Research On Edge Side Key Resource Allocation Strategies For Internet Of Things With Embedded Quantum Key Services

With the rapid development and widespread application of Internet of Things technology,its inherent network heterogeneity,diverse application scenarios,and massive terminal connections make its security issues very complex.Therefore,how to ensure the security of Internet of Things technology communication is currently of great concern.At present,the Internet of Things system usually uses lightweight cryptography to protect privacy,but the emergence of quantum computer will speed up the speed of password cracking,making the traditional encryption method no longer secure.Quantum key distribution technology is based on the principles of quantum mechanics,and with its theoretically unconditional security characteristics,it has become a highly promising secure communication technology for the Internet of Things.However,there is currently no comprehensive trusted architecture for applying quantum key distribution technology to Internet of Things terminals,and there is still a lack of key supply methods from quantum nodes to the edge side.Based on this,this article combines the characteristics of the Internet of Things and quantum key distribution technology,and conducts research on edge side key supply methods and key resource utilization strategies.It proposes an Internet of Things architecture with embedded quantum key distribution functions,a key resource secondment strategy based on business encryption request perception,and a key resource zoning supply strategy based on multi scenario business concurrency.Innovative solutions have been proposed to improve the success rate of quantum key supply and quantum key utilization.The research work of this article mainly includes the following three aspects:(1)In response to the issue of how quantum key distribution technology can be provided in the Internet of Things,an Internet of Things architecture and gateway functional module with embedded quantum key distribution function have been designed based on the massive connectivity characteristics of the Internet of Things edge side.This architecture adds three functional modules in traditional gateways:intermediate agent,quantum key state query,and quantum key secondment,to achieve key resource supply on the edge of the Internet of Things.The intermediate agent module is responsible for parsing encrypted requests and coordinating various functional modules within the gateway to achieve overall deployment;the quantum key state query module queries and matches the optimal key pool for quantum key supply based on the current resource required for business encryption;the quantum key secondment module requests quantum keys from the surplus key pool for secondary distribution to corresponding encryption services in response to business requests with insufficient encryption resources.This design proposes an overall architecture for edge side quantum key distribution,providing a foundation for subsequent research on quantum key resource supply strategies.(2)A key resource secondment strategy based on business encryption request volume perception is proposed to address the issue of how to provide quantum key resources for business encryption requests uploaded by massive Internet of Things terminals.This strategy targets the two most commonly used Internet of Things communication service modes,request/response and publish/subscribe.Based on the information transmission characteristics of different modes,quantum key pools are constructed in an end-to-end and peer-to-peer manner.By analyzing the received business encryption request information,referring to the current situation of quantum key pool construction and storage,and relying on the principle of secondary distribution of quantum key resources,a quantum key secondment strategy is implemented for the encryption process of business with insufficient key resources.The simulation results show that compared to conventional key supply methods,the key supply using a key resource secondment strategy based on business encryption request perception has improved the success rate and quantum key utilization rate by 5.51%and 14.44%,respectively.(3)To address the supply problem of quantum key resources in the context of mixed and concurrent business in multiple scenarios,a key resource supply strategy based on service type partition domain is proposed.Based on various situations where the link nodes in the data communication process may or may not have quantum key receiving and transmitting devices,research is conducted to map the business communication source and destination nodes without quantum devices to the nearest gateway with quantum key devices,and obtain secure encryption resources under the coordination of the gateway.In a multi scenario business mixed network,quantum key pools are constructed on links with quantum devices at both ends,and are divided into multiple regions based on service categories,each region providing quantum key resources as needed.The simulation results show that compared with the key supply without using the proposed algorithm,the key resource partitioning based on multi scenario business concurrency has improved the encryption success rate and quantum key utilization rate by 2.29%and 8.73%,respectively.