摘要
量子保密通信设备集成化是目前的趋势,而量子密钥分发系统是其中的关键.本文针对该系统中对安全性和系统性能的需求,提出了一种基于硬件的TCP/IP协议处理结构.该结构采用数字电路设计方法,实现了TCP/IP协议中网络层和传输层的相关功能,并通过AHB接口集成到系统芯片中.该结构作为独立的网络数据处理模块能够减轻CPU的计算负担,同时设置该模块以自定义端口方式工作,将量子域与经典网络隔离,降低密钥泄露风险.测试结果显示该结构可达到450Mbps的数据吞吐率,能够满足量子密钥分发中网络带宽的需求.
The integration of the quantum cryptography communication devices is a current trend,and quantum key distribution system is a crucial part.In this paper,a hardware based TCP/IP protocol processing structure is proposed to meet the requirements of the security and system performance in the design of quantum key distribution chip.The structure realizes the functions of the network layer and transport layer in the TCP/IP protocol by digital circuit design method,and it can be integrated into the system chip through the AHB interface.As an independent network processing module,this structure can reduce the computing burden of CPU.At the same time,by setting the module to work in a custom port mode and isolating the quantum domain from the classical network,the risk of key disclosure will be reduced.The test results show that the structure can achieve data throughput of 450 Mbps,and it can meet the demand of network bandwidth in quantum key distribution.
引文
[1]康双勇.量子通信技术发展现状及研究进展[J].保密科学技术,2017,7(3):7-10.
[2]黄靖正.量子密钥分配系统实际安全性研究[D].合肥:中国科学技术大学,2014.
[3]江木生.量子保密通信关键器件研制及攻防研究[D].长沙:国防科学技术大学,2015.
[4]章涛.高速量子密钥分发系统电子学[D].合肥:中国科学技术大学,2010.
[5] Gary R Wrigh.TCP/IP illustrated,volume 2:The Implementaion[M].陆雪莹,译.北京:机械工业出版社,2014.
[6] Behrouz A Forouzan.TCP/IP协议族[M].王海,译.北京:清华大学出版社,2011.
[7]崔珂.量子密钥分发实时处理技术研究[D].合肥:中国科学技术大学,2014.
