Yang Yong-Hua, Li Pei-Yuan, Ma Shi-Zhao, Qian Xiao-Cong, Zhang Kai-Yi, Wang Liu-Jun, Zhang Wan-Li, Zhou Fei, Tang Shi-Biao, Wang Jia-Yong, Yu Yu, Zhang Qiang, Pan Jian-Wei
Opt Express. 2021 Aug 2;29(16):25859-25867. doi: 10.1364/OE.432944.
Quantum key distribution (QKD) provides information theoretically secure key exchange requiring authentication of the classic data processing channel via pre-sharing of symmetric private keys to kick-start the process. In previous studies, the lattice-based post-quantum digital signature algorithm Aigis-Sig, combined with public-key infrastructure (PKI), was used to achieve high-efficiency quantum security authentication of QKD, and we have demonstrated its advantages in simplifying the MAN network structure and new user entry. This experiment further integrates the PQC algorithm into the commercial QKD system, the Jinan field metropolitan QKD network comprised of 14 user nodes and 5 optical switching nodes, and verifies the feasibility, effectiveness and stability of the post-quantum cryptography (PQC) algorithm and advantages of replacing trusted relays with optical switching brought by PQC authentication large-scale metropolitan area QKD network. QKD with PQC authentication has potential in quantum-secure communications, specifically in metropolitan QKD networks.
量子密钥分发(QKD)提供了理论上安全的信息密钥交换,它需要通过预共享对称私钥对经典数据处理通道进行认证来启动该过程。在先前的研究中,基于格的后量子数字签名算法Aigis-Sig与公钥基础设施(PKI)相结合,用于实现QKD的高效量子安全认证,并且我们已经证明了其在简化城域网结构和新用户接入方面的优势。本实验进一步将后量子计算(PQC)算法集成到商业QKD系统中,该系统是由14个用户节点和5个光交换节点组成的济南城域QKD网络,并验证了后量子密码学(PQC)算法的可行性、有效性和稳定性,以及PQC认证为大规模城域QKD网络带来的用光交换取代可信中继的优势。具有PQC认证的QKD在量子安全通信中具有潜力,特别是在城域QKD网络中。
