Resumen de: CN121940126A
本发明涉及量子安全技术领域,尤其涉及一种基于量子密钥的移动通信系统、方法、介质和设备。移动通信业务发送端和接收端建立安全信道,根据安全信道确定待加密业务,按组为待加密业务向量子密钥服务平台请求量子密钥,量子虚拟专用网络发送端,根据待加密业务标识采用量子密钥进行加密;量子虚拟专用网络接收端,根据业务标识采用对应量子密钥执行量子密钥解密处理。应用本发明可以大幅降低量子密钥请求次数,在确保业务安全的前提下减少了系统负载。
Resumen de: WO2026086628A1
A communication method and a communication apparatus, relating to the technical field of communications. The method comprises: when a first certificate of a first entity is pending processing, determining a second certificate of the first entity based on the first certificate, the first certificate and the second certificate being used to perform joint authentication of the first entity; and sending, to a certificate authentication device, first information requesting to process the first certificate, and second information requesting to process the second certificate. In the method provided in the present application, after the first certificate is processed, the second certificate bound to the first certificate is processed, enabling the processed first certificate and second certificate to be used normally, thereby adapting to post-quantum migration.
Resumen de: WO2026086626A1
A communication method and a communication apparatus, relating to the technical field of communications. The method comprises: sending, to a certificate authentication device, second information requesting processing of a fourth certificate of a first entity, the fourth certificate carrying a third public key, and the second information comprising a fourth public key and/or a fifth public key; receiving a fifth certificate, the fifth certificate being a certificate obtained by processing the fourth certificate, and the fifth certificate comprising at least one of the following: a third public key, a fourth public key or a fifth public key. The third public key and the fifth public key correspond to a first signature algorithm, and the fourth public key corresponds to a second signature algorithm. In the present method, when a first entity holds the fourth certificate, and the fourth certificate comprises the third public key, the first entity sends, to a certificate authentication device, second information requesting processing of the fourth certificate, so that the processed fourth certificate (i.e. the fifth certificate) comprises multiple public keys, thereby better adapting to post-quantum migration.
Resumen de: CN121923802A
0001 本发明提出一种面向多维复用量子光网络的低损耗、无色(Colorless)、无方向(Directionless)、无竞争(Contentionless)可重构光分插复用器(CDC‑ROADM)创新架构设计方法,该方案专为未来大容量、低阻塞、高可靠性的量子光网络优化。基于量子信号传输的特殊要求,本发明创新性地使用低损耗波长选择开关(WSS)设计具备高灵活性的量子信号交换模块。经典信号交换模块采用分层级联架构:空间交叉连接(SXC)层实现纤芯级交换,波长交叉连接(WXC)层支持波长/波组级灵活调度,通过双层级协同机制在保障交换灵活性的同时显著减少高昂器件的使用并降低系统建设成本和损耗。本发明所提设计方法具有低损耗、大容量、高效传输与低阻塞率等优势,可为量子光网络的规模化部署提供关键技术支撑。
Resumen de: CN121923819A
本发明属于量子安全多方计算领域,公开了一种基于量子电路的量子安全多方求和协议,在离线阶段所有参与方共同协商得到一个特定的量子态,且所有参与方得到的量子态通过量子加法门的结果为0,在线阶段每个参与方将特定的量子态与输入的量子态相加,并将相加的得到的量子态通过密钥加密发送给下一参与方,下一参与方解密后执行量子加法电路,以此类推最终倒数第二参与方得到最终结果并发送给其他参与方。本发明是利用离线阶段产生的特定的量子态隐藏真实输入,可建立N‑2个参与方的合谋攻击的可信数据融合环境,促进数据要素安全流通,助力解决数据孤岛问题;计算过程中无需可信第三方参与,消除信任依赖;支持输入量子态,防御未来量子计算威胁。
Resumen de: CN121923810A
0001 本发明公开了一种基于国密算法的物联网设备抗量子密码迁移方法,涉及数据安全领域,方法包括:配置以国密SM3为默认算法的哈希敏捷性模块,并基于监控动态切换至抗量子或兼容性备选算法;采用SM2进行身份认证与临时密钥协商,生成仅用于单次会话的密钥对;基于密钥对派生出会话密钥,并根据数据安全等级采用差异化双层签名验证机制;对于固件更新,采用函数级差分分析生成差分包,并通过A/B系统分区实现原子性更新与回滚。本发明有效抵抗量子计算威胁,确保国密合规性与前向安全性,同时通过资源优化技术显著减小更新包体积、降低内存占用并提升验证效率,特别适用于资源受限的物联网设备。
Resumen de: US2025112897A1
0000 Techniques for applying a quantum ready intelligent security gateway are disclosed. In some embodiments, a system/process/computer program product for applying a quantum ready intelligent security gateway (e.g., a quantum ready intelligent security gateway that supports quantum key distribution (QKD) and/or post-quantum cryptography (PQC) for providing a secure tunnel to the mobile network) includes monitoring network traffic on a mobile network at a security gateway to identify a new session; determining meta information associated with the new session by extracting the meta information from the network traffic via one or more interfaces; and enforcing a security policy on the new session at the security gateway based on the meta information to apply context-based security in the mobile network.
Resumen de: CN121923789A
本发明公开抗量子密码适配的通信协议签名与加密算法重构方法,针对量子攻击威胁及PQC算法与现有协议适配难题,通过协议密码原语分析、PQC算法适配、协议逻辑重构三阶段分层协同设计,采用分段/哈希摘要映射解决PQC参数字段兼容问题,设计动态混合算法协商与前向安全层次化密钥派生机制,重构协议握手流程。该方法集成NIST标准PQC算法,支持传统密码与PQC混合模式及降级机制,无需大规模改造现有设备,兼顾量子安全、兼容性与扩展性,满足关键场景低延迟高可靠需求,可有效抵御量子攻击,适配未来PQC算法更新。
Resumen de: CN121923885A
本申请涉及一种微电网加密数据库访问控制系统。所述系统包括:调度中心,用于将微电网边缘节点的对称密钥发送至后量子认证中心以及加密数据库服务器;微电网边缘节点,用于在发起数据库访问控制请求的情况下,根据请求信息生成哈希基签名并发送至后量子认证中心,以及利用对称密钥对请求信息及访问令牌进行加密处理,生成密文信息发送至加密数据库服务器;后量子认证中心,用于对哈希基签名进行签名验证,在签名验证通过的情况下,生成访问令牌并返回微电网边缘节点;加密数据库服务器,利用对称密钥对密文信息进行解密,在访问令牌通过验证的情况下,对数据库访问控制请求进行响应。采用本系统可以实现对微电网加密数据库的安全访问控制。
Resumen de: CN121923860A
0001 本申请提供了一种攻击行为的检测方法、装置、设备及密码芯片。该攻击行为的检测方法包括在采用超树中目标非顶层的目标认证树对目标数据进行后量子密码数字签名的情况下,确定目标认证树在签名过程中各个节点的节点值;基于各个节点的节点值,确定目标认证树在签名过程中的当前校验信息;对比目标认证树的当前校验信息与目标认证树的预设校验信息,得到对比结果;预设校验信息采用当前校验信息的确定方式生成;基于对比结果,确定是否存在对目标数据的签名过程进行攻击的攻击行为。
Resumen de: KR20260055753A
본 발명은 양자 비트 커밋먼트 방법, 장치 및 시스템에 관한 것으로서, 보다 구체적으로는 양자 환경을 기반으로 비트 커밋먼트를 안전하게 수행할 수 있도록 하는 양자 비트 커밋먼트 방법, 장치 및 시스템에 관한 것이다. 본 발명에서는, 제송신자와 수신자 간의 양자 비트 커밋먼트를 수행하는 방법에 있어서, 상기 수신자가, 위상에 기반하는 암호화 기법을 적용하여 커밋 대상 정보가 암호화된 양자 상태를 상기 송신자로부터 제공받는 단계; 상기 양자 상태를 복호화하기 위한 복호화 정보를 상기 송신자로부터 수신하는 단계; 및 상기 복호화 정보를 이용하여 상기 암호화된 양자 상태로부터 복호화된 커밋 복호화 정보를 기반으로 검증을 수행하는 단계를 포함하는, 방법을 개시한다.
Resumen de: CN121923816A
本发明提供了一种基于后量子密码算法的信道安全认证方法及系统,属于通信网络安全领域。该方法包括:通信双方首先执行后量子密码双向认证与密钥交换,生成主会话密钥;基于主会话密钥派生出轻量级会话密钥及多个动态盐值;双方交换探测信号获取信道状态信息,并利用动态盐值对其进行混淆处理与交互,协同生成共有的基准信道指纹;在后续通信中,认证方利用轻量级会话密钥、基准信道指纹及瞬时信道状态信息生成一次性认证令牌,由验证方完成验证;认证通过后,双方基于所用信道状态信息更新密钥及指纹。本发明通过将后量子密码的长期数学安全性与无线信道的瞬时物理特征深度融合,在确保后量子安全性的同时,降低了高频认证场景下的开销。
Resumen de: CN121923808A
0001 本发明公开了一种后量子密码迁移的模块化解耦演进系统及方法。系统包括:发送端,利用嵌套混合签名技术,在标准化金融报文中内嵌具备算法敏捷性的后量子签名并外包传统非对称签名,并采用ML‑KEM与传统传输协议的双重隧道封装传输;接收端,采用线性解耦验证架构,通过前置节点卸载PQC传输层加密、中置存量节点处理传统业务、后置独立节点并行验证PQC业务签名。本发明引入基于“预扣‑异步验证‑冲正”的业务级乐观并发控制机制,解决了后量子算法高延迟导致的RTGS系统吞吐量瓶颈;通过调用核心系统既有的业务冲正接口,实现了在零侵入核心结算逻辑的前提下,完成金融基础设施向抗量子体系的平滑演进。
Resumen de: US20260113185A1
An information processing apparatus is provided that includes at least one memory storing instructions, and at least one processor configured to execute the instructions to receive information necessary for calculating a compression rate in privacy amplification processing in a quantum key distribution from a quantum key distribution device, determine the compression rate, based on the received information, and transmit information indicating the determined compression rate to the quantum key distribution device.
Resumen de: US20260113184A1
0000 According to the instant application, there are provided systems and methods to create a quantum secure/resistant secure communication channel (QSR-SCC) for communication between two or more end-points at or within devices, applications, services, APIs, secure communication protocols, etc. In one example of a QSR-SCC, a quantum secure/resistant private network (QSR-PN) extends existing VPN solutions using one time pad (OTP) based keys, augmented handshake mechanisms, and interchangeable ciphers, for example, stream ciphers or block ciphers, for enhancing security associated with the QSR-PN.
Resumen de: US20260113188A1
0000 A system for conditional data release features an Orchestration Engine (OE) that enforces Immutable Governance parameters such as validation thresholds and time delays sealed in tamper-evident Vault Metadata. The OE validates governance compliance through a Cryptographic Hash Verification Engine (CHVE) confirming metadata integrity and a Time-Hash Verification Engine (THVE) recording each governance event as a cryptographically signed, time-anchored commitment. Upon successful validation, the OE initiates a hardware-isolated Secure Execution Environment (SEE) for cryptographic key operations. Payload data is sent directly to the SEE for encryption, ensuring the OE never accesses plaintext. The SEE performs encryption, key unwrapping, and decryption exclusively within its secure boundary without executing governance logic or exposing plaintext keys. Architectural separation provides a tamper-evident, time-anchored framework for conditional data release under Immutable Governance, supporting diverse conditional-execution scenarios including estate planning, database governance, and enterprise access-control workflows through modular policy frameworks.
Resumen de: US20260113183A1
0000 A system includes a quantum memory configured to store a quantum cryptographic key, a unique random key, and sensitive data to be transmitted to a quantum computing device over an optical communication channel. The system further includes a quantum processor operably coupled to the quantum memory and configured to access the quantum cryptographic key and the sensitive data and to transmit, over the optical communication channel, the quantum cryptographic key to the quantum computing device. In response to transmitting the quantum cryptographic key to the quantum computing device, the quantum processor is further configured to encode the sensitive data based on the quantum cryptographic key and a unique random key. The encoded sensitive data includes a generated one or more pairs of entangled quantum bits (Qubits). The quantum processor is further configured to transmit, over the optical communication channel, the encoded sensitive data to the quantum computing device.
Resumen de: WO2024256922A1
A loop interferometer system including a laser, an optical loop, a beam splitter optically coupled to the laser and the optical loop, and a controller configured to control the laser to generate random phase pulses. The optical loop may be configured to receive the random phase pulses from the laser, time delay the random phase pulses, and direct the time delayed random phase pulses to the beam splitter. The beam splitter may be configured to create output optical pulses from an interference pattern between the random phase pulses from the laser and the time delayed random phase pulses from the optical loop.
Resumen de: WO2025183721A2
Systems, methods, and quantum circuits for utilizing a joint modular multiplicative inverse operation to perform quantum decryption. First and second private keys are determined by applying first and second series of quantum phase estimation circuits to first and second pluralities of qubits. The private keys are determined further based on public keys and a base point P. The first and second series of quantum phase estimation circuits include application of a joint modular multiplicative inverse circuit on a first qubit of the first plurality of qubits and a second qubit of the second plurality of qubits that calculates a modular multiplicative inverse of a modular product of a first value of the first qubit and a second value of the second qubit. The first and second private keys are stored in a non-transitory computer-readable memory medium.
Resumen de: CN121907438A
0001 本申请公开了一种通信方法及相关装置、存储介质、计算机程序产品,应用于第一设备的通信方法包括:在密钥池中确定一个或多个第一密钥;向第一实体发送第一消息;其中,第一消息用于请求充注密钥,第一消息中携带一个或多个第一密钥的标识;接收第一实体发送的第二消息;其中,第二消息携带加密和/或完整性保护的一个或多个第三密钥。
Resumen de: CN121907611A
0001 本发明公开了一种抗量子的去中心化联邦学习无人机身份认证方法及系统,属于无人机网络安全技术领域。首先,以无人机为节点建立时变无向图对等网络,利用分解式双随机权重构建分布式混合矩阵。其次,采用基于格的全同态加密及数字签名技术,为参数提供抗量子加密与传输完整性保护。随后,各节点在密文状态下安全交换并同态聚合模型参数差值,通过迭代使本地模型收敛至全局统一的高性能认证模型。当新节点请求接入时,邻居节点利用本地模型计算其射频特征距离,通过协同投票机制完成分布式身份认证。本发明实现了完全去中心化架构,同步具备抗量子安全、强隐私保护与可靠通信能力,适用于高度动态的无人机网络场景。
Resumen de: CN121901628A
本发明涉及无人驾驶航空器云系统安全防护技术领域,公开了一种无人驾驶航空器云系统安全风险因素精准识别方法,其技术方案要点是:六域异构特征的超弦态解耦映射、超弦态的拓扑量子纠缠编码、超弦拓扑折叠的风险推理、拓扑不变量的风险校验、超弦态的经典模拟落地,通过融合超弦理论与拓扑量子计算,构建六域异构特征的高维拓扑表征与动态折叠推理体系,实现无人驾驶航空器云系统跨域隐蔽风险的本质级精准识别与实时适配。
Resumen de: CN121907733A
本发明提供了一种错误率评估方法、量子不经意传输方法及系统,当错误率统计结果小于等于P1时,密钥序列用于量子密钥分发当错误率统计结果在P1和P2之间时,密钥序列用于量子不经意传输协议;当错误率统计结果大于P2时,直接丢弃密钥序列,本发明将错误率统计结果与预先设定的阈值相比较,根据比较结果,分配密钥序列的用途;同时,可以根据业务需求量动态调整错误率阈值,从而改变量子密钥分发和量子不经意传输两部分的密钥输出比重,适用性较高。
Resumen de: CN121907452A
0001 本发明公开一种支持抗量子密码算法的多节点传输加密装置架构,旨在解决传统加密装置适配性差、协同效率低、资源受限场景运行低效等问题。装置采用模块化设计,含抗量子密码算法库、可重构密码芯片、多节点协调器等五大模块,集成NIST标准化PQC算法,支持多通信协议适配。通过节点初始化注册、动态群密钥协商、数据传输加密及密钥更新撤销流程,基于Module‑LWE问题与SHAKE256哈希函数保障抗量子安全。该架构抗量子攻击能力强、多节点协同高效、兼容性好,可部署于智能电网、物联网等场景,满足高安全、低延迟、高可靠传输需求,工程实用性突出。
Nº publicación: CN121902175A 21/04/2026
Solicitante:
安徽问天量子科技股份有限公司何铁军张宁南京燮科智能设备有限公司
Resumen de: CN121902175A
0001 本发明涉及电子票务信息安全,具体涉及基于量子密钥的二维码动态加密与验证系统,量子密钥管理系统,每日定时生成多组量子对称密钥;二维码服务器端,每日导入量子密钥管理系统生成的量子对称密钥,并在接收到用户端发送的二维码请求后生成多组原始数据,利用量子对称密钥加密后发送至用户端;用户端,将二维码服务器端发送的加密数据转化成对应的多个二维码,并对各二维码进行动态轮播;设备端,读取用户端显示的二维码,并转化成对应的多组明文数据,将多组明文数据与多组原始数据进行报文的Hash值比对,以验证二维码是否正确;本发明能够有效克服易被复制盗用、抗量子攻击能力不足、缺乏动态验证机制,以及难以有效保护用户隐私的缺陷。