网状QKD网络中分布式和集中式量子密钥管理系统的比较

IF 4 2区计算机科学 Q1 COMPUTER SCIENCE, HARDWARE & ARCHITECTURE

Journal of Optical Communications and Networking Pub Date : 2025-01-31 DOI:10.1364/JOCN.542054

Mario Wenning;Jonas Berl;Tobias Fehenberger;Carmen Mas-Machuca

{"title":"网状QKD网络中分布式和集中式量子密钥管理系统的比较","authors":"Mario Wenning;Jonas Berl;Tobias Fehenberger;Carmen Mas-Machuca","doi":"10.1364/JOCN.542054","DOIUrl":null,"url":null,"abstract":"Recent developments in quantum key distribution (QKD) demonstrate the maturity of securing sensitive data against the emerging quantum computing threat. For QKD-secured long-haul and meshed optical transport networks (OTNs), quantum key management systems (QKMSs) are essential to overcome current distance limitations of available QKD devices. In this work, we present and compare two implementations of QKMSs, analyzing their scalability with an emulated QKD network (QKDN) utilizing recorded performance metrics from deployed QKD devices. First, we use a state-of-the-art Internet routing scheme, i.e., open shortest path first (OSPF), demonstrating that key management entities (KMEs) can solve the key routing problem utilizing distributed routing. Second, we apply software-defined networking (SDN) to implement centralized routing with a SDN controller. This paper compares distributed with centralized key routing regarding scalability, throughput, and latency. Both schemes facilitate up to six key relays between any pair of nodes in parallel with average key relay durations per hop below 300 ms given the Nobel-Germany topology and any-to-any demand matrix. With a network-wide joint key routing optimization in the SDN controller, up to 16.7% higher demands can be served compared to distributed key routing. Within the inherent compatibility of our study to network-function virtualization (NFV), we guideline future integration of QKMSs into deployed OTNs.","PeriodicalId":50103,"journal":{"name":"Journal of Optical Communications and Networking","volume":"17 2","pages":"A224-A233"},"PeriodicalIF":4.0000,"publicationDate":"2025-01-31","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Comparison of distributed and centralized quantum key management systems for meshed QKD networks\",\"authors\":\"Mario Wenning;Jonas Berl;Tobias Fehenberger;Carmen Mas-Machuca\",\"doi\":\"10.1364/JOCN.542054\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Recent developments in quantum key distribution (QKD) demonstrate the maturity of securing sensitive data against the emerging quantum computing threat. For QKD-secured long-haul and meshed optical transport networks (OTNs), quantum key management systems (QKMSs) are essential to overcome current distance limitations of available QKD devices. In this work, we present and compare two implementations of QKMSs, analyzing their scalability with an emulated QKD network (QKDN) utilizing recorded performance metrics from deployed QKD devices. First, we use a state-of-the-art Internet routing scheme, i.e., open shortest path first (OSPF), demonstrating that key management entities (KMEs) can solve the key routing problem utilizing distributed routing. Second, we apply software-defined networking (SDN) to implement centralized routing with a SDN controller. This paper compares distributed with centralized key routing regarding scalability, throughput, and latency. Both schemes facilitate up to six key relays between any pair of nodes in parallel with average key relay durations per hop below 300 ms given the Nobel-Germany topology and any-to-any demand matrix. With a network-wide joint key routing optimization in the SDN controller, up to 16.7% higher demands can be served compared to distributed key routing. Within the inherent compatibility of our study to network-function virtualization (NFV), we guideline future integration of QKMSs into deployed OTNs.\",\"PeriodicalId\":50103,\"journal\":{\"name\":\"Journal of Optical Communications and Networking\",\"volume\":\"17 2\",\"pages\":\"A224-A233\"},\"PeriodicalIF\":4.0000,\"publicationDate\":\"2025-01-31\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Journal of Optical Communications and Networking\",\"FirstCategoryId\":\"94\",\"ListUrlMain\":\"https://ieeexplore.ieee.org/document/10862985/\",\"RegionNum\":2,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Optical Communications and Networking","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/10862985/","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE","Score":null,"Total":0}

引用次数: 0

摘要

量子密钥分发（QKD）的最新发展表明，保护敏感数据免受新兴量子计算威胁的能力已经成熟。对于QKD安全的长途和网状光传输网络（otn），量子密钥管理系统（qkms）对于克服当前可用QKD设备的距离限制至关重要。在这项工作中，我们提出并比较了两种qkms的实现，利用部署的QKD设备记录的性能指标，分析了它们与模拟QKD网络（QKDN）的可扩展性。首先，我们使用最先进的互联网路由方案，即开放最短路径优先（OSPF），证明密钥管理实体（KMEs）可以利用分布式路由解决密钥路由问题。其次，我们应用软件定义网络（SDN）实现集中式路由与SDN控制器。本文在可扩展性、吞吐量和延迟方面比较了分布式和集中式密钥路由。根据诺贝尔-德国拓扑和任意对任意需求矩阵，这两种方案在任意对节点之间并行提供多达6个密钥中继，每跳平均密钥中继持续时间低于300毫秒。通过在SDN控制器中进行全网范围的联合密钥路由优化，与分布式密钥路由相比，可提供高达16.7%的更高需求。在我们的研究与网络功能虚拟化（NFV）的内在兼容性范围内，我们指导未来将qkms集成到已部署的otn中。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Comparison of distributed and centralized quantum key management systems for meshed QKD networks

Recent developments in quantum key distribution (QKD) demonstrate the maturity of securing sensitive data against the emerging quantum computing threat. For QKD-secured long-haul and meshed optical transport networks (OTNs), quantum key management systems (QKMSs) are essential to overcome current distance limitations of available QKD devices. In this work, we present and compare two implementations of QKMSs, analyzing their scalability with an emulated QKD network (QKDN) utilizing recorded performance metrics from deployed QKD devices. First, we use a state-of-the-art Internet routing scheme, i.e., open shortest path first (OSPF), demonstrating that key management entities (KMEs) can solve the key routing problem utilizing distributed routing. Second, we apply software-defined networking (SDN) to implement centralized routing with a SDN controller. This paper compares distributed with centralized key routing regarding scalability, throughput, and latency. Both schemes facilitate up to six key relays between any pair of nodes in parallel with average key relay durations per hop below 300 ms given the Nobel-Germany topology and any-to-any demand matrix. With a network-wide joint key routing optimization in the SDN controller, up to 16.7% higher demands can be served compared to distributed key routing. Within the inherent compatibility of our study to network-function virtualization (NFV), we guideline future integration of QKMSs into deployed OTNs.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Journal of Optical Communications and Networking 工程技术-电信学

CiteScore

9.40

自引率

16.00%

发文量

104

审稿时长

4 months

期刊介绍： The scope of the Journal includes advances in the state-of-the-art of optical networking science, technology, and engineering. Both theoretical contributions (including new techniques, concepts, analyses, and economic studies) and practical contributions (including optical networking experiments, prototypes, and new applications) are encouraged. Subareas of interest include the architecture and design of optical networks, optical network survivability and security, software-defined optical networking, elastic optical networks, data and control plane advances, network management related innovation, and optical access networks. Enabling technologies and their applications are suitable topics only if the results are shown to directly impact optical networking beyond simple point-to-point networks.