High speed link encryption State of the art. ID Quantique SA Kelly Richdale Léonard Widmer

Transcription

1 High speed link encryption State of the art ID Quantique SA Kelly Richdale Léonard Widmer

2 Agenda Company Solutions Risks Encryption Today (State of the Art) Quantum Cryptography, QKD IDQ products 2

3 COMPANY

4 ID Quantique Founded in 2001 Based in Geneva Switzerland Leading innovation in quantum & IT technologies 3 business units linked by a common technology & services platform Encryption Business Unit Technology Product lines - High-Speed conventional Encryption - Quantum Cryptography RNG Business Unit Instrumentation Business Unit - Single-photon detectors Services (training, installation, maintenance) 4

5 SOLUTIONS

6 Secure LAN Extension (Corporate Campus) Technical Requirements Redundant links High bandwidth (1G &10G) Transparent solution o 100% of bandwidth No packet loss Support for Ethernet, Ultra-low latency o <10 microseconds Real-time management & monitoring for network & security Separation of Duties IDQ Solutions Centauris L2 encryptors Vectis multi-link encryptors Cerberis QKD (optional) Criteria 6

7 Managed Services (Multi-tenancy) Technical Requirements Support for multiple customers by single Managed Services provider (MSP) o Provides benefits of managed service without giving up control of security Multi-tenancy functions for per-customer control o Customer can control policies and keys but outsource management and HW support o Secure access to management GUI for each customer s encryptor set only o Easy Policy and Key Management Profitable service for MSP o Easy installation and management o Does not impact SLA o Single solution can support Metro-E, IP, MPLS Compatible with Other Managed Services o Compatible with Voice and Video Compatible with standard infrastructure & security monitoring tools IDQ Solutions Arcis encryptors 7

8 RISKS 8

9 Risks (1) Optical Fiber Networks Vulnerabilities Telecom Station Man Hole Security Level Minimum acceptible security level Splice Box: typically located, every few hundred meters to Kilometer, in a man hole or a telecom station. In a splice box, the bare fiber is readily accesible. Site A Optical Fiber Network Site B 9

10 Risk (2) / Laying Optical Fiber in Geneva The telecom outsources the laying of new optical fibers for a bank to a maintenance team. The naked optical fiber is accessible..and the layout of the fiber network & the name of the bank is clearly visible 10

11 Risks (3) / How to find an optical fiber Video: 2 30 How to find an Optical Fiber 11

12 ENCRYPTION TODAY 12

13 Encryption Today (1) / Symmetric-key cryptography Symmetric-key cryptography (or secret key cryptography) It refers to an encryption method in which both the sender and receiver share the same key Today s state-of-the-art: AES encryption algorithm Key length of 256 bits Message Encrypted Message Message Problem: How to exchange the key? Key Key AES officially replaced DES in DES was submitted by IBM in the 1970s but modified by the NSA and today is no longer considered secure 13

14 Encryption Today (2) / Asymmetric-key cryptography Asymmetric-key cryptography (or public key cryptography) In public-key cryptosystems, the public key may be freely distributed, while its paired private key must remain secret. The public key is typically used for encryption, while the private key is used for decryption. Encrypted Message Message Message Public and private key are mathematically related For example RSA is related to the integer factorization problem: Key Key x =? A x B = Public Key Cryptography Decryption key (private) Encryption key (public) 14

15 Encryption Today (3) / Implementation Asymmetric-key cryptography is very slow (1000 x slower than AES) Therefore it is not use to encrypt data but to encrypt the symmetric master Key Used to exchange Master Key Used to Exchange Session Key Asymmetric-key cryptography Symmetric Master Key (one for each connection and direction) Symmetric Session Key (one for each connection and direction)

16 QUANTUM CRYPTOGRAPHY QKD 16

17 QKD (1) / NSA and encryption The NSA is Building the Country s Biggest Spy Center in Utah. James Bamford, The heavily fortified $2 billion center should be up and running in September 2013 and supposedly able to crack one AES key in a Week!? Can the NSA Break AES? This was the question posed to renowned security guru Bruce Schneier My guess is that they can't. That is, they don't have a cryptanalytic attack against the AES algorithm that allows them to recover a key from known or chosen ciphertext with a reasonable time and memory complexity. security guru Bruce Schneier AES is still very safe 17

18 QKD (2) / NSA and encryption? Can the NSA Break RSA (Asymmetric cryptography)? But Schneier does leave open the idea that the NSA has built dedicated hardware capable of factoring 1024-bit RSA keys. There's quite a lot of RSA-1024 out there, so that would be a fruitful project. So, maybe. Pascal Junod, Software Security, master level, HES-SO also allows that it could be plausible that RSA-1024 is being systematically analysed by the NSA, => RSA is potentially vulnerable for long-term security 18

19 QKD (3) / The Weakest Link of Current Encryption Message Encrypted Message Message Key Key Public Key Cryptography Theoretical Progress Public Key Cryptography based on unproven mathematical assumptions & vulnerable to theoretical advances Decryption key (private) Encryption key (public) Vulnerable to Increase in Computing Power Public key cryptography can be cracked if sufficient computing power available. Key was cracked in only 3 months in 1994 Quantum Computing A quantum computer could break public key cryptography 19

20 QKD (4) / Quantum Key Distribution Classical communications Quantum communications "0" "1" "0" "1" Fragile! Message Encrypted Message Message Key Key Future-proof security guaranteed by the laws of quantum physics 20

21 PRODUCTS 21

22 IDQ Products (1) Arcis Family Multi-layer encryption (L3 & L4) Encryption with AES with 256 bit keys Adjustable bandwidth encryption Automated group key management Centauris Family Layer 2 encryption ETH, FC, SDH or ATM up to 10Gbps 100% of bandwidth available Low latency 10 s Cerberis: Option or up-grade Quantum Key Distribution for Arcis or Centauris 22

23 Thank you for your attention Léonard Widme ID Quantique SA Ch. Marbrerie 3 CH 1227 Carouge Phone: +41 (0)