passive lock 200 integrates a hardware acceleration engine, the MAC operation can be completed within microseconds. This extremely fast verification speed ensures that the entire authentication process is completed within the instantaneous power supply window of the mobile terminal 300, which is key to the practical deployment of this invention in passive locks.

[0090] Step S405: Authentication Result Determination If Response equals Response', it proves that the mobile terminal 300 possesses the correct quantum key, its identity is legitimate, and authentication is successful. The microcontroller sends an authentication success command to the mobile terminal 300 via the communication interface and prepares to execute subsequent unlocking commands. If the two are not equal, authentication fails, the passive lock 200 remains locked, and may optionally return an error code to the mobile terminal 300.

[0091] Step S406: Encrypted Communication and Unlocking After successful authentication, the mobile terminal 300 and the passive lock 200 negotiate to use the quantum key K obtained during authentication as the session key to perform symmetric encryption on subsequent unlocking commands. For example, the mobile terminal 300 sends the encrypted unlocking command C=Enc(K,“UNLOCK”). The passive lock 200 uses K to decrypt the command, verifies its validity, and then drives the motor or electromagnet to perform the unlocking action.

[0092] Using K as the session key ensures the confidentiality of the communication content. Since K is used only for the current session and is immediately used to encrypt communication after successful authentication, a completely new key will be used for the next authentication, thus achieving one-time pad communication security. This "integrated authentication key and session key" design reduces additional key negotiation steps, further reducing communication overhead and power consumption, representing another unexpected optimization effect of this invention. Example 5: Two-way authentication process

[0093] In certain high-security scenarios, such as financial equipment maintenance or critical infrastructure authorization, it is necessary not only for the lock to verify the authenticity of the key, but also for the key to verify the authenticity of the lock to prevent counterfeit lock attacks. This embodiment adds a reverse authentication step to the above one-way authentication.

[0094] After the one-way authentication in step S405 is successful, the two-way authentication phase begins: Step S501: Mobile Terminal Generation Challenge The mobile terminal 300 calls its internal second quantum random number generator chip to generate a third random number R3 as the key index and a fourth random number R4 as the challenge value. The mobile terminal 300 sends R3 and R4 to the passive lock 200.

[0095] Step S502: Passive lock calculation response The microcontroller unit of the passive lock 200 extracts another set of quantum keys K2 from the first quantum key pool according to R3 (which may be different from the K used in one-way authentication, reflecting the one-time pad principle). Then, the microcontroller unit uses K2 to perform a MAC operation on R4 to obtain the response credential Response2=MAC(K2,R4), and sends it to the mobile terminal 300.

[0096] Step S503: Mobile terminal verification Mobile terminal 300 extracts the same K2 from the second quantum key pool based on R3 and calculates the local verification value Response2'=MAC(K2,R4) using the same algorithm. Response2 is compared with Response2'. If they are equal, both-way authentication is successful, and both parties confirm that the other holds the correct quantum key pool. Subsequently, a combination of K and K2 (such as KXORK2) can be used as the session key for subsequent encrypted communication to further enhance security.

[0097] In the two-way authentication process, the passive lock 200 performs a MAC operation for the first time to generate Response2. Due to the lightweight nature of the MAC operation, the power consumption increase of the passive lock 200 is limited and remains within the range of instantaneous power supply. This embodiment demonstrates that even on passive locks with extremely limited resources, the present invention can achieve two-way authentication, which is unimaginable in traditional solutions because traditional two-way authentication usually requires asymmetric cryptographic operations, the power consumption and computation time of which are unacceptable for passive locks. This is a groundbreaking technological contribution of the present invention in the field of passive locks. Example 6: Offline Working Mode

[0098] This embodiment provides an offline working mode for application scenarios with poor 4G / 5G signal coverage, electromagnetic shielding, or where complete physical isolation is required (such as underground utility tunnels, data center cabinets, and the interior of military facilities).

[0099] Before the mobile terminal 300 goes out to perform a task, the user logs into the quantum random number cloud service platform 100 via a secure management computer or a dedicated writing device. The user selects a set of passive locks (e.g., lock A, lock B, and lock C) to be opened for this task. The key management module extracts the corresponding key pool subsets (or complete copies) from the main quantum key pool and imports them into the secure storage area of ​​the mobile terminal 300 in an encrypted manner. This process is completed in a controlled and secure environment.

[0100] When working in the field, the mobile terminal 300 has no communication with the quantum random number cloud service platform 100. The mobile terminal 300 sequentially performs the authentication process as described in Embodiment 3 or Embodiment 4 with passive locks A, B, and C. Since the mobile terminal 300 has locally stored the quantum key pools of these locks, authentication can be performed completely offline. After each successful authentication, the mobile terminal 300 can send an unlocking command. This mode enables high-security passive locks to maintain quantum-security level authentication capabilities even in a completely offline environment, without relying on public network infrastructure.

[0101] The core advantage of the offline working mode lies in its autonomy and resilience. In military or emergency scenarios, network communication may be cut off or interfered with, rendering any authentication system relying on online services ineffective. The offline mode of this invention allows authorized personnel to independently complete all operations using a mobile terminal pre-injected with a key pool, unaffected by network conditions. Its synergistic effect is that it expands the application scope of quantum-safe authentication from scenarios relying on reliable networks to extreme scenarios with no network or disrupted network access, greatly enhancing the system's applicability and survivability. Example 7: Online Working Mode

[0102] This embodiment is applicable to scenarios with good public network signal (such as smart homes, shared bicycles, and office access control), aiming to reduce the local key storage burden of mobile terminal 300 and realize real-time dynamic distribution of keys.

[0103] When the mobile terminal 300 approaches the passive lock 200 and is powered on, the passive lock 200 generates challenges R1 and R2 and sends them to the mobile terminal 300. The mobile terminal 300 does not directly extract the key from its local storage, but instead forwards R1 and R2, along with its own device ID, to the quantum random number cloud service platform 100 via a 4G / 5G network.

[0104] The key management module of the cloud service platform 100 extracts the corresponding quantum key K from its main quantum key pool based on R1 and the lock ID. Then, the cloud platform calculates the response credential Response=MAC(K,R2) and returns Response to the mobile terminal 300. The mobile terminal 300 forwards Response to the passive lock 200. The passive lock 200 uses the locally stored K to calculate and verify Response. In this mode, the mobile terminal 300 acts as a transparent forwarding bridge, without accessing the plaintext quantum key, further reducing the risk of key leakage due to attacks on the mobile terminal. Simultaneously, the cloud platform can record the lock ID, timestamp, and key usage for each authentication in real time, facilitating centralized auditing and access control.

[0105] The online working mode not only surpasses traditional solutions in security but also offers significant advantages in operation and maintenance management. Through centralized management on the cloud platform, administrators can monitor the authentication records of all locks in real time, promptly detecting abnormal access behavior; they can remotely revoke the authorization of a mobile terminal simply by disabling its corresponding key pool on the cloud platform; and they can dynamically adjust the key pool allocation strategy as needed, such as assigning longer keys or more frequent refresh strategies to high-security locks. These centralized management capabilities are unexpected added-value advantages compared to the offline mode, enabling the quantum security authentication system not only to be used for the protection of individual locks but also to be deployed and managed as an enterprise-level quantum security infrastructure. Example 8: Key Pool Dynamic Refresh Mechanism

[0106] To further enhance security and achieve true "one-time key", this embodiment provides a dynamic key pool refresh mechanism.

[0107] After each successful authentication and unlocking operation, the passive lock 200 and the mobile terminal 300 (or cloud platform) do not discard the key set used this time, but instead initiate a refresh process. Specifically: Generating a new key: The passive lock 200 uses its first quantum random number generator chip to generate a new set of truly random numbers K_new. Alternatively, both parties use the key K used this time and the new random number R_new to calculate K_new=KDF(K,R_new) through the key derivation function (KDF).

[0108] Replace key group: The passive lock 200 updates the value of the key group (index R1) used this time in the local first quantum key pool to K_new.

[0109] Synchronous Update: The passive lock 200 sends K_new to the mobile terminal 300 through the currently established encrypted communication channel (encrypted using the original key K). After decryption, the mobile terminal 300 also updates the key group value at the corresponding index R1 in its second quantum key pool to K_new.

[0110] Optional cloud synchronization: In online mode, the mobile terminal 300 or the lock will report the updated information to the quantum random number cloud service platform 100, and the cloud platform will synchronously update the corresponding entries in its master key pool.

[0111] Through this mechanism, each key group is updated to a brand new, truly random number generated by a physical random source after each use. Even if an attacker obtains the key for a certain authentication, they cannot use it for the next authentication, nor can they deduce future keys from historical keys, thus fundamentally eliminating the risks caused by key reuse.

[0112] The dynamic key pool refresh mechanism transforms the quantum key pool from a static, finite resource pool into a dynamic, renewable security asset. The resulting synergistic effect is revolutionary: First, it resolves the contradiction between limited storage space and unlimited usage, allowing the lock to continuously obtain new keys throughout its lifecycle without needing to return to the factory. Second, it combines the real-time generation capability of a quantum random number generator with the long-term storage capability of the key pool, making the lock itself a micro-security node that continuously generates secure keys. Finally, it ensures the security and consistency of key updates through encrypted channel key synchronization. This triple effect enables the system of this invention to achieve unprecedented levels of security, sustainability, and maintainability. Example 9: Lightweight Cryptographic Operation Adaptation

[0113] To address the low power consumption and limited computing power of the passive lock 200, the cryptographic operation module of this invention fully considers lightweight design requirements. In specific implementations, the Message Authentication Code (MAC) algorithm preferably employs either HMAC-SHA256 based on a hash function or CMAC-AES based on a block cipher. These algorithms have efficient hardware acceleration or optimized software implementations on mainstream low-power MCUs, requiring only microseconds to milliseconds for a single operation, completed entirely within the instantaneous power supply time. Compared to asymmetric signature algorithms (such as RSA and ECC), the operation speed is increased by several orders of magnitude, while power consumption is reduced by more than 90%.

[0114] In addition, the security chip can integrate a dedicated cryptographic coprocessor to perform symmetric cryptographic operations such as AES and SHA, further reducing the burden on the main control MCU and ensuring that the entire authentication process can be completed instantly upon power-up, without affecting the user experience.

[0115] Lightweight cryptographic computation adaptation is not merely a technical choice, but also a core design philosophy in system architecture. It reflects the invention's profound understanding of the physical characteristics of passive locks: decoupling resource-intensive operations (key lookup, MAC operations) from the lock itself, retaining only the minimum necessary operations (random number generation, table lookup, comparison). This asymmetric computational load distribution design allows passive locks to achieve quantum security strength comparable to high-end servers while maintaining extremely low hardware cost and power consumption. This design concept itself represents an unexpected and unconventional creative approach, challenging the traditional understanding that "high security must come at a high cost," and proving that, under a specific system architecture, security and cost can be optimized simultaneously.

[0116] The implementation principle of this invention is as follows: This invention discloses a passive lock quantum security authentication method and system based on quantum random numbers, belonging to the field of quantum information security and smart lock technology. The system includes a passive lock 200, a mobile terminal 300, and a key management platform. The passive lock 200 has a built-in security chip, and its non-volatile memory is pre-loaded with a sequence of truly random numbers generated by a quantum random number generator as a quantum key pool. During authentication, after power-on, the passive lock 200 extracts a random number from the key pool as a challenge code and sends it to the mobile terminal 300. The mobile terminal 300 performs a quantum secure signature operation on the challenge code based on the pre-loaded quantum key and returns the result. The passive lock 200 verifies the signature to complete two-way identity authentication. After successful authentication, encrypted communication is performed using a one-time pad symmetric key. This invention utilizes the inherent physical randomness of quantum random numbers to fundamentally eliminate random number prediction attacks. Combined with a lightweight quantum security protocol, it achieves high-strength security authentication resistant to quantum computing attacks in low-power passive lock scenarios.

[0117] In summary, the core technical principle of this invention lies in constructing a three-in-one quantum security system of "physical random source + symmetric cryptographic protocol + dynamic key management". The physical random source (quantum random number generator) ensures the unpredictability of the entire system's security foundation; the symmetric cryptographic protocol (such as MAC) ensures the long-term security of the authentication process in the quantum computing era; and dynamic key management (dynamic key pool refresh) ensures forward security of the keys and sustainable utilization of key resources. These three are not simply superimposed, but rather interdependent and mutually reinforcing: quantum random numbers provide high-entropy keys for the symmetric cryptographic protocol, the dynamic refresh mechanism enables the symmetric cryptographic protocol to achieve "one-time pad", and the low computational overhead of the symmetric cryptographic protocol allows dynamic refresh to be performed in real time on passive locks. This deep synergy and integration results in an unexpected and groundbreaking overall technical effect far exceeding the sum of the individual performances of each component, providing a truly quantum-secure solution for the field of passive locks.

[0118] The embodiments described herein are preferred embodiments of the present invention and are not intended to limit the scope of protection of the present invention. Therefore, all equivalent changes made in accordance with the structure, shape, and principle of the present invention should be covered within the scope of protection of the present invention.

Claims

1. A passive lock quantum-secure authentication system based on quantum random numbers, characterized in that, include: At least one passive lock (200), at least one mobile terminal (300), and a quantum random number cloud service platform (100); The passive lock (200) integrates a first quantum random number generator chip, a security chip, and a verification module. The security chip includes a non-volatile memory for storing a first quantum key pool generated and written by the first quantum random number generator chip during the initialization phase. The verification module is used to generate challenge information and verify the quantum security response information returned by the mobile terminal (300) after the passive lock (200) is temporarily powered by the mobile terminal (300). The mobile terminal (300) integrates a second quantum random number generator chip and a quantum secure signature module; the mobile terminal (300) stores a second quantum key pool, the contents of which are the same as and synchronized with the contents of the first quantum key pool; The quantum-secure signature module is used to respond to the challenge of the passive lock (200) by generating a response signature using the quantum key in the second quantum key pool; The quantum random number cloud service platform (100) is used to distribute the same quantum key pool to the passive lock (200) and the mobile terminal (300) during the initialization phase, and to record the usage status of the key pool.

2. The passive lock quantum security authentication system based on quantum random numbers according to claim 1, characterized in that, The verification module of the passive lock (200) generates challenge information specifically including: The first quantum random number generator chip is invoked to generate a first random number as a key index and a second random number as an anti-replay challenge value; The first random number and the second random number are sent to the mobile terminal (300); The system receives the response credential returned by the mobile terminal (300), extracts the corresponding quantum key from the first quantum key pool according to the first random number, performs cryptographic operations on the second random number to obtain a local verification value, and performs identity determination by comparing the response credential with the local verification value.

3. The passive lock quantum security authentication system based on quantum random numbers according to claim 1, characterized in that, The quantum-secure signature module of the mobile terminal (300) is specifically used for: Receive the first random number and the second random number sent by the passive lock (200); The corresponding quantum key is extracted from the second quantum key pool according to the first random number; The quantum key is used to perform a message authentication code operation or a symmetric encryption operation on the second random number to generate a response credential and send it to the passive lock (200).

4. A passive lock quantum security authentication method based on quantum random numbers, applied to the passive lock quantum security authentication system based on quantum random numbers as described in any one of claims 1 to 3, characterized in that, Includes the following steps: Step S1: Initialization phase, the quantum random number cloud service platform (100) generates a massive number of true random number sequences as a quantum key pool, and pre-installs them into the security chip of the target passive lock (200) and the secure storage area of ​​the authorized mobile terminal (300); Step S2: Authentication phase. When the mobile terminal (300) establishes a physical connection with the passive lock (200) and supplies it with power, the passive lock (200) uses its built-in quantum random number generator to generate a first random number as a key index and a second random number as an anti-replay challenge value, and sends the first random number and the second random number to the mobile terminal (300). Step S3: The mobile terminal (300) extracts the corresponding quantum key K from the second quantum key pool stored in its storage according to the received first random number, and uses the quantum key K to perform message authentication code operation on the second random number to generate a response certificate, and sends the response certificate to the passive lock (200); Step S4: The passive lock (200) obtains the same quantum key K based on its own stored first quantum key pool and first random number, and uses the same algorithm as the mobile terminal (300) to calculate the second random number to obtain the local verification value; Step S5: The passive lock (200) compares the received response credential with the local verification value. If the two are consistent, the mobile terminal (300) is deemed to be legitimate and authentication is successful; otherwise, authentication fails. Step S6: After successful authentication, the passive lock (200) and the mobile terminal (300) establish an encrypted communication channel based on the quantum key K used in this authentication and perform unlocking, locking or status reading operations.

5. The passive lock quantum security authentication method based on quantum random numbers according to claim 4, characterized in that, It also includes a two-way authentication step: After the one-way authentication is successful in step S5, the mobile terminal (300) uses its built-in quantum random number generator to generate a third random number as the key index and a fourth random number as the challenge value, and sends them to the passive lock (200). The passive lock (200) extracts another set of quantum keys from the first quantum key pool according to the third random number, performs cryptographic operations on the fourth random number to generate a second response credential, and returns it to the mobile terminal (300); The mobile terminal (300) extracts the same quantum key from the second quantum key pool according to the third random number, performs the same operation on the fourth random number to obtain the second local verification value, and completes the two-way authentication after comparison and confirmation.

6. The passive lock quantum security authentication method based on quantum random numbers according to claim 4, characterized in that, It also includes a key pool dynamic refresh step: After each successful authentication, the passive lock (200) uses its built-in quantum random number generator to generate a new true random number as a new key; The passive lock (200) updates the key set used for this authentication in the first quantum key pool to the new key; The passive lock (200) sends the new key to the mobile terminal (300) through the established encrypted communication channel, and the mobile terminal (300) updates the corresponding key group in the second quantum key pool with the new key.

7. The passive lock quantum security authentication method based on quantum random numbers according to claim 4, characterized in that, It also includes an offline working mode: Before going offline, the mobile terminal (300) downloads a subset of the quantum key pool corresponding to multiple passive locks (200) from the quantum random number cloud service platform (100) through a secure interface and stores it in the local secure area; When there is no network signal in the field, the mobile terminal (300) and the passive lock (200) directly execute steps S2 to S6 to independently complete the authentication and unlocking operations of multiple passive locks (200).

8. The passive lock quantum security authentication method based on quantum random numbers according to claim 4, characterized in that, This also includes online work modes: The mobile terminal (300) maintains online communication with the quantum random number cloud service platform (100) during the authentication process; The mobile terminal (300) forwards the first and second random numbers sent by the passive lock (200) to the quantum random number cloud service platform (100); The quantum random number cloud service platform (100) extracts the corresponding quantum key from its main quantum key pool based on the first random number, calculates the response certificate and returns it to the mobile terminal (300), which then forwards it to the passive lock (200) for verification.

9. A passive lock (200), characterized in that, The passive lock (200) is applied to a quantum security authentication system based on quantum random numbers as described in any one of claims 1 to 3, or to perform a quantum security authentication method based on quantum random numbers as described in any one of claims 4 to 8; the passive lock (200) integrates a quantum random number generator chip, a security chip and a verification module, and the security chip is pre-loaded with a quantum key pool for quantum security level challenge-response authentication with the mobile terminal (300).

10. A mobile terminal (300), characterized in that, The mobile terminal (300) is applied to a quantum-secure authentication system for a passive lock based on quantum random numbers as described in any one of claims 1 to 3, or to execute a quantum-secure authentication method for a passive lock based on quantum random numbers as described in any one of claims 4 to 8; the mobile terminal (300) integrates a quantum random number generator chip and a quantum secure signature module, and is pre-configured with a quantum key pool synchronized with the passive lock (200), which is used to complete quantum secure identity authentication of the passive lock (200) under temporary power supply.

Images