QKD Network approaches – beyond the “classical” –
SECOQC et al. approach
June 06, 2019
Momtchil Peev
Optical and Quantum Laboratory, Munich Research Center MRC
Huawei Technologies Duesseldorf GmbH
ETSI 24, 4-5.06.18
Page 2 HUAWEI TECHNOLOGIES CO., LTD.
ContentsQKD Network Definitions & Basic Consequences
QKD Networks towards a systematic approach?
QKD Networks fundamental constituents – static and dynamic
Outlook
Page 3 HUAWEI TECHNOLOGIES CO., LTD.
What is a QKD Network?New Journal of Physics, M Peev et al 2009 New J. Phys. 11 075001
“ …. a QKD network … an infrastructure, based on point-to-point QKD capabilities, that
aims at information theoretically secure (ITS) key agreement and NOT at secure
communication”
Current discussion in ITU-T, ETSI. Toshiba, IdQuatique, Huawei, Telefonica,
UPM:
“a Communication network that supports secure communication and security
applications at large by utilizing different security primitives, including but not restricted
to QKD”
Page 4 HUAWEI TECHNOLOGIES CO., LTD.
Original approach: SECOQC – key generation
separation
Page 5 HUAWEI TECHNOLOGIES CO., LTD.
Consequences of Definitions A network design according to the traditional approach implies
An (at least logically) standalone infrastructure that is dedicated to (ITS) key generation
alone
The recent “industry promoted” attempts imply
A general communication infrastructure that by virtue of QKD has additional security
features, in which key generation is not restricted to a specific domain of its own
Page 6 HUAWEI TECHNOLOGIES CO., LTD.
Consequences of Definitions A network design according to the traditional approach implies
An (at least logically) standalone infrastructure that is dedicated to (ITS) key generation
alone
The recent “industry promoted” attempts imply
A general communication infrastructure that by virtue of QKD has additional security
features, in which key generation is not restricted to a specific domain of its own
Page 7 HUAWEI TECHNOLOGIES CO., LTD.
Systematic Approach towards a QKD Network
Elementary Functions
Functionality Layers
Architectures
Implementations
Page 8 HUAWEI TECHNOLOGIES CO., LTD.
(QKD) Networks – what are these in fact?
Connected locations (Nodes)
Page 9 HUAWEI TECHNOLOGIES CO., LTD.
Systematic Approach towards a QKD Network II
The fundamental constituents
A Crypto Subsystem (Note: A QKD Network is only an ephemeral Quantum Network)
A Communication/Computation Subsystem
Potential Dynamics of the Network and its Subsystems
Page 10 HUAWEI TECHNOLOGIES CO., LTD.
(QKD) Networks – the crypto segment
Crypto Subsystem from QKD 1
Page 11 HUAWEI TECHNOLOGIES CO., LTD.
(QKD) Networks – the crypto segment
Crypto Subsystem from QKD 2
Page 12 HUAWEI TECHNOLOGIES CO., LTD.
(QKD) Networks – the crypto segment
Crypto Subsystem 3
Page 13 HUAWEI TECHNOLOGIES CO., LTD.
(QKD) Networks – the crypto segment
Crypto Subsystem 4
Page 14 HUAWEI TECHNOLOGIES CO., LTD.
(QKD) Networks – the crypto segment
Crypto Subsystem 5
Page 15 HUAWEI TECHNOLOGIES CO., LTD.
(QKD) Networks
Crypto Subsystem as a feature and subsystem of a general communication/
computation infrastructure
Page 16 HUAWEI TECHNOLOGIES CO., LTD.
QKD Network types: a Static VersionContribution to ITU-T Standardization Document: Toshiba, IdQuantique, Huawei…
Page 17 HUAWEI TECHNOLOGIES CO., LTD.
Dynamic (QKD) Networks – the crypto segment
Crypto Subsystem from QKD 1
Page 18 HUAWEI TECHNOLOGIES CO., LTD.
Dynamic (QKD) Networks – the crypto segment
Crypto Subsystem from QKD 1
Page 19 HUAWEI TECHNOLOGIES CO., LTD.
Dynamic (QKD) Networks – the crypto segment
Crypto Subsystem from QKD 1
Page 20 HUAWEI TECHNOLOGIES CO., LTD.
Dynamic (QKD) Networks
Crypto Subsystem as a feature and subsystem of a general communication/
computation infrastructure
Page 21 HUAWEI TECHNOLOGIES CO., LTD.
Dynamic (QKD) Networks
Crypto Subsystem as a feature and subsystem of a general communication/
computation infrastructure
Page 22 HUAWEI TECHNOLOGIES CO., LTD.
Dynamic (QKD) Networks
Crypto Subsystem as a feature and subsystem of a general communication/
computation infrastructure
Page 23 HUAWEI TECHNOLOGIES CO., LTD.
Dynamic (QKD) Networks
Crypto Subsystem as a feature and subsystem of a general communication/
computation infrastructure
Page 24 HUAWEI TECHNOLOGIES CO., LTD.
OutlookMost general QKD Networks should include QKD as a crypto enabling segment,
not necessarily focus on network-wide key distribution alone
Dynamic solutions would most probably be better served by a unified control &
management
Moreover, for such solutions QKD devices must be more general purpose,
controllable and must fit in general network designs, not vice versa
The security levels should follow a network-wide design rather than create ITS,
super secure islands, awash in lower level security approaches
Translate the fundamental constituents insight to a logical hierarchy: basic
functions, functional layers, architectures, implementations
New QKD Network Designs are necessary!
Thank youwww.huawei.com
Page 25 HUAWEI TECHNOLOGIES CO., LTD.
Copyright©2014 Huawei Technologies Co., Ltd. All Rights Reserved.
The information in this document may contain predictive statements including, without limitation, statements regarding
the future financial and operating results, future product portfolio, new technology, etc. There are a number of factors that
could cause actual results and developments to differ materially from those expressed or implied in the predictive
statements. Therefore, such information is provided for reference purpose only and constitutes neither an offer nor an
acceptance. Huawei may change the information at any time without notice.