Quantum Xchange has worked with Thales to provide immediate capabilities for delivering quantum and crypto-agile secure keys. The resulting quantum resilient network solution enables end users to maintain the security of their data and communications networks; overcome the vulnerabilities of current encryption techniques, for example, keys and data traveling together; and protect yourself from man in the middle, harvest, and future quantum attacks.
Quantum Xchange’s revolutionary out-of-band symmetric key distribution system, Phio Trusted Xchange (TX), is a simple architecture overlay that works in tandem with conventional encryption systems, in this case Thales High Speed Encryptors (HSE ) and any TCP / IP connection (wireless, copper, satellite, fiber) to decouple key generation and delivery from data transmissions.
With Phio TX, a second quantum-enhanced encryption key is sent through a separate tunnel and quantum-protected mesh network to multiple transmission points. This presents an attacker with the enormous challenge of having to overcome the combined security of the Key Encryption Key (KEK) – where a second key is involved and sent regardless of the data path. Continuous key rotation takes place with each transfer, further enhancing system security today and into the quantum future.
Phio TX embraces cryptographic agility, supporting quantum keys generated from any source i.e. Quantum Key Distribution (QKD), Quantum Random Number Generator (QRNG) or a combination, and all candidate post-quantum cryptographic (PQC) algorithms assessed by the National Institute of Standards and Technology (NIST) scheduled for standardization by 2022.
The FIPS validated network security appliance also meets the European Telecommunications Standards Institute (ETSI) protocol for QKD. With Phio TX, users can get started with PQC and then easily upgrade to QKD levels of protection without disrupting their underlying infrastructure and without disrupting the network.
“Phio TX used in combination with Thales High Speed Encryptors (HSE) provides customers with a powerful enterprise security solution capable of making native encryption keys immediately quantically resistant,” said Eddy Zervigon, CEO of Quantum Xchange . “The standards-based solution can easily meet the risk mitigation needs of an enterprise at any time and provides an infinitely stronger cybersecurity posture to any network environment. “
“Quantum computing will be one of the greatest technological achievements in recent memory, but it comes with many security risks,” said Todd Moore, vice president of encryption products at Thales. “While there is no silver bullet in cybersecurity, deploying crypto-agile systems or systems capable of rapidly updating cryptographic algorithms, keys and certificates in response to advancing cyber attacks is the key. next frontier in protection against emerging threats.
“Today, Thales enables companies to flexibly deploy security algorithms that include quantum resilient algorithms that provide mitigation techniques for current and future security risks presented by the evolution of quantum computing. NIST is currently selecting finalists from among quantum-secure encryption algorithms under development. In anticipation of this, Thales is already supporting the current finalists, including Thales’s Falcon algorithm.