Internet-Draft InitConQKDNProto October 2024
Stiemerling, et al. Expires 24 April 2025 [Page]
Workgroup:
Network Working Group
I-D:
draft-danet-qkdn-considerations-00
Published:
Intended Status:
Informational
Expires:
Authors:
M. Stiemerling
Darmstadt University of Applied Sciences
F. Seidl
Darmstadt University of Applied Sciences
M. Bauch
Darmstadt University of Applied Sciences
N. Schark
Darmstadt University of Applied Sciences
J. Henrich
Darmstadt University of Applied Sciences

Initial Considerations about QDKN Protocols

Abstract

Quantum communication modules connected via a link, either via fiber or free-space communications, have been used since a while to distribute random numbers as secure keys, but there are other use cases, such as time synchronization.

By today, a number of research and industrial efforts are underway to built complete networks, primary for secure key distribution, i.e., so-called Quantum Key Distribution Networks (QKDN).

This memo briefly explores the space of QKDNs and identifies spots of potentials interest to develop standardized protocols specific for such networks.

Status of This Memo

This Internet-Draft is submitted in full conformance with the provisions of BCP 78 and BCP 79.

Internet-Drafts are working documents of the Internet Engineering Task Force (IETF). Note that other groups may also distribute working documents as Internet-Drafts. The list of current Internet-Drafts is at https://datatracker.ietf.org/drafts/current/.

Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced, or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference material or to cite them other than as "work in progress."

This Internet-Draft will expire on 24 April 2025.

Table of Contents

1. Introduction

Quantum communication modules connected via a link, either via fiber or free-space communications, have been used since a while [darpa-qkd] to distribute random numbers as secure keys, but there also other use cases, such as time synchronization.

By today, a number of research and industrial efforts are underway to built complete networks, primary for secure key distribution, i.e., so-called Quantum Key Distribution Networks (QKDN) (see [qkd-overview] as one overview).

Quantum Links (QL) are quite limited in their distance between two adjacent Quantum Communication Modules (QCM), e.g., around 100 km distance or even below. To overcome this limitation, multiple segments of Quantum Links are concatenated. This concatenation typically requires an extra level of functionality, i.e., the use of Key Management Systems (KMS).

This memo briefly explores the space of QKDNs and identifies spots of potentials interest to develop standardized protocols specific for such networks.

2. Simplified Architecture

The ITU defines an extensive QKDN architecture in Y.3802 [itu-y-3802]. However, for our discussion we use a simplified architecture here.

The Figure below shows a simplified architecture for a single QKDN domain.

The Quantum Communication Modules (QCM) are in charge of exchanging random numbers between 2 QCM, or n modules for single-source entangled based systems.

The Key Management Systems (KMS) are in charge of allowing a secure end-to-end relay of a secret across the whole domain. They obtain the encryption keys, or some initial input to the encryption key, from their local KMS.

The Network Controller (NW cntrl) can be used to control and managed the operations of the KMS and also the QCM.

          (d)    +-------------+    (d)
      +----------|  NW cntrl   |----------+
      |          +-------------+          |
      |                 | (d)             |
      v                 v                 v
   +-----+  (a)  +-------------+  (a)  +-----+
   | KMS |<----->|     KMS     |<----->| KMS |
   +-----+       +-------------+       +-----+
      ^             ^       ^             ^
      | (b)         |  (b)  |             | (b)
      v             v       v             v
   +-----+  (c)  +-----+ +-----+  (c)  +-----+
   | QCM |<----->| QCM | | QCM |<----->| QCM |
   +-----+       +-----+ +-----+       +-----+
Figure 1: A simplified single Domain QKDN Architecture

The interfaces between the components are:

3. Conclusion

This document does not yet have a conclusion, at it is a first attempt to gather information about protocols for QDKNS.

4. IANA Considerations

This document has no IANA actions.

5. Security Considerations

This document has no security considerations yet, but since the whole sense of a QDKN is to securely, i.e., secured against eavesdropping, tampering, and replay attacks, forward a key from end-to-end, security is a matter per se. Future revisions of this memo will discuss the security considerations.

6. Informative References

[darpa-qkd]
Elliott, C. and H. Yeh, "DARPA Quantum Network Testbed", , <https://apps.dtic.mil/sti/pdfs/ADA471450.pdf>.
[itu-y-3802]
ITU-T, "Quantum key distribution networks – Functional architecture", , <https://www.itu.int/rec/T-REC-Y.3802-202012-I/en>.
[qkd-overview]
Liu, R., "Towards the industrialisation of quantum key distribution in communication networks: A short survey", , <https://doi.org/10.1049/qtc2.12044>.

Acknowledgements

Malte Bauch, Neil Schark and Fabian Seidl are funded by the German BMBF DemoQuanDT project. Martin Stiemerling is partially funded by the German BMBF DemoQuanDT project.

Authors' Addresses

Martin Stiemerling
Darmstadt University of Applied Sciences
Fabian Seidl
Darmstadt University of Applied Sciences
Malte Bauch
Darmstadt University of Applied Sciences
Neil Schark
Darmstadt University of Applied Sciences
Johanna Henrich
Darmstadt University of Applied Sciences