Authors:
Andreas Neppach
1
;
Christian Pfaffel-Janser
1
;
Ilse Wimberger
1
;
Thomas Loruenser
2
;
Michael Meyenburg
2
;
Alexander Szekely
3
and
Johannes Wolkerstorfer
3
Affiliations:
1
Program and System Engineering (PSE), Siemens AG Austria, Austria
;
2
Smart Systems Division, Austrian Research Centers GmbH, Austria
;
3
Institute for Applied Information Processing and Communications, Graz University of Technology, Austria
Keyword(s):
Quantum cryptography, Key management, Virtual Private Networks (VPN), IPsec, Security gateway, Internet Key Exchange (IKE).
Related
Ontology
Subjects/Areas/Topics:
Cryptographic Techniques and Key Management
;
Information and Systems Security
;
Ipsec, Vpns and Encryption Modes
;
Quantum Information Processing
Abstract:
This paper presents a key management approach for quantum generated keys and its integration into the IPsec/IKE protocol. The solution is used in a security gateway that integrates quantum key distribution (QKD) and IPsec as a system-on-chip solution. The QKD acquisition module and the IPsec part of this prototype are implemented in hardware to provide a high level of integration as well as high encryption throughput. To make use of these fast encryption capabilities, a flexible key management approach is necessary to provide keys just in time. Thus, the presented key management approach focuses on an efficient key update mechanism and minimizes the communication overhead. Furthermore, the presented approach is a first step to integrate QKD solutions into
real-world commercial applications using standardized interfaces.