论文信息 - Highly Secure Network Switches with Quantum Key Distribution Systems

Highly Secure Network Switches with Quantum Key Distribution Systems

We have developed network ＂switches＂ with security enhanced by ＂quantum key distribution (QKD) systems＂. In a Layer 2 ＂switch＂, media access control (MAC) ad-dresses are encrypted to prevent unauthorized access from internal network. After an initial authentication, common random key bits are shared between the Layer 2 ＂switch＂ and users. MAC addresses are encrypted with shared key at every packet. In Layer 3, secure keys from a ＂QKD sys-tem＂ are used in the Internet Protocol Security (IPSEC) protocol for encrypting a payload in one-time pad, and also for extracting a message digest for unconditionally secure message authentication. In this way, network security can be effectively enhanced by QKD in an IP compatible manner.

[1] N. Gisin,et al. High rate, long-distance quantum key distribution over 250 km of ultra low loss fibres , 2009, 0903.3907.

[2] Jan Bouda,et al. SECOQC White Paper on Quantum Key Distribution and Cryptography , 2007, ArXiv.

[3] Chip Elliott,et al. Current status of the DARPA Quantum Network , 2005 .

[4] A R Dixon,et al. Field test of quantum key distribution in the Tokyo QKD Network. , 2011, Optics express.

[5] Gilles Brassard,et al. Quantum cryptography: Public key distribution and coin tossing , 2014, Theor. Comput. Sci..

[6] Masahide Sasaki,et al. Photon level crosstalk between parallel fibers installed in urban area. , 2010, Optics express.

[7] Gilles Brassard,et al. Quantum Cryptography , 2005, Encyclopedia of Cryptography and Security.

[8] Seong-Moo Yoo,et al. Authentication Protocol Using Quantum Superposition States , 2009, Int. J. Netw. Secur..

[9] Christoph Pacher,et al. The SECOQC quantum key distribution network in Vienna , 2009, 2009 35th European Conference on Optical Communication.

[10] Larry Carter,et al. New Hash Functions and Their Use in Authentication and Set Equality , 1981, J. Comput. Syst. Sci..