中国邮电高校学报(英文) ›› 2018, Vol. 25 ›› Issue (5): 1-11.doi: 10.19682/j.cnki.1005-8885.2018.0025

• security •    下一篇

Security performance analysis and the parameters simulation of quantum virtual private network based on IPSec protocol

聂敏1,陶金2,杨光2,孙爱晶2,裴昌幸3   

  1. 1. 西安邮电学院
    2. 西安邮电大学
    3. 西安电子科技大学
  • 收稿日期:2018-03-21 修回日期:2018-05-28 出版日期:2018-10-18 发布日期:2018-10-18
  • 通讯作者: 陶金 E-mail:39002945@qq.com
  • 基金资助:
    国家自然科学基金;陕西省国际科技合作与交流计划项目;陕西省教育厅科研计划项目

Security performance analysis and the parameters simulation of quantum virtual private network based on IPSec protocol

  • Received:2018-03-21 Revised:2018-05-28 Online:2018-10-18 Published:2018-10-18
  • Supported by:
    National Natural Science Foundation of China;the International Scienti?c and Technological Cooperation and Exchange Program in Shaanxi Province, China;the Natural Science Research Foundation of Shaanxi Province, China

摘要: Traditional virtual private networks (VPNs) are conditional security. In order to ensure the security and confidentiality of user data transmission, a model of quantum VPN based on Internet protocol security (IPSec) protocol is proposed. By using quantum keys for key distribution and entangled particles for identity authentication in the network, a secure quantum VPN is relized. The important parameters affecting the performance of the VPN was analyzed. The quantitative relationship between the security key generation rate, the quantum bit error rate (QBER) and the transmission distance was obtained. The factors that affect the system throughput were also analyzed and simulated. Finally, the influence of the quantum noise channel on the entanglement swapping was analyzed. Theoretical analysis and simulation results show that, under a limited number of decoy states, with the transmission distance increased from 0 to 112.5 km, the secure key generation rate was reduced from 5.63×10-3 to1.22×10-5 . When the number of decoy states is fixed, the QBER increases dramatically with the increase of the transmission distance, and the maximum reaches 0.393. Analysis shows that various factors in communication have a significant impact on system throughput. The generation rate of the effective entanglement photon pairs have decisive effect on the system throughput. Therefore, in the process of quantum VPN communication, various parameters of the system should be properly adjusted to communicate within a safe transmission distance, which can effectively improve the reliability of the quantum communication system.

关键词: virtual private network, quantum key, identity authentication, key generation rate, quantum bit error rate, throughput

Abstract: Traditional virtual private networks (VPNs) are conditional security. In order to ensure the security and confidentiality of user data transmission, a model of quantum VPN based on Internet protocol security (IPSec) protocol is proposed.By using quantum keys for key distribution and entangled particles for identity authentication in the network, a secure quantum VPN is relized. The important parameters affecting the performance of the VPN was analyzed. The quantitative relationship between the security key generation rate, the quantum bit error rate (QBER) and the transmission distance was obtained. The factors that affect the system throughput were also analyzed and simulated. Finally, the influence of the quantum noise channel on the entanglement swapping was analyzed. Theoretical analysis and simulation results show that, under a limited number of decoy states, with the transmission distance increased from 0 to 112.5 km, the secure key generation rate was reduced from 5.63×10-3 to1.22×10-5  . When the number of decoy states is fixed, the QBER increases dramatically with the increase of the transmission distance, and the maximum reaches 0.393. Analysis shows that various factors in communication have a significant impact on system throughput. The generation rate of the effective entanglement photon pairs have decisive effect on the system throughput. Therefore, in the process of quantum VPN communication, various parameters of the system should be properly adjusted to communicate within a safe transmission distance, which can effectively improve the reliability of the quantum communication system.

Key words: virtual private network, quantum key, identity authentication, key generation rate, quantum bit error rate, throughput