London Electronics Lt d. Warren Court, Chicksands SG17 5QB ...
Quantum Key Distribution in the€¦ · Quantum Key Distribution (QKD) Operational Security? Arnaud...
Transcript of Quantum Key Distribution in the€¦ · Quantum Key Distribution (QKD) Operational Security? Arnaud...
![Page 1: Quantum Key Distribution in the€¦ · Quantum Key Distribution (QKD) Operational Security? Arnaud Taddei ITU-T SG17 WP3 Chairman, Co-Convenor long term strategy ITU-T TSAG Standardization](https://reader035.fdocuments.in/reader035/viewer/2022080506/5f7a0e501efa4333835b98c8/html5/thumbnails/1.jpg)
![Page 2: Quantum Key Distribution in the€¦ · Quantum Key Distribution (QKD) Operational Security? Arnaud Taddei ITU-T SG17 WP3 Chairman, Co-Convenor long term strategy ITU-T TSAG Standardization](https://reader035.fdocuments.in/reader035/viewer/2022080506/5f7a0e501efa4333835b98c8/html5/thumbnails/2.jpg)
Quantum Key Distribution in the Cold Reality of CybersecurityArnaud Taddei
Technical Director, Standards and Architectures
Broadcom Inc.
TraditionalNetworks
Quantum Key Distribution (QKD)
OperationalSecurity
?
Arnaud Taddei
ITU-T SG17 WP3 Chairman, Co-Convenor long term strategy
ITU-T TSAG Standardization Strategy Rapporteur
![Page 3: Quantum Key Distribution in the€¦ · Quantum Key Distribution (QKD) Operational Security? Arnaud Taddei ITU-T SG17 WP3 Chairman, Co-Convenor long term strategy ITU-T TSAG Standardization](https://reader035.fdocuments.in/reader035/viewer/2022080506/5f7a0e501efa4333835b98c8/html5/thumbnails/3.jpg)
Traditional NetworkTypical experience
![Page 4: Quantum Key Distribution in the€¦ · Quantum Key Distribution (QKD) Operational Security? Arnaud Taddei ITU-T SG17 WP3 Chairman, Co-Convenor long term strategy ITU-T TSAG Standardization](https://reader035.fdocuments.in/reader035/viewer/2022080506/5f7a0e501efa4333835b98c8/html5/thumbnails/4.jpg)
Traditional Network - Cold reality
Remarks:1) The big assumption: The physical layer is unsecure2) The big remark: privacy and security are in 2 superposition states
… a new cat (of Schrödinger) in the room
More and MoreBrain attacks wayBeyond phishing (fake news, disinformation, etc.)
![Page 5: Quantum Key Distribution in the€¦ · Quantum Key Distribution (QKD) Operational Security? Arnaud Taddei ITU-T SG17 WP3 Chairman, Co-Convenor long term strategy ITU-T TSAG Standardization](https://reader035.fdocuments.in/reader035/viewer/2022080506/5f7a0e501efa4333835b98c8/html5/thumbnails/5.jpg)
Quantum Phyiscs Entanglement
Quantum Computing
Can break Shor’s algorithm QDay
Quantum Safe Cryptography (QSC)
Quantum CloudsQuantum SimulationNP Complete PbsEtc.
A Quantum Map
Can resolve many new problem classes (NP completele, support
AI, find new materials, …)
Quantum Communication Quantum Metrology
Quantum Key Distribution
(QKD)
Quantum ClocksQuantum Sensors
…
Quantum Random Number
Generation (QRNG)
Quantum Information
Networks(QIN)
Physics
MathematicsQuantum Resistance
![Page 6: Quantum Key Distribution in the€¦ · Quantum Key Distribution (QKD) Operational Security? Arnaud Taddei ITU-T SG17 WP3 Chairman, Co-Convenor long term strategy ITU-T TSAG Standardization](https://reader035.fdocuments.in/reader035/viewer/2022080506/5f7a0e501efa4333835b98c8/html5/thumbnails/6.jpg)
Quantum Key Distribution (QKD)Ensures physical layer to be secureNew technology with new characteristics First time:• A resource needs to be produced• A resource is consumed• A resource is perishable
![Page 7: Quantum Key Distribution in the€¦ · Quantum Key Distribution (QKD) Operational Security? Arnaud Taddei ITU-T SG17 WP3 Chairman, Co-Convenor long term strategy ITU-T TSAG Standardization](https://reader035.fdocuments.in/reader035/viewer/2022080506/5f7a0e501efa4333835b98c8/html5/thumbnails/7.jpg)
Science Fiction? NO!
Country/Region Research Industry Infrastructure - Ground Infrastructure - Space Projects/Programs Comments
China Yes Yes Beijing-Shanghai, etc. Satellite Micius Many
EU Yes Yes Yes Planned (Thales Espace) OpenQKD Will prioritize institutional customers (Hospitals, etc.)
US Yes Yes (QAI) Yes ? ?
Canada Yes Yes ? Planned (Honneywell) ?
Japan Yes Yes Yes ? ?
UK Yes Yes Yes ? ?
Spain Yes ? Yes ? ? SDN QKD
Switzerland Yes Yes Yes ? ? Banking Sector as commercial customers
Non exhaustive list – Beyond Data Center to Data Center, dozens of use cases
Standardization: • ITU-T SG13-SG17, FG-QIT4N• ETSI ETSI ISG QKD, ETSI TC Cyber QSC• ISO ISO/IEC JTC 1/SC27• IRTF Quantum Internet Research Group (QIRG)
![Page 8: Quantum Key Distribution in the€¦ · Quantum Key Distribution (QKD) Operational Security? Arnaud Taddei ITU-T SG17 WP3 Chairman, Co-Convenor long term strategy ITU-T TSAG Standardization](https://reader035.fdocuments.in/reader035/viewer/2022080506/5f7a0e501efa4333835b98c8/html5/thumbnails/8.jpg)
But who guards the guards?
QKD not immune to attacks!• Physics can do attacks, e.g. mirrors, beamer overload, etc.• Cyber attacks, e.g. on the trusted nodes (no “relays” yet)
Need Operational Security …
But where is it defined?
![Page 9: Quantum Key Distribution in the€¦ · Quantum Key Distribution (QKD) Operational Security? Arnaud Taddei ITU-T SG17 WP3 Chairman, Co-Convenor long term strategy ITU-T TSAG Standardization](https://reader035.fdocuments.in/reader035/viewer/2022080506/5f7a0e501efa4333835b98c8/html5/thumbnails/9.jpg)
Operational Security – The Sad Status
Security Services (Cyber Defence Centers, SoCs,
CERT, CSIRT, assessment, pentests, etc. )
Playbooks
Security Stack
Asset to Protect
PeopleDoing the cyber security services
KnowledgeHuman and Machine readable
recipes
Security ProductsEndpoint Security, Network
Centric Security, …
Architecture to ProtectNetworks, Devices, Data Centers,
IoTs, Verticals, People
- Professionalisation- Easy access to manpower
- JSON based playbooks- Shareable
- Formal overall architecture- Orchestratable- Integratable- Simple
- Secure by design allows orchestrator
- Attack surface minimized
- Vocational at best- Gross lack of manpower- CDC definition nascent (X.framcdc)
- Inexistent, gap (OASIS CACAO now)
- Inexistent, gap (OASIS, ITU) - Overly complicated stack- Industry consolidations needed- Encryption != security
- Secure by Design != Secure- Gigantic attack surface with 5G, IoT,
Verticalization, etc.
Operational Security Layer Nature of the layer Ideal Status Real Status
![Page 10: Quantum Key Distribution in the€¦ · Quantum Key Distribution (QKD) Operational Security? Arnaud Taddei ITU-T SG17 WP3 Chairman, Co-Convenor long term strategy ITU-T TSAG Standardization](https://reader035.fdocuments.in/reader035/viewer/2022080506/5f7a0e501efa4333835b98c8/html5/thumbnails/10.jpg)
Difficulties inside and between each of the main constituencies
• Governments
• Industry
• Academia
• Civil Society
An unsaid Babel Tower
Example: Industry Babel Tower
![Page 11: Quantum Key Distribution in the€¦ · Quantum Key Distribution (QKD) Operational Security? Arnaud Taddei ITU-T SG17 WP3 Chairman, Co-Convenor long term strategy ITU-T TSAG Standardization](https://reader035.fdocuments.in/reader035/viewer/2022080506/5f7a0e501efa4333835b98c8/html5/thumbnails/11.jpg)
Thank YouNOTE: I could have taken any other emerging topic than Quantum and arrived to the same conclusion!