ETSI ISG QKD. Martin Ward. Industry Specification Group in Quantum Key Distribution ETSI / IQC Quantum Safe Workshop, 14 September 2017

Transcription

1 ETSI ISG QKD Martin Ward Industry Specification Group in Quantum Key Distribution ETSI / IQC Quantum Safe Workshop, 14 September 2017

2 ETSI Industry Specification Group in QKD Mission: To develop ETSI Group Specifications / Group Reports describing quantum cryptography for ICT networks Publishes GS (or since 2016 GR) Documents based on QKD use cases, Application Interfaces, Security Proofs, Module Specification, Ontology, Characterisation of Components and Modules, Deployment Parameters and Implementation Security Membership includes large industry, telecom operators, SMEs, NMIs and universities Open to new members and participants Contact the ISG Chair Andrew Shields (andrew.shields@crl.toshiba.co.uk) Next ISG Meeting in Munich, 4 5 December 2017

3 Main Areas of Activity Components and module characterisation Correct characterisation important for implementation security Define market for specialist components and modules Implementation Security Promote best practice in implementation security Mitigate risks of side channels and active attacks Deployment scenarios Ensuring effective communication over deployments, network requirements etc. Interfaces Enabling interoperability and application development

4 Component and module characterisation GS QKD 011 published in 2016 Component characterization: characterizing optical components for QKD systems Specifications for the components used in QKD systems will stimulate a supply chain for the technology Define a market for specialist components such as photon sources and detectors New metrology of standard telecommunications components for quantum applications Some parameters related back to primary standards e.g., pulse photon number Specifications benefit companies manufacturing components for quantum technologies and QKD manufacturers

5 Module characterisation Work item DGS/QKD 0013_TransModChar Characterisation of Optical Output of QKD transmitter modules Performing metrology on complete QKD modules Additional challenges over measuring bare components Want to verify behaviours in optical outputs and confirm correct operation In a QKD module interferometers and time varying signals etc. Test procedures require and involvement of manufacturer Talk by Christopher Chunnilall (NPL) tomorrow at 13:30

6 Implementation security All security systems need to be designed to avoid side channels QKD security is based in the optical layer on the properties of light at a small scale Inability to fully measure / clone photons useful for forward security Some potential side channels are common with classical systems use existing standards Need to understand how implementations differ from ideal protocols QKD assumes eavesdropping and quantifies information leak Same approach often applicable for side channels if these cannot be eliminated by design: quan fy and use privacy amplifica on

7 Implementation security DGS/QKD 0010_ISTrojan Implementation security: protection against Trojan horse attacks in one way QKD systems Specifies passive countermeasures against attack Defines metrology to quantify optical isolation of QKD system Design guidelines for receiver modules Enables manufacturer to apply necessary privacy amplification to remove residual risk Consideration of certification Aim to ensure ISG security documents are structured to help future certification work Series of conference calls during 2017 to consider approach

8 Deployment scenarios DGS/QKD 0012_DeployParam Device and Communication Channel Parameters for QKD Deployment Define the main communication resources involved in a QKD system Communication channels Common architectures Planning a QKD Deployment: Entities and Contexts Information exchange template Help parties to understand what matters for a successful deployment and to communicate requirement effectively

9 Application Interfaces GS QKD 004 Application Interface Internal interface for key requests Function calls not network protocols DGS/QKD 014KeyDeliv Protocol and data format of key delivery API to Applications For application developers to make simple calls to a QKD network to request cryptographic keys Allow interoperability of equipment from different vendors Required as active integration work by manufacturers Single QKD link or an extended network Future ISG work items likely on integration into SDN architectures and wider key management issues

10 Update work Reviewing earlier documents due to Technical progress Contents moved to more detailed specifications E.g., GS QKD 003 Components and Internal Interfaces (under revision) GS QKD 011 Component characterization (replaces parts of GS QKD 003) Improve uniformity of terminology used in ISG documents Ontology

11 Summary The rate of innovation in QKD remains high New protocols Improved performance and ease of use of systems Satellite links to extend reach Several network being constructed ETSI remains central in leading the development of standards for QKD The ISG is working to enable the future interoperability of quantum communications networks being developed around the world Promotes best practice in implementation security Mitigate the risks of side channels and active attacks For further details on QKD please visit: