Work Package 1
Work Package 1 aims to integrate KETS’ Quantum Security QKD Module into Crypto4A’s QxEDGE platform, which will be known as the Crypto4A-KETS device. This device will operate as a Hardware Security Module (HSM), generating and storing generated quantum keys securely for QKD Networks. This project by extension seeks to address questions about the security and safety of quantum keys between the time of their generation and the time of their use, and explore the possibilities of integrating other technologies into the QxEDGE platform. Additionally, it will provide useful insight into the behaviour and performance of post-quantum algorithms when they are deployed on quantum-safe HSMs for networking.
To combine the KETS and Crypto4A devices, this project will utilize Crypto4A’s cloud server known as “Klondike”, which will handle interaction with the QxEDGE platform. Prototyping has begun by connecting the QxEDGE HSM and KETS’ QKD Module as two separate boxes. Post-processing will then be migrated from the KETS QKD Module onto the QxEDGE side. Then, the QxEDGE and KETS Module will be merged into one device, with two KETS PCIe cards slotted into a QxEDGE box.
Work Package 2
Work Package 2 seeks to simulate a QKD satellite link between Canada and the UK in partnership with QEYnet, which specializes in developing QKD satellite networks. These satellites will bypass the distance limitations inherent in a fibre-optically connected QKD network and will transfer quantum key material between nodes on said networks. This will be the first such satellite to handle intercontinental QKD communication, and will be deployed for a variety of use-cases. For example, the BaSQuaNa project intends to use this satellite in hosting a video call on the qTox instant messaging platform.
Current work involving this package mainly deals with looking at mitigating transmission error in satellite communication and considering how a satellite should interact with the BaSQuaNa codebase. QKD satellite communication involves relaying light signals via open air and space, which leads to questions about the effects of light pollution, weather, altitude, latitude, and other natural phenomena on the efficiency of signal transmission. Additionally, questions such as how many quantum keys the satellite can store, how big memory buffers should be, how often keys should be replenished, as well as the effects of radiation on memory and errors are all important design questions that are currently being looked at.
Upon completion, this satellite will function as a physical component of the Quantum Link Layer in the overall OpenQKDNetwork, and will be an important part of OpenQKDNetwork’s next iteration: OpenQKDNetwork2.0.
Work Package 3
Work package 3 seeks to optimize liboqs for Crypto4A’s QxEDGE as well as investigate potential ways to speed up these processes. Furthermore, this package involves development of a measurement and test harness for the QxEDGE device.
This work package currently works on QxEDGE emulators. The QxEDGE technology itself runs on a Quantum Assured Security Module (QASM) platform, with an ARM A53 processor in ZYNQ, ultrascale FPGA, as well as crypto and NEON vector extensions. The emulators currently run on several A53-based computers, including the Raspberry Pi 3B+ and ROCK64.
The liboqs library build system has been successfully modified to build on the simulator platform, and common symmetric-key components of the library (AES, SHA-2) have been optimized to use its crypto extensions. Accelerating AES and SHA in particular is important because many PQC schemes make use of AES and SHA in pseudorandom expansion. Support and optimization for other components such as SHA-256 to use the crypto extensions is currently underway.
Work Package 4
Work Package 4 brings together all of the work packages in this project together to create 2 QKD networks which will communicate with each other over satellite, with one in Canada and the other in the UK. This connection will be demonstrated via an encrypted video call between the two countries using the qTox IM app. Work Package 1 will supply the Crypto4A-KETS Hardware Security Module (HSM) device which will generate and store quantum keys, Work Package 2 will provide the simulated satellite link to connect the Canada and UK sides of the project, and Work Package 3 will provide optimized post-quantum algorithms to run on the HSMs developed in Work Package 1.
Current work on this Work Package includes merging the Canada and UK codebases into a common software framework as well as the logistics of simulating and demonstrating the network, including which elements of the network should be simulated. The diagrams below outline the general structure of how the QKD networks will be implemented using the OpenQKDNetwork framework.