To transform your current network into a quantum-safe network, a dedicated and reliable Quantum Key Management System (Q-KMS) is required. This software layer above the QKD system layer plays a critical role in holistic quantum cyber-security ecosystems to guarantee end-to-end Post Quantum data communication security.
As the day of Quantum Computing breaking public-key cryptography is approaching and ‘Hack Now, Decrypt Later’ (HNDL) attacks are already being conducted today, the world’s cybersecurity foundations are going through a paradigm shift.
In this context, it is crucial that we transform our current network infrastructure to make it quantum-safe already today.
To achieve quantum-safe security, governments and enterprises are turning to Quantum Key Distribution (QKD): the only proven long-term solution available today compatible with existing telecommunication infrastructure.
QKD is by essence a point-to-point solution, whether it’s based on fiber optic deployment or free space. Fiber-based deployments can typically cover distances up to 100 to 150 kilometers before a hardware relay node is required. Satellite QKD technology, which is still under development, will cover longer distances and will need to be connected to the fiber optic infrastructure. Therefore, keys need to be intelligently and efficiently routed throughout the network and an additional layer is required to go beyond the optical point-to-point layer.
Ensure easy blend-in integration in existing infrastructures, scalability, guaranteed governance, and control.
Keeping QKD at the core of the secure solution
Seamless integration in existing network infrastructure
Field-proven extensive experience
Validated with most encryption vendors
Open standards based
Multi-QKD / Multi-KMS interoperability
Cost-effective scalability
Easy to deploy QKD-based PaaS
A Quantum Key Management System (Q-KMS) is a networking framework to route symmetric cryptographic keys between users, as opposed to conventional KMS that are more centralized solution that store, distribute, and manage life cycle of mostly asymmetric cryptographic keys.
The Q-KMS is a layer between the QKD point-to-point system and the applications that consume keys.
Originally, QKD was used in simple point-to-point configurations, which restricts use cases and market adoption. However, there are no quantum-safe networks without Q-KMS. This layer enables organizations to deploy quantum-safe solutions in a cost-effective and efficient way on top of an existing telecommunication infrastructure.
The Q-KMS is a central piece of software that allows to extend QKD networks beyond point-to-point: it acts as the glue of the QKD network and ensures long-distance reach of the Quantum keys through the QKD network. This network can be managed with standard communication network technologies, such as Software Defined Networking (SDN).
Its main role is to leverage QKD keys to securely transfer symmetric consumer keys over long distances. This layer is also responsible for managing and ensuring the quality of service whatever happens in the QKD layer. It can automatically provide customers with keys, either via redundant path, via key buffer or via redundant KMS when applicable.
With IDQ’s Clarion KX ecosystem, QKD security – hence forward security – is always at the center of the solution to guarantee the highest level of data protection for governments, enterprise companies and people. It is continuously evolving with the aim of helping you achieving end-to-end Post Quantum security.
Cerberis XG / Clavis XG
IDQ QKD systems and Clarion KX software all-in-one. Included in all IDQ’s XG Series of QKD systems.
Use cases
Small and large network infrastructures focusing on simplicity of integration and management of the QKD technology.
Advantages
Supports all features offered by Clarion KX ecosystem, plus:
Soltera KX
Standalone KMS appliance with embedded IDQ QRNG running Clarion KX software suite.
Use cases
Quantum-safe networks requiring increased redundancy, multi-QKD vendor support, or if a separate hardware for Q-KMS is required.
Advantages
Supports all features offered by Clarion KX ecosystem, plus:
The Q-KMS and Software layer above the QKD system plays a critical role in maintaining a coherent security ecosystem to guarantee end-to-end Post Quantum security. Therefore, IDQ products focus on addressing all the following aspects:
Management of critical assets
Management and monitoring channels
User management and authentication
System life cycle
Agile and certified cryptographic modules
All the features listed above depend on secure operations, which means the use of cryptographic modules needs to be certified (for international or domestic needs). And, when not relying on QKD technology, it needs the capacity to be updated regularly to follow the new patch or developments in the field of cryptography.
If you have any further questions or want to learn more about our Quantum Key Management solutions, get in contact using the form, and one of our solutions experts will be happy to help.
