LIN Yusheng,CHANG Yan.Research on Cross-domain Data Security Transmission based on Quantum Technology[J].Journal of Chengdu University of Information Technology,2024,39(01):23-27.[doi:10.16836/j.cnki.jcuit.2024.01.005]
基于量子技术的跨域数据安全传输研究
- Title:
- Research on Cross-domain Data Security Transmission based on Quantum Technology
- 文章编号:
- 2096-1618(2024)01-0023-05
- 分类号:
- P751.1
- 文献标志码:
- A
- 摘要:
- 在大数据时代下,多组织联合办公越来越普遍。数据在跨域传输时的安全共享、数据的分级分类安全管理是目前亟需解决的问题。设计一种基于量子技术的跨域数据安全传输模型,可以保证跨域传输时的数据安全共享及安全管理。将量子网关引入经典跨域传输系统,利用量子网关形成域内用户的身份证书,并完成跨域传输时的身份认证。当进行数据跨域传输时,数据发送方利用量子网关中的量子密钥保护跨域数据,并由量子网关为跨域数据形成数据签名,同时绑定跨域数据的唯一访问权限。当数据访问方的量子网关接收到跨域数据时,首先进行跨域身份的认证及数据完整性查验; 然后由域控服务器进行权限的映射,只有权限相匹配的个人或部门才能解密跨域数据,最后数据访问者查看跨域数据,完成多组织的数据共享办公。理论分析表明提出的基于量子技术的跨域数据安全传输模型能够实现跨域数据的保护、用户及数据的分级分类管理、跨域身份认证,并具备更高的密钥安全性。
- Abstract:
- In the era of big data, multi-organization co-working has become more and more common. Security sharing of data in cross-domain transmission and security management of data classification are urgent problems to be solved. This paper designs a cross-domain data security transmission model based on quantum technology, which can ensure the security of data sharing and management during cross-domain transmission. In this paper, the quantum gateway is introduced into the classical cross-domain transmission system, the identity certificate of users in the domain is formed by using the quantum gateway, and identity authentication is completed during cross-domain transmission. When the data is transmitted across domains, the data sender uses the quantum key in the quantum gateway to protect the cross-domain data and the quantum gateway forms the data signature for the cross-domain data, and binds the unique access permission of the cross-domain data. When the quantum gateway of the data access party receives the cross-domain data, the cross-domain identity authentication and data integrity check are carried out first. The domain control server maps permissions. Only individuals or departments with matching permissions can decrypt the cross-domain data. Finally, data visitors can view the cross-domain data to complete data sharing. Theoretical analysis shows that the quantum technology-based cross-domain data security transmission model proposed in this paper can realize cross-domain data protection, hierarchical classification management of users and data, cross-domain identity authentication, and higher key security.
参考文献/References:
[1] 张建辉,付江,廖竣锴,等.基于数据护照的跨域传输控制方法设计[J].通信技术,2020,53(8):2014-2018.
[2] 欧海文,曾淑娟. 基于数据标识的跨域增量数据交换模型[J].北京电子科技学院学报,2012,20(4):53-56.
[3] 杨晶,周海鑫. 政务信息共享数据安全中的密码支撑技术与应用[J].信息安全与通信保密,2021(6):16-23.
[4] 尹立民. 大数据环境中数据跨域传输安全控制仿真分析[J].计算机仿真,2018,35(11):193-196.
[5] 肖柳林.面向多级安全的跨域交换技术研究[J].通信技术,2014,47(6):658-662.
[6] 徐良.异构环境下无线传感大数据跨域传输安全控制系统设计[J].计算机测量与控制,2020,28(12):117-121.
[7] 罗义. 无证书跨域签密算法及其应用研究[D].南昌:南昌大学,2019.
[8] 周波,王树磊. 基于改进HABE算法的层次化多中心SDN跨域传输系统研究[J].高技术通讯,2020,30(11):1122-1132.
[9] 徐娟娟. 云环境下基于密算的异构跨域身份认证方案[D].桂林:桂林电子科技大学,2021.
[10] 潘雪,袁凌云,黄敏敏. 主从链下的物联网隐私数据跨域安全共享模型[J].计算机应用研究,2022,39(11):3238-3243.
[11] Bennett C H,Brassard G.Quantum Cryptography: Public Key Distribution and Coin Tbssing[C]//IEEE.International Conference on Computers Systems and Signal Processing, September 12, 1984, Baialore, India. NewYork: IEEE, 1984:175-179.
[12] Elkouss D, Martinez-M J,Ciurana A, et al. Secure Optical Networks Based on Quantum Key Distribution and Weakly Trusted Repeaters[J]. Journal of Optical Communications & Networking, 2013,5(4): 316-328.
[13] Lo H K,Chau H F.Unconditional Security of Quantum Key Distribution over Arbitrarily Long Distances.Science,1999,283(5410):2050-2056.
[14] 谭政,单欣,孙献平,等.利用量子密钥的加密/解密实现身份认证[C].第十二届全国量子光学学术会议论文摘要集.,2006:18.
[15] 韩家伟.量子密钥分发与经典加密方法融合关键技术研究[D].长春:吉林大学,2018.
备注/Memo
收稿日期:2023-03-28
基金项目:四川省科技厅重点研发计划资助项目(2023YFS0419)