The next-generation information security is facing quantum threats from the recent progress in quantum technologies. Quantum cryptography can provide true randomness and secure distribution of keys, but is prevented from wide applications due to challenges in real implementation. We propose and demonstrate a practical hybrid scheme with various quantum-safe technologies for encrypted communications between data centers. Quantum random number generators, quantum key distribution, post-quantum and classical cryptography algorithms are integrated in the hybrid quantum-safe scheme to enhance data transfer security in Alibaba platform. Compared with quantum cryptography and post quantum cryptography solutions, the proposed triple-level security cryptographic scheme provides a layered cryptographic solution for different applications, and is compatible with existing solutions. The demonstration shows a first step of quantum-safe secure data transfer solution in real data center environment, with the advantages of low cost, high stability, and easy operation.
|