LPsec: a fast and secure cryptographic system for optical connections

High capacity and low latency of optical connections are ideal for supporting current and future communication services, including 5G and beyond. Although some of those services are already secured at the packet layer using standard stream ciphers, like the Advanced Encryption Standard and ChaCha, s...

Descripción completa

Detalles Bibliográficos
Autores: Iqbal, Masab|||0000-0002-6339-1542, Velasco Esteban, Luis Domingo|||0000-0002-7345-296X, Costa, Nelson, Napoli, Antonio, Pedro, João|||0000-0003-4471-7401, Ruiz Ramírez, Marc|||0000-0001-6429-6347
Tipo de recurso: artículo
Fecha de publicación:2022
País:España
Institución:Universitat Politècnica de Catalunya (UPC)
Repositorio:UPCommons. Portal del coneixement obert de la UPC
Idioma:inglés
OAI Identifier:oai:upcommons.upc.edu:2117/368179
Acceso en línea:https://hdl.handle.net/2117/368179
https://dx.doi.org/10.1364/JOCN.444398
Access Level:acceso abierto
Palabra clave:Data encryption (Computer science)
Computer network protocols
Computer networks -- Security measures
Ciphers
Encryption
Cryptography
High-speed optical techniques
Optical receivers
Delays
Optical network units
Xifratge (Informàtica)
Protocols de xarxes d'ordinadors
Ordinadors, Xarxes d' -- Mesures de seguretat
Àrees temàtiques de la UPC::Enginyeria de la telecomunicació::Telecomunicació òptica
Àrees temàtiques de la UPC::Informàtica::Seguretat informàtica
Descripción
Sumario:High capacity and low latency of optical connections are ideal for supporting current and future communication services, including 5G and beyond. Although some of those services are already secured at the packet layer using standard stream ciphers, like the Advanced Encryption Standard and ChaCha, secure transmission at the optical layer is still not implemented. To secure the optical layer, cryptographic methods need to be fast enough to support high-speed optical transmission and cannot introduce significant delay. Moreover, methods for key exchange, key generation, and key expansion are required, which can be implemented on standard coherent transponders. In this paper, we propose Light Path SECurity (LPsec), a secure cryptographic solution for optical connections that involves fast data encryption using stream ciphers and key exchange using Diffie–Hellman protocol through the optical channel. To support encryption of high-speed data streams, a fast, general-purpose pseudorandom number generator is used. Moreover, to make the scheme more secure against exhaustive search attacks, an additional substitution cipher is proposed. In contrast to the limited encryption speeds that standard stream ciphers can support, LPsec can support high-speed rates. Numerical simulation for 16 quadrature amplitude modulation (QAM), 32-QAM, and 64-QAM show that LPsec provides a sufficient security level while introducing only negligible delay.