Open-Source Post-Quantum Encryptor: Design, Implementation and Deployment
Loading...
Date
2024-07-09
Authors
Tůma, Petr
Hajný, Jan
Muzikant, Petr
Havlín, Jan
Malina, Lukáš
Dobiáš, Patrik
Willemson, Jan
0000-0003-2831-1073Advisor
Referee
Mark
Journal Title
Journal ISSN
Volume Title
Publisher
SciTePress
Altmetrics
Abstract
This article describes an open-source quantum-resistant network traffic encryptor for the Linux platform. Our encryptor uses a combination of quantum and post-quantum key establishment methods to achieve quantum resistance combined with a fast encryption speed of AES to make quantum-resistant encryption readily available to the public. The packet-by-packet encryption architecture ensures that every bit of information is properly authenticated and encrypted. The combination of multiple key sources further increases the encryptor’s security – be it elliptic curve-based (Elliptic Curve Diffie Hellman, ECDH), quantum (Quantum Key Distribution, QKD) or post-quantum (CRYSTALS-Kyber). Without knowing all the keys obtained from different types of key sources, the final hybrid encryption key can only be obtained by brute-force means. Our contribution is very practical as the encryptor has reasonable performance, despite not being part of the Linux kernel.
Description
Citation
Proceedings of the 21st International Conference on Security and Cryptography (SECRYPT 2024). 2024, p. 826-831.
https://www.scitepress.org/PublicationsDetail.aspx?ID=8jUQgq8nzaI%3d&t=1
https://www.scitepress.org/PublicationsDetail.aspx?ID=8jUQgq8nzaI%3d&t=1
Document type
Peer-reviewed
Document version
Published version
Date of access to the full text
Language of document
en
Study field
Comittee
Date of acceptance
Defence
Result of defence
Document licence
Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International
http://creativecommons.org/licenses/by-nc-nd/4.0/
http://creativecommons.org/licenses/by-nc-nd/4.0/