Shielding Your Data and Network in The Quantum Era: Q&A for Quantum-Proof Security
In this newsletter we will share some insights on key questions about data and network protection, random numbers for data encryption, and quantum key distribution.
1) What Choices Do You Have for Safeguarding Your Data And Networks From Future Cyber Threats?
One approach involves the adoption of post-quantum cryptography, where researchers are developing techniques to enhance the security of software-based signatures and key-exchange mechanisms. These methods are designed to remain effective even as quantum computers advance to the point of compromising current public-key cryptosystems.
Currently, there are already operational products that utilize hybrid combinations of different algorithms. The National Institute of Standards and Technology (NIST) is actively involved in formulating standards for quantum-resistant algorithms (QRA), aiming for completion by 2024. The true challenge will emerge with the advent of quantum computers.
However, the lingering question remains: How can we ascertain that a solution to these challenges hasn't already been uncovered, even if it remains unpublished? Furthermore, if such a solution has yet to be discovered, how can we be certain it won't emerge in the future, as increasingly adept computer scientists develop successive generations of quantum computers?
The answer is straightforward: We cannot!. Nonetheless, there exist tools leveraging quantum technology that can already enhance security: quantum random number generators (QRNG) and quantum-key distribution (QKD).
2) How Does the Randomness Produced by Quantum Random Number Generation Aid In Encrypting Data?
A random number refers to a numerical value generated through a process whose outcome is entirely unpredictable and cannot be consistently reproduced. Such numbers find essential applications across various fields, from cryptographic systems to gaming. In fact, nearly every cryptographic operation initiates with the generation of random numbers. Instances of inadequate randomness have been associated with numerous critical flaws in implementations and security breaches.
Unlike classical physics, which operates deterministically, quantum physics is inherently random. Quantum Random Number Generators (QRNGs) harness this intrinsic randomness of quantum physics to produce genuinely random numbers for tasks like message encryption and other cryptographic functions.
Enhancing randomness generation through QRNGs, which can seamlessly integrate with existing security solutions, represents the primary means of bolstering security today. Alternatively, Quantum Key Distribution (QKD) presents a novel approach to distributing these random numbers and establishing secure keys between disparate locations.
3) What Does Quantum-Key Distribution Entail?
Recommended by LinkedIn
Quantum-Key Distribution (QKD) provides a robust solution for long-term security against potential attacks from quantum computers. Its strength lies in its reliance on fundamental physical principles rather than specific mathematical assumptions. The crux of provably secure communication lies in the distribution of a unique secret key, utilized for encrypting messages, akin to QRNGs, which ensures complete randomness and single-time use.
QKD facilitates the remote establishment of such a key between two separate entities and is highly resistant to tampering by both traditional hackers and quantum computers. Any attempt to interfere with the data is swiftly detected by the two QKD parties, ensuring the integrity of the communication channel.
4) How Can You Deploy QKD Solutions to Safeguard Your Data?
Recent technological advancements are expanding the range over which quantum signals can be transmitted. Experimentation utilizing laboratory-grade equipment and "dark fibers"—optical fibers laid by telecommunications firms but currently unused—has successfully conveyed quantum signals over distances of up to four hundred kilometers.
However, practical systems suitable for easy deployment within existing infrastructure are presently limited to approximately one hundred kilometers. To overcome this limitation, a scalable architecture incorporating trusted nodes to connect successive Quantum Key Distribution (QKD) systems can extend the practical reach of this technology. This approach facilitates secure key sharing across extensive networks, enabling large-scale implementation that is both feasible and effective.
5) Which Organisations are Deploying QKD Solutions?
South Korean ICT leader, SK Telecom, is integrating Quantum Random Number Generators (QRNGs) into the subscriber authentication center of its 5G network. Additionally, it is deploying QKD technology along the Seoul-Daejeon section of its LTE and 5G networks to combat hacking and eavesdropping. Their objective is to bolster security for data transmission and reception across the entire network, thereby enhancing value for their customers by mitigating the risk of network breaches and safeguarding user data. By incorporating these measures into their networks now, organizations can pre-emptively shield themselves from the future expenses associated with rebuilding security infrastructure and restoring customer trust in a post-quantum landscape [1].
An American firm, Quantum Xchange, leverages Quantum Key Distribution (QKD) to facilitate point-to-multipoint transmissions within the financial markets of Wall Street. It's imperative to recognize that the United States does not stand alone in this domain and may not even hold the leading position presently.
China has already constructed a QKD network spanning two thousand kilometers between Shanghai and Beijing, with plans underway for an extension covering eleven thousand kilometers across much of eastern China. Additionally, China is actively deploying satellites equipped with QKD technology in space.
Europe is also actively engaged in this arena, with plans underway to establish a quantum communication infrastructure covering a significant portion of the EU. Ultimately, QKD offers the ultimate defense against potential quantum computer attacks in the future, whereas Quantum Random Number Generators (QRNG) provide an immediately available and verifiable means of ensuring confidentiality.
Until next week.
If you have any questions in the meantime, please contact us here:
