信息网络安全 ›› 2022, Vol. 22 ›› Issue (4): 49-57.doi: 10.3969/j.issn.1671-1122.2022.04.006

• 技术研究 • 上一篇    下一篇

基于VLAN的超晶格密钥分发跨网实现

王子恒1, 吴涵2, 解建国1, 陈小明1()   

  1. 1.北京电子科技学院,北京 100070
    2.中国科学院苏州纳米技术与纳米仿生研究所,苏州 215000
  • 收稿日期:2021-03-17 出版日期:2022-04-10 发布日期:2022-05-12
  • 通讯作者: 陈小明 E-mail:chenxmphd@yeah.net
  • 作者简介:王子恒(1994—),男,北京,硕士研究生,主要研究方向为信息安全与密码应用|吴涵(1993—),男,湖北,工程师,博士,主要研究方向为超晶格密码|解建国(1997—),男,安徽,硕士研究生,主要研究方向为信息安全与密码应用|陈小明(1964—),男,湖南,教授,博士,主要研究方向为密码学与信息安全
  • 基金资助:
    “十三五”国家密码发展基金密码理论课题(MMJJ20180112)

Cross-Network Implementation of Superlattice Key Distribution Based on VLAN

WANG Ziheng1, WU Han2, XIE Jianguo1, CHEN Xiaoming1()   

  1. 1. Beijing Electronic Science & Technology Institute, Beijing 100070, China
    2. Suzhou Institute of Nano-Tech and Nano-Bionics, Chinese Academy of Sciences, Suzhou 215000, China
  • Received:2021-03-17 Online:2022-04-10 Published:2022-05-12
  • Contact: CHEN Xiaoming E-mail:chenxmphd@yeah.net

摘要:

超晶格密钥分发系统作为基于物理实体密钥分发的新技术,可由超晶格物理器件的混沌效应产生密钥,并通过器件的物理不可克隆性保障密钥分发过程的安全性,发展前景广阔。为解决超晶格密钥分发系统在实时密钥分发过程中无法异地组网的问题,文章对虚拟局域网(VLAN)和虚拟扩展局域网(VXLAN)进行研究。在超晶格密钥分发系统中利用SDN架构下的VXLAN技术,从逻辑上为通信双方划分新网络,实现不同局域网下通信双方可在不依赖公网IP、域名的前提下进行跨网络的实时密钥分发,解决了异地密钥分发无法跨网的局限性。

关键词: 超晶格密钥分发, 物理实体, 虚拟局域网, SDN架构

Abstract:

As a new technology based on physical methods key distribution, superlattice key distribution system can generate keys through the chaotic effect of superlattice physical devices, and the security of key distribution process is guaranteed by the physical non-clonability of devices. Therefore, superlattice key distribution system enjoys a broad prospect. In order to solve the problem that the superlattice key distribution system cannot be a long-distance network in the process of real-time key distribution, this paper studied the virtual local area network(VLAN) and the virtual extensible local area network(VXLAN). In the superlattice key distribution system, the VXLAN technology under the modern SDN architecture was used to logically divide a new network for both parties of the communication, so that under different LANs, both parties of the communication can communicate real-time without relying on public network IP and domain name in cross-network key distribution, which solves the limitations of the key distribution in different places.

Key words: superlattice key distribution, physical methods, virtual local area network, SDN architecture

中图分类号: