QUANTUM KEY DISTRIBUTION APPARATUS AND METHOD ON QUANTUM NETWORK

The mixture of the fuel with reference to the drawing the present invention is detailed as follows. Wherein, repeated description, the subject matter of invention publicly known function can be breach of haze, and description to operate dispensed to each other. With the present invention in the form of the present invention embodiment average sugar industry knowledge to account for the entire surface which ball number are disclosed. Thus, the shape and size of the elements in the drawing for and apparatus or the like can be described more specifically.

Hereinafter, the present invention according to preferred embodiment with reference to the attached drawing a detailed as follows.

Figure 1 shows a block indicating quantum key distribution system according to one embodiment of the invention therefore are disclosed. Figure 2 shows a detail represents one example of a quantum key distribution device also shown in block 1 also are disclosed. Also shown in Figure 3 shows a detail block indicating one example of a quantum key client 1 also are disclosed. Figure 4 shows a 1 to 3 also also shown in detail one example of a quantum key distribution indicating block also are disclosed.

The reference also 1 and 4 also, the quantum key distribution system according to one embodiment of the invention quantum key distribution device (100), number 1 quantum key client device (200) and number 2 quantum key client device (300) having a predetermined wavelength.

Quantum key distribution device (100) for quantum key is the client device (200, 300) and can be for sharing authentication key in advance.

At this time, quantum key distribution device (100) includes a first number 1 quantum key client device (200) can be shared authentication key to number 1, number 2 quantum key client device (300) can be shared authentication key on the number 2.

At this time, quantum key distribution device (100) includes a quantum States corresponding to the exhaust device using quantum key client generates the required keys can be.

At this time, quantum key distribution device (100) for quantum key is the client device (200, 300) is used to authenticate a connected to each user, communication channel according to the request of an authorized user can be the base. At this time, device authentication key that is shared with the quantum key client user authentication criterion are filtered out with keys, hash function can be used.

Quantum key distribution device (100) includes exhaust pipes can be generating keys for error correcting output bit columns. The columns are quantum key distribution device output bit distribution (100) is number 1 quantum key client device (200) for error correcting a distribution number 1 key generated by corresponding to every other output bit heat and quantum key distribution device (100) is number 2 quantum key client device (300) for error correcting a distribution number 2 generated by corresponding to every other key can be output bit string.

Quantum key distribution device (100) is error corrected distribution output bit stream with, quantum key client device receives from output bit columns encrypted bit stream a cryptographic operation can be calculated.

At this time, quantum key distribution device (100) for quantum key to communicate to the client device an encrypted bit heat can be.

Number 1 quantum key client device (200) is number 2 quantum key client device (300) can be communicated from a request corresponding to the quantum key client device.

Number 1 quantum key client device (200) is for quantum key distribution device (100) and number 2 quantum key client device (300) can be for sharing authentication key on, using quantum States quantum key distribution device (100) can be generating keys corresponding to the exhaust.

At this time, number 1 quantum key client device (200) is for quantum key distribution device (100) can be shared authentication key on number 1.

At this time, number 1 quantum key client device (200) is number 2 quantum key client device (300) can be shared between a client authentication key.

At this time, user authentication shared authentication keys, key and every other hash function can be used.

Number 1 quantum key client device (200) is for quantum key distribution device (100) for error correcting output bit number 1 corresponding to every other key can be the generation of heat.

Number 1 quantum key client device (200) is heat output bit number 1, number 2 quantum key client device (300) between shared client authentication key can be shared key bit heat calculated cryptographic operations.

Number 1 quantum key client device (200) includes a shared key bit stream using a function to hash can be final key bit with the generation of heat.

Number 2 quantum key client device (300) includes a number 1 quantum key client device (200) for quantum key requesting communication corresponding to client device can be.

Number 2 quantum key client device (300) is for quantum key distribution device (100) and number 1 quantum key client device (200) on the authentication key for sharing can be, quantum key distribution device using quantum States corresponding to the exhaust can be generating keys.

At this time, number 2 quantum key client device (300) is for quantum key distribution device (100) can be shared authentication key on the number 2.

At this time, number 2 quantum key client device (300) includes a number 1 quantum key client device (200) can be shared between a client authentication key.

At this time, user authentication shared authentication keys, key and every other hash function can be used.

Number 2 quantum key client device (300) is for quantum key distribution device (100) for error correcting the output bit number 2 corresponding to every other key can be the generation of heat.

Number 2 quantum key client device (300) includes a heat output bit number 2, quantum key distribution device (100) encryption bit shared key bit heat received from a cryptographic operation heat can be calculated.

Number 2 quantum key client device (300) includes a shared key bit stream using a function to hash can be final key bit with the generation of heat.

Also the reference 2 and 4 also, the quantum key distribution device according to one embodiment of the invention is shared authentication key part (101), quantum key generation unit (110), error correction unit (120) and bit stream calculator (130) having a predetermined wavelength.

Authentication key sharing unit (101) is for quantum key client device and can be for sharing authentication key. At this time, authentication key shared part (101) includes a number 1 quantum key client device (200) on the authentication key number 1 (Ak_A ) Can be share, number 2 quantum key client device (300) on authentication key number 2 (Ak_B ) Can be share.

Quantum key generation unit (110) includes a quantum States corresponding to the exhaust device using quantum key client generates the required keys can be.

At this time, quantum key generation unit (110) includes a quantum States transmission unit (111), a random number generator (112), high bit transceiver (113) and logic box number unit (114) can be comprising.

Quantum States transmission unit (111) is attached to the quantum States the quantum channels (51) can be transmitted over. At this time, quantum States transmission unit (111) of the BB84 or B92 quantum state can be quantum key protocol transmitting.

A random number generator (112) includes a quantum mechanical properties to produce signals can be random. At this time, a random number generator (112) is random quantum States (polarizing base) can be selected.

High bit transceiver (113) is a random number generator (212) selected measuring base of random aquatic group (112) is quantum States prepare base can receive and disclosed.

At this time, high bit transceiver (113) is high channel (52) through polarizing plate information number 1 quantum key client device (200) shared by the quantum channels (51) verifies the safety of the remaining information correction unit (120) can be transmitted. High channel (52) can be channel corresponding to the disclosure, the conventional monitoring the disapproval. However, high channel (52) addition of modulation and other information can be impossible. For example, high channel (52) corresponding to general outline can be disclosure board such as newspapers. At this time, high bit transceiver (113) includes a message authentication code (Message Authentication Code, MAC) can ensure the integrity of information using.

In this case, logic box number unit (114) quantum state transmission unit (111) and random selected quantum States base preparation of quantum States receive unit (211) random selected quantum States can be stores information on the measuring base to compare.

In this case, logic box number unit (114) is high bit transceiver (113) number 1 on quantum key client device (200) high bit transceiver (213) through communications with the preparation of base and base comparison between measured quantum States, some of the same base having a bit values can be apparatus for estimating channel of verify.

In this case, logic box number unit (114) to verify every other bit in prices base remaining after the safety channel of a key can be output.

More quantum key generation unit (110) of every other key creation process is number 1 quantum key client device (200) as well as, number 2 quantum key client (300) goes to a corresponding key creation process can be even.

Error correction unit (120) includes exhaust pipes can be generating keys for error correcting output bit columns. At this time, error correction unit (120) is a Hamming code for error correcting (Hamming Code) criterion are filtered out using keys can be. At this time, error correction unit (120) has a transmission bits composed of a plurality of blocks, each of the parity high channel (53, 63) unit for error through (220, 320) can be transmitted. Unit for error (220, 320) of the blocks includes a block recognition can serve to regulate the parity data error occurs. Error correction unit (120) includes a unit for error (220, 320) is further divided into unit for informing error block error (220, 320) can be iteratively verifying on parity. Error correction unit (110) includes a parity error occurs is such repeat through their Hamming applies reaches a Hamming code by applying error occurs will be specifying the location of bit can be correction. This error correction process each bit string generated error correction unit (120) number 1 on quantum key client device (200) for correcting error of part (220), number 2 quantum key client device (300) for correcting error of unit (320) can be common between corresponding output bit stream.

At this time, error correction unit (120) includes a number 1 quantum key client device (200) for error correcting every other key corresponding to the number 1 distribution output bit stream (Rk_A ') Can be output.

At this time, error correction unit (120) includes a number 2 quantum key client device (300) for error correcting every other key corresponding to the number 2 distribution output bit stream (Rk_B ') Can be output.

At this time, number 1 quantum key client device (200) for correcting error of unit (220) is for quantum key distribution device (100) of the line corresponding to the key number 1 for error correcting the output bit stream (Rk_A ) Can be output.

At this time, number 2 quantum key client device (300) for correcting error of unit (220) is for quantum key distribution device (100) for error correcting every other key corresponding to the number 2 output bit stream (Rk_B ) Can be output.

Bit stream calculator (130) is a cryptographic operation error corrected distribution output bit columns encrypted bit stream can be calculated.

At this time, bit stream calculator (130) is used to authenticate a client device for quantum key is coupled to each user, communication channel according to the request of an authorized user can be the base. At this time, the master device user authentication is quantum key client authentication keys, distribution output bit rows, quantum key client device output bit of rows and can be a hash function is used.

Bit stream calculator (130) the memory unit (131, 132) and calculation unit (135) can be comprising.

Memory unit (131) is error correction unit (120) output bit stream received from the distribution number 1 (Rk_A ') Can be storing. At this time, memory unit (131) is number 1 quantum key client device (200) from authentication key number 1 (Ak_A ) Number 1 on output bit stream (Rk_A ) Of the operation of a bit stream channel (54) to receive can be stored.

At this time, calculation unit (135) according to the expressions 1, authentication key number 1 (Ak_A ) On number 1 distribution output bit stream (Rk_A ') Of a cryptographic operation results, authentication key number 1 (Ak_A ) Number 1 on output bit stream (Rk_A ) To a cryptographic operation result of number 1 quantum key client device (200) can be authenticating. At this time, calculation unit (135) using the hash function number 1 quantum key client device (200) authenticate the disapproval.

[Mathematical equation 1]

Ak_A ⊙Rk_A =Ak_A ⊙Rk_A '

⊙ is any cryptographic operations including a corresponding XOR can be.

Memory unit (132) is error correction unit (120) output bit stream received from the distribution number 2 (Rk_B ') Can be storing. At this time, memory unit (132) is number 2 quantum key client device (300) number 2 from authentication key (Ak_B ) On the heat output bit number 2 (Rk_B ) Bit of the operation of a heat high channel (64) receiving through can be.

At this time, calculation unit (135) according to mathematically type 2, number 2 authentication key (Ak_B ) On number 2 distribution output bit stream (Rk_B ') Of a cryptographic operation results, authentication key number 2 (Ak_B ) On the heat output bit number 2 (Rk_B ) To a cryptographic operation result of number 2 quantum key client device (300) can be authenticating. At this time, calculation unit (135) using the hash function number 2 quantum key client device (300) authenticate the disapproval.

[Equations 2]

Ak_B ⊙Rk_B =Ak_B ⊙Rk_B '

⊙ is any cryptographic operations including a corresponding XOR can be.

At this time, calculation unit (135) is number 1 quantum key client device (200) and number 2 quantum key client device (300) only if authentication success, according to expressions 3, number 1 distribution output bit stream (Rk_A ') And number 2 distribution output bit stream (Rk_B ') Of a cryptographic operation results can be encrypted bit with the generation of heat.

At this time, calculation unit (135) according to the expressions 1 and 2 expressions, based on cryptographic operations result error correction unit (120) goes to a key for error correcting may request may be filled.

[Equations 3]

Rk_A ' Rk_B '

The corresponding XOR operation can be.

Calculation unit (135) is number 1 distribution output bit stream (Rk_A ') And number 2 distribution output bit stream (Rk_B ') XOR operation of encrypted bit stream can be calculated.

At this time, calculation unit (135) to communicate to the client device are encrypted bit heat for quantum key can be. According to one embodiment of the present invention is client device for quantum key to communicate number 2 quantum key client device (300) can be corresponding.

At this time, calculation unit (135) heat are encrypted bit number 2 quantum key client device (300) of calculation unit (332) classical channel (65) can be transmission over.

The reference also 3 and 4 also, the according to one embodiment of the invention number 1 quantum key client device (200) is authentication key sharing unit (201), quantum key generation unit (210), error correction unit (220), bit stream calculation unit (230) and the secret amplification part (240) having a predetermined wavelength.

At this time, number 1 quantum key client device (200) components number 2 quantum key client device (300) can be corresponding components.

At this time, according to one embodiment of the present invention number 1 quantum key client device (200) has a communication request corresponding to client device can be quantum key, number 2 quantum key client device (300) for quantum key client device can request corresponding to communication.

Authentication key sharing unit (201) is for quantum key distribution device and other quantum key client device authentication key for sharing can be on. At this time, authentication key sharing unit (201) is for quantum key distribution device (100) number 1 on authentication key (Ak_A ) Can be share, number 2 quantum key client device (300) between a client authentication key (Ak_AB ) Can be share.

At this time, number 2 quantum key client device (300) of authenticating keys shared part (301) is for quantum key distribution device (100) number 2 on authentication key (Ak_B ) Can be share, number 1 quantum key client device (200) between a client authentication key (Ak_AB ) Can be share.

Quantum key generation unit (210) includes a quantum States using quantum key distribution device (100) can be generating keys corresponding to the exhaust.

At this time, quantum key generation unit (210) includes a quantum States receive unit (211), a random number generator (212), high bit transceiver (213) and logic box number unit (214) can be comprising.

At this time, quantum key generation unit (210) is number 2 quantum key client device (300) of quantum key generating part (310) as well as corresponding components can be.

Quantum States receive unit (211) quantum measurement base is provided so as to quantum channels (51) can be quantum States through receiving and measuring. At this time, quantum States receive unit (211) of the BB84 or B92 quantum state can be quantum key protocol receives.

A random number generator (212) is quantum mechanical properties to produce signals can be random. At this time, a random number generator (212) can be selected at random and holds base (polarizing base).

High bit transceiver (213) is a random number generator (112) receives selected quantum States, a random number generator (212) quantum state measuring base multiplier can be transmitting.

In this case, logic box number unit (214) is high channel (52) through polarizing plate information quantum key distribution device (100) shared by the quantum channels (51) verifies the safety of the remaining information unit for error (220) can be transmitted. High channel (52) can be channel corresponding to the disclosure, the conventional monitoring the disapproval. However, high channel (52) addition of modulation and other information can be impossible. For example, high channel (52) corresponding to general outline can be disclosure board such as newspapers. At this time, high bit transceiver (213) using a message authentication code (Message Authentication Code, MAC) can ensure the integrity of information.

In this case, logic box number unit (214) is quantum States receive unit (211) and random selected quantum state measurement base quantum States transmission unit (111) random selected quantum States stores information on the base to compare can be prepared.

In this case, logic box number unit (214) is high bit transceiver (213) on quantum key distribution device (100) for high bit transceiver (113) through communications with the preparation of base and base comparison between measured quantum States, some of the same base having a bit values can be apparatus for estimating channel of verify.

In this case, logic box number unit (214) verifies the safety channel of the remaining bit value can be output every other based on the key.

More quantum key generation unit (210) of every other key creation process is number 2 quantum key client device (300) of quantum key generating part (310) of corresponding to every other key creation process can be.

Error correction unit (220) is for quantum key distribution device (100) of the line corresponding to the key number 1 for error correcting the output bit stream (Rk_A ) Can be generate. At this time, error correction unit (220) is a Hamming code for error correcting (Hamming Code) every other key can be using. At this time, error correction unit (220) has a transmission bits composed of a plurality of blocks, each of the parity high channel (53) through error correction unit (120) can be transmitted. Error correction unit (120) of the blocks is parity can serve to regulate the data error occurs block recognition. Unit for error (220) includes a correction unit (120) blocks by dividing the transmitted error correction unit (120) can be iteratively verifying on parity. Unit for error (220) includes a parity error occurs is such repeat through their Hamming applies reaches a Hamming code by applying error occurs will be specifying the location of bit can be correction. This error correction process each bit string generated error correction unit (120) number 1 on quantum key client device (200) for correcting error of part (220), number 2 quantum key client device (300) for correcting error of unit (320) can be common between corresponding output bit stream.

More error correction unit (220) for error correction of process number 2 quantum key client device (300) correcting an error of a portion (320) is high channel (63) through error correction unit (120) for error correcting process on corresponding to every other key can be.

At this time, error correction unit (220) is for quantum key distribution device (100) of the line corresponding to the key number 1 for error correcting the output bit stream (Rk_A ) Can be output.

At this time, number 2 quantum key client device (300) correcting an error of a portion (320) is for quantum key distribution device (100) for error correcting every other key corresponding to the number 2 output bit stream (Rk_B ) Can be output.

At this time, quantum key distribution device (100) of error correction unit (120) includes a number 1 quantum key client device (200) for error correcting every other key corresponding to the number 1 distribution output bit stream (Rk_A ') Can be output.

At this time, quantum key distribution device (100) of error correction unit (120) includes a number 2 quantum key client device (300) for error correcting every other key corresponding to the number 2 distribution output bit stream (Rk_B ') Can be output.

Bit stream calculation unit (230) is error corrected number 1 output bit stream (Rk_A ) And, quantum key distribution device (100) number 1 on quantum key client device (200) between the shared authentication key number 1 (Ak_A ) Calculated bit string encoding can be calculated.

At this time, bit stream calculation unit (230) is for quantum key distribution device (100) are connected to a user authentication code and, quantum key distribution device (100) communication channel according to the using information of a position corresponding can be the base. At this time, user authentication is quantum key distribution device shared authentication key, output bit rows, distribution output bit rows and hash function can be used.

Bit stream calculation unit (230) the memory unit (231) and calculation unit (232) can be comprising.

Memory unit (231) unit for error (220) number 1 received from the output bit stream (Rk_A ) Can be storing. At this time, memory unit (231) quantum key distribution device (100) number 1 to authentication key (Ak_A ) Number 1 on output bit stream (Rk_A ) Bit of the operation of a heat high channel (54) can be transmission over.

At this time, calculation unit (232) according to the expressions 1, authentication key number 1 (Ak_A ) On number 1 distribution output bit stream (Rk_A ') Of a cryptographic operation results, authentication key number 1 (Ak_A ) Number 1 on output bit stream (Rk_A ) To a cryptographic operation result of quantum key distribution device (100) can be requesting authentication.

[Mathematical equation 1]

Ak_A ⊙Rk_A =Ak_A ⊙Rk_A '

⊙ is any cryptographic operations including a corresponding XOR can be.

Communication requests number 2 quantum key client device (300) of, number 2 quantum key client device (300) of bit stream calculation unit (330) the memory unit (331) and calculation unit (332) can be comprising.

Memory unit (331) unit for error (320) number 2 received from the output bit stream (Rk_B ) Can be storing. At this time, memory unit (331) quantum key distribution device (100) to number 2 authentication key (Ak_B ) On the heat output bit number 2 (Rk_B ) Result of the operation of a high-channel (64) can be transmission over.

At this time, calculation unit (332) according to mathematically type 2, number 2 authentication key (Ak_B ) On number 2 distribution output bit stream (Rk_B ') Of a cryptographic operation results, authentication key number 2 (Ak_B ) On the heat output bit number 2 (Rk_B ) To a cryptographic operation result of quantum key distribution device (100) can be requesting authentication.

[Equations 2]

Ak_B ⊙Rk_B =Ak_B ⊙Rk_B '

⊙ is any cryptographic operations including a corresponding XOR can be.

At this time, quantum key distribution device (100) of bit stream computing unit (130) includes a number 1 quantum key client device (200) and number 2 quantum key client device (300) only if authentication success, according to expressions 3, number 1 distribution output bit stream (Rk_A ') And number 2 distribution output bit stream (Rk_B ') Of a cryptographic operation result calculation unit (135) encrypted bit can be calculated with the generation of heat.

[Equations 3]

Rk_A ' Rk_B '

The corresponding XOR operation can be.

Bit stream section (130) of calculation unit (135) is number 1 distribution output bit stream (Rk_A ') And number 2 distribution output bit stream (Rk_B ') XOR operation of encrypted bit stream can be calculated.

At this time, calculation unit (135) to communicate to the client device are encrypted bit heat for quantum key can be.

At this time, calculation unit (135) communication requests are encrypted bit stream number 2 quantum key client device (300) of calculation unit (332) at a high channel (65) can be transmission over.

At this time, calculation unit (332) according to the expressions 4, calculation unit (135) encryption bit stream received from the memory unit (331) number 2 received from the output bit stream (Rk_B ) Can be of XOR operation.

[Mathematical equation 4]

(Rk_A ' Rk_B ') Rk_B =Rk_A '

At this time, calculation unit (332) is number 2 quantum key client device (300) is quantum key distribution device (100) on the event of a successful authentication, number 2 distribution output bit stream (Rk_B ') The number 2 output bit stream (Rk_B ) Corresponding to the, number 1 XOR operation expressions 4 as a result of dispensing output bit stream (Rk_A ') Can be calculated.

At this time, calculation unit (332) according to mathematically type 5, calculated number 1 distribution output bit stream (Rk_A ') Requested from the communication with number 1 quantum key client device (200) between shared client authentication key (Ak_AB ) XOR a calculated shared key bit stream can be calculated.

[Mathematical equation 5]

Rk_A ' Ak_AB

I.e., 3 to 5 corresponding to the expressions incorporating expressions can be 6.

[Mathematical equation 6]

(INPUT₆₅ ) Rk_B Ak_AB =Rk_A ' Ak_AB

At this time, INPUT₆₅ Is high channel (65) through quantum key distribution device (100) of calculation unit (135) can be received from corresponding encrypted bit stream.

At this time, calculation unit (232) that the data is requested from the number 1 quantum key client device (200) on quantum key distribution device (100) of the event of a successful authentication, according to expressions 7 number 1 output bit stream (Rk_A ) Quantum key client device requesting communication with number 2 (300) between shared client authentication key (Ak_AB ) Calculated shared key bit stream encoding can be calculated.

[Mathematical equation 7]

Rk_A Ak_AB

Number 1 output bit stream (Rk_A ) That the data is requested from the number 1 quantum key client device (200) on quantum key distribution device (100) of the event of a successful authentication, 4 expressions of number 1 distribution output bit stream (Rk_A ') According to the expressions 1, number 1 distribution output bit stream (Rk_A ') And heat output bit number 1 (Rk_A ) Can be with correspondingly.

The, expressions 7 according to number 1 quantum key client device (200) of calculation unit (232) calculated shared key bit stream (Rk_A Ak_AB ) And, expressions 5 according to number 2 quantum key client device (300) of calculation unit (332) is calculated shared key bit stream (Rk_A ' Ak_AB ) Corresponding each other since, can share the same encryption key.

Secret amplification part (240) is shared key bit stream using a function to hash can be final key bit with the generation of heat. At this time, secret amplification part (240) is error correction and correction process for woman information back to an acquisition unit acquires a number key out of the can.

I.e., secret amplification part (240) is 8 angles can be calculated according to the final key bit heat.

[Mathematical equation 8]

K_AB =h (Rk_A Ak_AB )

At this time, is h secret amplification part (240) to an acquisition unit acquires information disclosure in array corresponding to a hash function can be used. Hash function is quantum key client device can be shared between pre.

A number 2 quantum key client device to communicate (300) secret amplification part (340) is calculated according to the final key bit heat can be angles 9.

[Mathematical equation 9]

K_AB =h (Rk_A ' Ak_AB )

At this time, is h secret amplification part (340) to disclosure in an acquisition unit acquires information corresponding to a hash function can be used for diode array. Hash function is quantum key client device can be shared between pre.

Secret amplification part (240,340) shared key bit row hash function is converted voice signal to the sub information disclosure can be reducing size of the bit stream. The, hash function h if properly selected, from an acquisition unit acquires final key bit stream (K_AB ) Can be protecting information about.

Figure 5 shows a device number 1 and 4 are also shown in quantum key distribution device key generating part both of quantum key generating detail one example of a quantum key client indicating block are disclosed.

The reference also 5, according to one embodiment of the invention the quantum key generating unit (210) includes a quantum States receive unit (211), a random number generator (212), high bit transceiver (213) and logic box number unit (214) comprises

At this time, quantum key generation unit (210) is number 2 quantum key client device (300) of quantum key generating part (310) as well as corresponding components can be.

Quantum key generation unit (210) includes a quantum States using quantum key distribution device (100) can be generating keys corresponding to the exhaust.

Quantum States receive unit (211) quantum measurement base is provided so as to quantum channels (51) can be quantum States through receiving and measuring. At this time, quantum States receive unit (211) of the BB84 or B92 quantum state can be quantum key protocol receives.

A random number generator (212) is quantum mechanical properties to produce signals can be random. At this time, a random number generator (212) can be selected at random and holds base (polarizing base).

High bit transceiver (213) is a random number generator (112) receiving selected quantum States into random aquatic group (212) quantum state measuring base multiplier can be transmitting.

In this case, logic box number unit (214) is high channel (52) through polarizing plate information quantum key distribution device (100) shared by the quantum channels (51) verifies the safety of the remaining information unit for error (220) can be transmitted. High channel (52) can be channel corresponding to the disclosure, the conventional monitoring the disapproval. However, high channel (52) addition of modulation and other information can be impossible. For example, high channel (52) corresponding to general outline can be disclosure board such as newspapers. At this time, high bit transceiver (213) using a message authentication code (Message Authentication Code, MAC) can ensure the integrity of information.

In this case, logic box number unit (214) is quantum States receive unit (211) and random selected quantum state measurement base quantum States transmission unit (111) random selected quantum States stores information on the base to compare can be prepared.

In this case, logic box number unit (214) is high bit transceiver (213) on quantum key distribution device (100) for high bit transceiver (113) through communications with the preparation of base and base comparison between measured quantum States, some of the same base having a bit values can be apparatus for estimating channel of verify.

In this case, logic box number unit (214) verifies every other channel of the remaining bit in prices base by safety key can be output.

More quantum key generation unit (210) of every other key creation process is number 2 quantum key client device (300) of quantum key generating part (310) of corresponding to every other key creation process can be.

Quantum key generation unit (110) includes a quantum States corresponding to the exhaust device using quantum key client generates the required keys can be.

At this time, quantum key generation unit (110) includes a quantum States transmission unit (111), a random number generator (112), high bit transceiver (113) and logic box number unit (114) can be comprising.

Quantum States transmission unit (111) is attached to the quantum States the quantum channels (51) can be transmitted over. At this time, quantum States transmission unit (111) of the BB84 or B92 quantum state can be quantum key protocol transmitting.

A random number generator (112) includes a quantum mechanical properties to produce signals can be random. At this time, a random number generator (112) and holds base (polarizing base) can be selected at random.

High bit transceiver (113) is a random number generator (212) selected aquatic group of random quantum States (112) quantum state measuring base multiplier can receive and disclosed.

At this time, high bit transceiver (113) is high channel (52) through polarizing plate information number 1 quantum key client device (200) shared by the quantum channels (51) verifies the safety of the remaining information correction unit (120) can be transmitted. High channel (52) can be channel corresponding to the disclosure, the conventional monitoring the disapproval. However, high channel (52) addition of modulation and other information can be impossible. For example, high channel (52) corresponding to general outline can be disclosure board such as newspapers. At this time, high bit transceiver (113) includes a message authentication code (Message Authentication Code, MAC) can ensure the integrity of information using.

In this case, logic box number unit (114) quantum state transmission unit (111) and random selected quantum States base preparation of quantum States receive unit (211) random selected quantum States can be stores information on the measuring base to compare.

In this case, logic box number unit (114) is high bit transceiver (113) number 1 on quantum key client device (200) high bit transceiver (213) through communications with the preparation of base and base comparison between measured quantum States, some of the same base having a bit values can be apparatus for estimating channel of verify.

In this case, logic box number unit (114) to verify every other bit in prices base remaining after the safety channel of a key can be output.

More quantum key generation unit (110) of every other key creation process is number 1 quantum key client device (200) as well as, number 2 quantum key client (300) goes to a corresponding key creation process can be even.

Figure 6 shows a bit sequence calculation unit and a calculation unit 4 also also are shown in detail one example of a bit string indicating block are disclosed.

The reference also 6, bit stream calculation unit (230) the memory unit (231) and calculation unit (232) can be comprising.

Memory unit (231) unit for error (220) number 1 received from the output bit stream (Rk_A ) Can be storing. At this time, memory unit (231) quantum key distribution device (100) number 1 to authentication key (Ak_A ) Number 1 on output bit stream (Rk_A ) Bit of the operation of a heat high channel (54) can be transmission over.

At this time, calculation unit (232) according to the expressions 1, authentication key number 1 (Ak_A ) On number 1 distribution output bit stream (Rk_A ') Of a cryptographic operation results, authentication key number 1 (Ak_A ) Number 1 on output bit stream (Rk_A ) To a cryptographic operation result of quantum key distribution device (100) can be requesting authentication.

[Mathematical equation 1]

Ak_A ⊙Rk_A =Ak_A ⊙Rk_A '

⊙ is any cryptographic operations including a corresponding XOR can be.

Communication requests number 2 quantum key client device (300) of, number 2 quantum key client device (300) of bit stream calculation unit (340) the memory unit (331) and calculation unit (332) can be comprising.

Memory unit (331) unit for error (320) number 2 received from the output bit stream (Rk_B ) Can be storing. At this time, memory unit (331) quantum key distribution device (100) to number 2 authentication key (Ak_B ) On the heat output bit number 2 (Rk_B ) Result of the operation of a high-channel (64) can be transmission over.

At this time, calculation unit (332) according to mathematically type 2, number 2 authentication key (Ak_B ) On number 2 distribution output bit stream (Rk_B ') Of a cryptographic operation results, authentication key number 2 (Ak_B ) On the heat output bit number 2 (Rk_B ) A cryptographic operation result of the quantum key distribution device (100) can be requesting authentication.

[Equations 2]

Ak_B ⊙Rk_B =Ak_B ⊙Rk_B '

⊙ is any cryptographic operations including a corresponding XOR can be.

At this time, quantum key distribution device (100) of bit stream computing unit (130) includes a number 1 quantum key client device (200) and number 2 quantum key client device (300) only if authentication success, according to expressions 3, number 1 distribution output bit stream (Rk_A ') And number 2 distribution output bit stream (Rk_B ') Of a cryptographic operation result calculation unit (135) encrypted bit can be calculated with the generation of heat.

[Equations 3]

Rk_A ' Rk_B '

The corresponding XOR operation can be.

Bit stream section (130) of calculation unit (135) is number 1 distribution output bit stream (Rk_A ') And number 2 distribution output bit stream (Rk_B ') XOR operation of encrypted bit stream can be calculated.

At this time, calculation unit (135) to communicate to the client device are encrypted bit heat for quantum key can be.

At this time, calculation unit (135) communication requests are encrypted bit stream number 2 quantum key client device (300) of calculation unit (332) at a high channel (65) can be transmission over.

At this time, calculation unit (332) according to the expressions 4, calculation unit (135) encryption bit stream received from the memory unit (331) number 2 received from the output bit stream (Rk_B ) Can be of XOR operation.

[Mathematical equation 4]

(Rk_A ' Rk_B ') Rk_B =Rk_A '

At this time, calculation unit (332) is number 2 quantum key client device (300) is quantum key distribution device (100) on the event of a successful authentication, number 2 distribution output bit stream (Rk_B ') The number 2 output bit stream (Rk_B ) Corresponding to the, number 1 XOR operation expressions 4 as a result of dispensing output bit stream (Rk_A ') Can be calculated.

At this time, calculation unit (332) according to mathematically type 5, calculated number 1 distribution output bit stream (Rk_A ') Requested from the communication with number 1 quantum key client device (200) between shared client authentication key (Ak_AB ) XOR a calculated shared key bit stream can be calculated.

[Mathematical equation 5]

Rk_A ' Ak_AB

I.e., 3 to 5 corresponding to the expressions incorporating expressions can be 6.

[Mathematical equation 6]

(INPUT₆₅ ) Rk_B Ak_AB =Rk_A ' Ak_AB

At this time, INPUT₆₅ Is high channel (65) through quantum key distribution device (100) of calculation unit (135) can be received from corresponding encrypted bit stream.

At this time, calculation unit (232) that the data is requested from the number 1 quantum key client device (200) on quantum key distribution device (100) of the event of a successful authentication, according to expressions 7 number 1 output bit stream (Rk_A ) Quantum key client device requesting communication with number 2 (300) between shared client authentication key (Ak_AB ) Calculated shared key bit stream encoding can be calculated.

[Mathematical equation 7]

Rk_A Ak_AB

Number 1 output bit stream (Rk_A ) That the data is requested from the number 1 quantum key client device (200) on quantum key distribution device (100) of the event of a successful authentication, 4 expressions of number 1 distribution output bit stream (Rk_A ') According to the expressions 1, number 1 distribution output bit stream (Rk_A ') And heat output bit number 1 (Rk_A ) Can be with correspondingly.

The, expressions 7 according to number 1 quantum key client device (200) of calculation unit (232) calculated shared key bit stream (Rk_A Ak_AB ) And, expressions 5 according to number 2 quantum key client device (300) of calculation unit (332) is calculated shared key bit stream (Rk_A ' Ak_AB ) Corresponding each other since, can share the same encryption key.

Figure 7 shows a detail represents one example of a secret amplification part also shown in block 4 also are disclosed.

The reference also 7, secret amplification part (240,340) is shared key bit stream using a function to hash can be final key bit with the generation of heat. At this time, secret amplification part (240,340) error correction and correction process is flowed back to an acquisition unit acquires a number key information for woman can.

I.e., number 1 quantum key client requested from the communication device (200) secret amplification part (240) is 8 angles can be calculated according to the final key bit heat.

[Mathematical equation 8]

K_AB =h (Rk_A Ak_AB )

At this time, is h secret amplification part (240) to an acquisition unit acquires information disclosure in array corresponding to a hash function can be used. Hash function is quantum key client device can be shared between pre.

A number 2 quantum key client device to communicate (300) secret amplification part (340) is calculated according to the final key bit heat can be angles 9.

[Mathematical equation 9]

K_AB =h (Rk_A Ak_AB )

At this time, is h secret amplification part (340) to disclosure in an acquisition unit acquires information corresponding to a hash function can be used for diode array. Hash function is quantum key client device can be shared between pre.

Secret amplification part (240,340) shared key bit row hash function is converted voice signal to the sub information disclosure can be reducing size of the bit stream. The, hash function h if properly selected, from an acquisition unit acquires final key bit stream (K_AB ) Can be protecting information about.

Figure 8 shows a quantum key distribution method according to one embodiment of the invention indicating the operation flow therefore are disclosed.

The reference also 8, quantum key distribution method according to one embodiment of the invention the first authentication key and share a hash function (S410).

I.e., step (S410) is for quantum key distribution device (100) are on quantum key client device can be share public keys and hash function.

At this time, step (S410) is for quantum key distribution device (100) number 1 on quantum key client device (200) is authentication key number 1 (Ak_A ) Can be share, quantum key distribution device (100) to number 2 quantum key client device (300) includes a number 2 authentication key (Ak_B ) Can be share, number 1 quantum key client device (200) on number 2 quantum key client device (300) includes a client authentication key (Ak_AB ) And hash function (h) can be share.

In addition, the quantum key distribution method according to one embodiment of the invention the exhaust can be generating keys (S420).

I.e., step (S420) quantum States may initially receive disclosed (S421).

At this time, the BB84 or B92 quantum state of quantum key protocol steps (S421) can receive and disclosed. At this time, step (S421) is provided so as to quantum States the quantum channels (51, 61) transmitting time be.

In addition, step (S420) compares (S422) can be selected as the base and measurement base preparation.

I.e., the quantum mechanical properties of step (S422) produce signals can be random.

At this time, the selected measuring step (S422) base and base prepared quantum States can receive and disclosed.

In addition, step (S420) have the same base based channel safety can be verify (S423).

I.e., step (S423) is high channel (52, 62) through polarizing plate information by comparing the quantum channels (51, 61) (S430) verifies the safety of the remaining information step can be used. High channel (52, 62) can be channel corresponding to the disclosure, the conventional monitoring the disapproval. However, high channel (52, 62) addition of modulation and other information can be impossible. For example, high channel (52, 62) corresponding to general outline can be disclosure board such as newspapers. At this time, step (S423) is ensure the integrity of information using a message authentication code (Message Authentication Code, MAC) can be.

At this time, is the preparation of step (S423) random selected quantum States base random selected quantum States can be stores information on the measuring base to compare.

At this time, step (S423) is high channel (52, 62) comparison between measured quantum States through the preparation of base and base, the same base having a bit values can be verify apparatus for estimating channel of some.

In addition, the step (S420) generates the required keys exhaust can be (S424).

I.e., step (S424) remaining after the exhaust based on the bit value is safety verify keys can be output.

At this time, step (S424) is for quantum key distribution device (100) corresponding to the exhaust on quantum key client device generates the required keys can be.

At this time, step (S424) is for quantum key distribution device (100) number 1 on quantum key client device (200) can be every other key corresponding to each produce, quantum key distribution device (100) corresponding to each produce key number 2 quantum key client device on every other can be.

In addition, the output bit stream to produce a quantum key distribution method according to one embodiment of the invention can be (S430).

At this time, the first step (S430) for error correcting every other key can be (S431).

I.e., step (S431) includes keys for error correcting exhaust output bit stream can be generate. At this time, step (S431) Hamming code is using error correcting (Hamming Code) can be. At this time, step (S431) composed of a plurality of blocks has a transmission bits, each of the parity high channel (53, 63) transmitting time be. Step (S431) parities of respective blocks can serve to regulate the data error occurs block recognition. Step (S431) has a transmission error block to repeatedly verify parity can be further divided into. Step (S431) parity error occurs is such repeat is through their Hamming applies reaches a Hamming error occurs will be applies can be specifying the location of bit correction.

In addition, step (S430) is for quantum key distribution device (100) can be generating distribution of output bit columns (S432).

At this time, step (S432) is for quantum key distribution device (100) in number 1 quantum key client device (200) for error correcting output bit rows corresponding to the dispensed every other key included in heat output bit distribution number 1 (Rk_A ') Can be generate.

At this time, step (S432) is for quantum key distribution device (100) in number 2 quantum key client device (300) for error correcting output bit rows corresponding to the dispensed every other key included in the distribution number 2 output bit stream (Rk_B ') Can be generate.

In addition, client device generating step (S430) for quantum key is (S433) can be of output bit columns.

At this time, step (S433) is number 1 quantum key client device (200) in quantum key distribution device (100) for error correcting output bit rows corresponding to every other key number 1 included in the output bit stream (Rk_A ) Can be generate.

At this time, step (S433) is number 2 quantum key client device (300) in quantum key distribution device (100) for error correcting output bit rows corresponding to every other key number 2 included in the output bit stream (Rk_B ) Can be generate.

At this time, step (S432) step (S433) on progression of order can be changed, can be simultaneously.

This error correction procedure the produced bit-heat is quantum key distribution device (100) between a common output bit stream corresponding to each device on quantum key client can be.

In addition, client device authenticating step (S430) for quantum key is can (S434).

I.e., step (S434) is for quantum key distribution device (100) to quantum key client device of the user authentication code and, quantum key distribution device (100) for quantum key client device is authenticated for performing communication channel according to the request and can be the base. At this time, user authentication is quantum key distribution device shared authentication key, output bit rows, distribution output bit rows and hash function can be used.

At this time, step (S434) is number 1 quantum key client device (200) of authentication key number 1 (Ak_A ) Number 1 on output bit stream (Rk_A ) Bit of the operation of a heat high channel (54) through quantum key distribution device (100) can be transmitted.

At this time, 1 is (S434) according to step angles, authentication key number 1 (Ak_A ) On number 1 distribution output bit stream (Rk_A ') Of a cryptographic operation results, authentication key number 1 (Ak_A ) Number 1 on output bit stream (Rk_A ) To a cryptographic operation result of quantum key distribution device (100) can be requesting authentication.

[Mathematical equation 1]

Ak_A ⊙Rk_A =Ak_A ⊙Rk_A '

⊙ is any cryptographic operations including a corresponding XOR can be.

At this time, step (S434) is number 2 quantum key client device (300) number 2 in authentication key (Ak_B ) On the heat output bit number 2 (Rk_B ) Result of the operation of a high-channel (64) through quantum key distribution device (100) can be transmitted.

At this time, step 2 (S434) is according to angles, number 2 authentication key (Ak_B ) On number 2 distribution output bit stream (Rk_B ') Of a cryptographic operation results, authentication key number 2 (Ak_B ) On the heat output bit number 2 (Rk_B ) To a cryptographic operation result of quantum key distribution device (100) can be requesting authentication.

[Equations 2]

Ak_B ⊙Rk_B =Ak_B ⊙Rk_B '

⊙ is any cryptographic operations including a corresponding XOR can be.

At this time, step (S434) is for quantum key distribution device (100) in, according to the expressions 1 and 2 expressions, quantum key client device performing authentication of can.

In addition, the quantum key distribution method according to one embodiment of the invention is shared key bit stream can be calculated (S440).

At this time, step (S440) is first encryption bit stream can be calculated (S441).

I.e., step (S441) is number 1 quantum key client device (200) and number 2 quantum key client device (300) only if authentication success, according to expressions 3, number 1 distribution output bit stream (Rk_A ') And number 2 distribution output bit stream (Rk_B ') Of a cryptographic operation results can be encrypted bit with the generation of heat.

[Equations 3]

Rk_A ' Rk_B '

The corresponding XOR operation can be.

At this time, step (S441) is number 1 distribution output bit stream (Rk_A ') And number 2 distribution output bit stream (Rk_B ') XOR operation of encrypted bit stream can be calculated.

In addition, step (S440) requesting communication (S442) can be calculated for quantum key client shared key bit stream.

I.e., step (S442) to communicate to the client device an encrypted bit heat for quantum key can be.

At this time, step number 2 quantum key client device an encrypted bit stream (S442) communication requests (300) at a high channel (65) can be transmission over.

At this time, step 4 (S442) is according to angles, number 2 quantum key client device (300) and number 2 key bit stream output bit stream (Rk_B ) Can be of XOR operation.

[Mathematical equation 4]

(Rk_A ' Rk_B ') Rk_B =Rk_A '

At this time, step (S442) is number 2 quantum key client device (300) is quantum key distribution device (100) on the event of a successful authentication, number 2 distribution output bit stream (Rk_B ') The number 2 output bit stream (Rk_B ) Corresponding to the, number 1 XOR operation expressions 4 as a result of dispensing output bit stream (Rk_A ') Can be calculated.

At this time, according to step angles (S442) is 5, the calculated number 1 distribution output bit stream (Rk_A ') Requested from the communication with number 1 quantum key client device (200) number 2 quantum key client device communicates requests (300) shared between client authentication key (Ak_AB ) XOR a calculated shared key bit stream can be calculated.

[Mathematical equation 5]

Rk_A ' Ak_AB

I.e., 3 to 5 corresponding to the expressions incorporating expressions can be 6.

[Mathematical equation 6]

(INPUT₆₅ ) Rk_B Ak_AB =Rk_A ' Ak_AB

At this time, INPUT₆₅ Is high channel (65) through quantum key distribution device (100) of calculation unit (135) can be received from corresponding encrypted bit stream.

In addition, step (S440) the quantum key client shared key bit stream communication request can be calculated (S443).

I.e., step (S443) the communication request number 1 quantum key client device (200) on quantum key distribution device (100) of the event of a successful authentication, according to expressions 7 number 1 output bit stream (Rk_A ) Quantum key client device requesting communication with number 2 (300) between shared client authentication key (Ak_AB ) Calculated shared key bit stream encoding can be calculated.

[Mathematical equation 7]

Rk_A Ak_AB

Number 1 output bit stream (Rk_A ) That the data is requested from the number 1 quantum key client device (200) on quantum key distribution device (100) of the event of a successful authentication, 4 expressions of number 1 distribution output bit stream (Rk_A ') According to the expressions 1, number 1 distribution output bit stream (Rk_A ') And heat output bit number 1 (Rk_A ) Can be with correspondingly.

The, expressions 7 according to number 1 quantum key client device (200) of calculation unit (232) calculated shared key bit stream (Rk_A Ak_AB ) And, expressions 5 according to number 2 quantum key client device (300) of calculation unit (332) is calculated shared key bit stream (Rk_A ' Ak_AB ) Corresponding each other since, can share the same encryption key.

In addition, quantum key distribution method according to one embodiment of the invention the final key bit with the generation of heat can be (S450).

I.e., step (S450) is shared key bit stream using a function to hash can be final key bit with the generation of heat. At this time, step (S450) error correction and correction process is for woman information back to an acquisition unit acquires a number key out of the can.

At this time, step (S450) the communication request number 1 quantum key client device (200) according to mathematical type 8 final key bit heat can be calculated.

[Mathematical equation 8]

K_AB =h (Rk_A Ak_AB )

At this time, an acquisition unit acquires information disclosure to h is used corresponding to array can be a hash function. Hash function is quantum key client device can be shared between pre.

At this time, step number 2 quantum key client device communication requests (S450) (300) to produce a final key bit heat can be calculated according to mathematical type 9.

[Mathematical equation 9]

K_AB =h (Rk_A Ak_AB )

At this time, an acquisition unit acquires information disclosure to h is used corresponding to array can be a hash function. Hash function is quantum key client device can be shared between pre.

At this time, step (S450) shared key bit row hash function is converted voice signal to the sub information disclosure can be reducing size of the bit stream. The, hash function h if properly selected, from an acquisition unit acquires final key bit stream (K_AB ) Can be protecting information about.

Figure 9 shows a key generating step also 8 also shown in detail every other one example of a flow indicating operation are disclosed.

The reference also 9, step (S420) quantum States may initially receive disclosed (S421).

At this time, the BB84 or B92 quantum state of quantum key protocol steps (S421) can receive and disclosed. At this time, step (S421) is provided so as to quantum States the quantum channels (51, 61) transmitting time be.

In addition, step (S420) compares (S422) can be selected as the base and measurement base preparation.

I.e., the quantum mechanical properties of step (S422) produce signals can be random.

At this time, the selected measuring step (S422) base and base prepared quantum States can receive and disclosed.

In addition, step (S420) have the same base based channel safety can be verify (S423).

I.e., step (S423) is high channel (52, 62) through polarizing plate information by comparing the quantum channels (51, 61) (S430) verifies the safety of the remaining information step can be used. High channel (52, 62) can be channel corresponding to the disclosure, the conventional monitoring the disapproval. However, high channel (52, 62) addition of modulation and other information can be impossible. For example, high channel (52, 62) corresponding to general outline can be disclosure board such as newspapers. At this time, step (S423) is ensure the integrity of information using a message authentication code (Message Authentication Code, MAC) can be.

At this time, is the preparation of step (S423) random selected quantum States base random selected quantum States can be stores information on the measuring base to compare.

At this time, step (S423) is high channel (52, 62) comparison between measured quantum States through the preparation of base and base, the same base having a bit values can be verify apparatus for estimating channel of some.

In addition, the step (S420) generates the required keys exhaust can be (S424).

I.e., step (S424) remaining after the exhaust based on the bit value is safety verify keys can be output.

At this time, step (S424) is for quantum key distribution device (100) corresponding to the exhaust on quantum key client device generates the required keys can be.

At this time, step (S424) is for quantum key distribution device (100) number 1 on quantum key client device (200) can be every other key corresponding to each produce, quantum key distribution device (100) corresponding to each produce key number 2 quantum key client device on every other can be.

Figure 10 shows a heat generating step also 8 also shown in detail one example of a flow output bit indicating operation are disclosed.

The reference also 10, every other step (S430) is first key can be for error correcting (S431).

I.e., step (S431) includes keys for error correcting exhaust output bit stream can be generate. At this time, step (S431) Hamming code is using error correcting (Hamming Code) can be. At this time, step (S431) composed of a plurality of blocks has a transmission bits, each of the parity high channel (53, 63) transmitting time be. Step (S431) parities of respective blocks can serve to regulate the data error occurs block recognition. Step (S431) has a transmission error block to repeatedly verify parity can be further divided into. Step (S431) parity error occurs is such repeat is through their Hamming applies reaches a Hamming error occurs will be applies can be specifying the location of bit correction.

In addition, step (S430) is for quantum key distribution device (100) can be generating distribution of output bit columns (S432).

At this time, step (S432) is for quantum key distribution device (100) in number 1 quantum key client device (200) for error correcting output bit rows corresponding to the dispensed every other key included in heat output bit distribution number 1 (Rk_A ') Can be generate.

At this time, step (S432) is for quantum key distribution device (100) in number 2 quantum key client device (300) for error correcting output bit rows corresponding to the dispensed every other key included in the distribution number 2 output bit stream (Rk_B ') Can be generate.

In addition, client device generating step (S430) for quantum key is (S433) can be of output bit columns.

At this time, step (S433) is number 1 quantum key client device (200) in quantum key distribution device (100) for error correcting output bit rows corresponding to every other key number 1 included in the output bit stream (Rk_A ) Can be generate.

At this time, step (S433) is number 2 quantum key client device (300) in quantum key distribution device (100) for error correcting output bit rows corresponding to every other key number 2 included in the output bit stream (Rk_B ) Can be generate.

At this time, step (S432) step (S433) on progression of order can be changed, can be simultaneously.

This error correction procedure the produced bit-heat is quantum key distribution device (100) between a common output bit stream corresponding to each device on quantum key client can be.

In addition, client device authenticating step (S430) for quantum key is can (S434).

I.e., step (S434) is for quantum key distribution device (100) to quantum key client device of the user authentication code and, quantum key distribution device (100) for quantum key client device is authenticated for performing communication channel according to the request and can be the base. At this time, user authentication is quantum key distribution device shared authentication key, output bit rows, distribution output bit rows and hash function can be used.

At this time, step (S434) is number 1 quantum key client device (200) of authentication key number 1 (Ak_A ) Number 1 on output bit stream (Rk_A ) Bit of the operation of a heat high channel (54) through quantum key distribution device (100) can be transmitted.

At this time, 1 is (S434) according to step angles, authentication key number 1 (Ak_A ) On number 1 distribution output bit stream (Rk_A ') Of a cryptographic operation results, authentication key number 1 (Ak_A ) Number 1 on output bit stream (Rk_A ) To a cryptographic operation result of quantum key distribution device (100) can be requesting authentication.

[Mathematical equation 1]

Ak_A ⊙Rk_A =Ak_A ⊙Rk_A '

⊙ is any cryptographic operations including a corresponding XOR can be.

At this time, step (S434) is number 2 quantum key client device (300) number 2 in authentication key (Ak_B ) On the heat output bit number 2 (Rk_B ) Result of the operation of a high-channel (64) through quantum key distribution device (100) can be transmitted.

At this time, step 2 (S434) is according to angles, number 2 authentication key (Ak_B ) On number 2 distribution output bit stream (Rk_B ') Of a cryptographic operation results, authentication key number 2 (Ak_B ) On the heat output bit number 2 (Rk_B ) To a cryptographic operation result of quantum key distribution device (100) can be requesting authentication.

[Equations 2]

Ak_B ⊙Rk_B =Ak_B ⊙Rk_B '

⊙ is any cryptographic operations including a corresponding XOR can be.

At this time, step (S434) is for quantum key distribution device (100) in, according to the expressions 1 and 2 expressions, quantum key client device performing authentication of can.

Figure 11 shows a detail one example of calculation also 8 also shown in shared key bit string indicating a flow operation are disclosed.

The reference also 11, step (S440) is first encryption bit stream can be calculated (S441).

I.e., step (S441) is number 1 quantum key client device (200) and number 2 quantum key client device (300) only if authentication success, according to expressions 3, number 1 distribution output bit stream (Rk_A ') And number 2 distribution output bit stream (Rk_B ') Of a cryptographic operation results can be encrypted bit with the generation of heat.

[Equations 3]

Rk_A ' Rk_B '

The corresponding XOR operation can be.

At this time, step (S441) is number 1 distribution output bit stream (Rk_A ') And number 2 distribution output bit stream (Rk_B ') XOR operation of encrypted bit stream can be calculated.

In addition, step (S440) requesting communication (S442) can be calculated for quantum key client shared key bit stream.

I.e., step (S442) to communicate to the client device an encrypted bit heat for quantum key can be.

At this time, step number 2 quantum key client device an encrypted bit stream (S442) communication requests (300) at a high channel (65) can be transmission over.

At this time, step 4 (S442) is according to angles, number 2 quantum key client device (300) and number 2 key bit stream output bit stream (Rk_B ) Can be of XOR operation.

[Mathematical equation 4]

(Rk_A ' Rk_B ') Rk_B =Rk_A '

At this time, step (S442) is number 2 quantum key client device (300) is quantum key distribution device (100) on the event of a successful authentication, number 2 distribution output bit stream (Rk_B ') The number 2 output bit stream (Rk_B ) Corresponding to the, number 1 XOR operation expressions 4 as a result of dispensing output bit stream (Rk_A ') Can be calculated.

At this time, according to step angles (S442) is 5, the calculated number 1 distribution output bit stream (Rk_A ') Requested from the communication with number 1 quantum key client device (200) number 2 quantum key client device communicates requests (300) shared between client authentication key (Ak_AB ) XOR a calculated shared key bit stream can be calculated.

[Mathematical equation 5]

Rk_A ' Ak_AB

I.e., 3 to 5 corresponding to the expressions incorporating expressions can be 6.

[Mathematical equation 6]

(INPUT₆₅ ) Rk_B Ak_AB =Rk_A ' Ak_AB

At this time, INPUT₆₅ Is high channel (65) through quantum key distribution device (100) of calculation unit (135) can be received from corresponding encrypted bit stream.

In addition, step (S440) the quantum key client shared key bit stream communication request can be calculated (S443).

I.e., step (S443) the communication request number 1 quantum key client device (200) on quantum key distribution device (100) of the event of a successful authentication, according to expressions 7 number 1 output bit stream (Rk_A ) Quantum key client device requesting communication with number 2 (300) between shared client authentication key (Ak_AB ) Calculated shared key bit stream encoding can be calculated.

[Mathematical equation 7]

Rk_A Ak_AB

Number 1 output bit stream (Rk_A ) That the data is requested from the number 1 quantum key client device (200) on quantum key distribution device (100) of the event of a successful authentication, 4 expressions of number 1 distribution output bit stream (Rk_A ') According to the expressions 1, number 1 distribution output bit stream (Rk_A ') And heat output bit number 1 (Rk_A ) Can be with correspondingly.

The, expressions 7 according to number 1 quantum key client device (200) of calculation unit (232) calculated shared key bit stream (Rk_A Ak_AB ) And, expressions 5 according to number 2 quantum key client device (300) of calculation unit (332) is calculated shared key bit stream (Rk_A ' Ak_AB ) Corresponding each other since, can share the same encryption key.

Figure 12 shows a computer system according to one embodiment of the invention indicating block therefore are disclosed.

The reference also 12, of the present invention in the embodiment the computer-readable recording medium such as a computer system (1100) can be implemented. As shown in fig. 12, computer system (1100) bus (1120) communicate with each other through one or more processors (1110), memory (1130), user input device (1140), user output device (1150) and storage (1160) can be a. In addition, computer system (1100) network (1180) connected to the network interface (1170) can be further comprises. Processor (1110) central processing unit device or memory (1130) or storage (1160) semiconductor device processing instructions executing stored implementation being. Memory (1130) and storage (1160) in different form of volatile or non-volatile storage medium be a. For example, ROM memory (1131) or RAM (1132) can be comprising.

The present invention according to both said diode device and method as described in the embodiment of the quantum key distribution over a network configuration method but can be applied to defined, various modifications can be made in the embodiment of each said in the embodiment are all or part of a front end of the selectively combined disapproval.