StandICT.eu
User area
EU-OS Logo powered by StandICT.eu
  • EUOS
  • Discussion groups
  • Standards repository
  • Landscape and gap analysis

follow us

Security Certification of QKD

Breadcrumb

  • Discussion Groups
  • Quantum Computing
  • 297
  • Security Certification Of QKD
Up
0
Down
  • Posted By Thomas Länger
  • 1 year 5 months ago
  • 2 Replies

Security Certification of QKD .

The standard ISO/EN 15408 "Common Criteria" enables end users to express their specific security needs for a type of information technology systems in the form of a Protection Profile (PP). Producers can then have their products evaluated against such a PP, providing assurance to end users that these products can be securely and dependably used in the intended environment.

Quantum Communication, in the form of Quantum Key Distribution QKD, with its high security claims, is intended for areas with highest security requirements. Therefore, a rigorous security certification is necessary for end users to be reasonably assured that the installed systems will operate as securely as advertised. Currently (summer 2021), two pushes to standardise the ISO/EN 15408 "Common Criteria" security certification of QKD systems are underway, in the ETSI ISG-QKD and in the ISO SC27 WG3—both intending to publish standards soon.

The ISO group develops two standards: "ISO/IEC 23837-1 Information security—Security requirements, test and evaluation methods for quantum key distribution—Part 1: Requirements" (containing predefined security functional requirements for use in QKD PPs) and "ISO/IEC 23837-2 (…) Part 2: Test and evaluation methods". Both are currently in advanced committee draft (CD) stage and publication is planned for spring 2022.

The ETSI ISG-QKD works on a standard DGS/QKD-016 "Common Criteria Protection Profile for QKD", providing a standardised PP for a "prepare and measure" QKD system. The standard draft is edited by Deutsche Telekom Security GmbH, Evaluation Facility, with German BSI as sponsor, and is also in a quite advanced state, with publication probably still later this year.

Currently, these two approaches are not compatible, which can be explained through the fact that both activities were started independently, and only recently. For example, while the ISO puts its requirements into a new FTP_QKD family (of the FTP "Trusted Path" class), the ETSI extends the FCS "Cryptographic Support" class with a new "FCS_QKD" family. Probably both solutions are viable, but the ETSI and the ISO groups are connected through mutual liaisons, exchanging comments in both directions, in order to address these differences. It will be seen if compatibility will still be achievable for the first editions of the standards—or if it will remain for the future to, e.g., develop an ISO conformant PP for QKD. But a non ISO compliant ETSI Protection Profile for QKD would nevertheless be valuable, as this would be the first PP for QKD prepared by an actual evaluation laboratory, under the sponsorship of an actual evaluation authority—being the result of more than a decade of preparations and basic work in QKD standardisation in the ETSI group.

Add a comment
  • /sites/default/files/styles/350x350/public/pictures/2021-05/IMG_8487Ines.jpg?itok=S1kkdv38
    "/>
Answered By Maria Ines Robles
  • 1 year 4 months ago
  • Up
    0
    Down

    Thank you for this post. Maybe it would be nice to bring this topic into the IETF to the Quantum Internet Research Group (qirg) https://datatracker.ietf.org/group/qirg/about/. The working group is relatively new (charter approved 2020) with two documents: Architectural Principles for a Quantum Internet and Application Scenarios for the Quantum Internet. The latter mentions briefly QKD.   

    • Log in or register to post comments
    • /sites/default/files/styles/350x350/public/pictures/2021-11/NLG_2019_1.JPG?itok=rNlm3Ikz
      "/>
    Answered By Nicolas Le Gallou
  • 1 year 2 months ago
  • Up
    0
    Down

    Hi Thomas. Interesting post directly related to my project. We should exchange !

    • Log in or register to post comments

    Please login to post comments

    Latest Discussions

    Posted in

    Biaxin: Without Prescription For Sale

    • 14 hours ago
    Posted in

    Biaxin: How To Buy

    • 14 hours ago
    Posted in

    Diflucan: Order Online 078Ir

    • 18 hours ago

    Recent comments

    Commented in Overview of CE Standardization…

    ITU-T is quite active in circular economy about ICT sector

    • 1 month 1 week ago

    Overview of CE Standardization…

    Commented in Overview of CE Standardization…

    Additional resources:

    AFNOR…

    • 6 months 2 weeks ago

    Overview of CE Standardization…

    Commented in Top 5 Circular Economy Journal…

    Another relevant journal is …

    • 6 months 2 weeks ago

    Top 5 Circular Economy Journal…

    Commented in Knowledge Engineering Framewor…

    Robotics for eHEALTH

    • 6 months 3 weeks ago

    Knowledge Engineering Framewor…

    Commented in Overview of CE Standardization…

    I'd include here the long…

    • 7 months ago

    Overview of CE Standardization…

    Commented in IEEE Standard for Autonomous R…

    The standard was published…

    • 8 months ago

    IEEE Standard for Autonomous R…

    Commented in Considerations regarding locat…

    Presentation of the concept

    • 1 year 1 month ago

    Considerations regarding locat…

    Commented in Open Ethics Transparency Proto…

    Hi Andrea, thank you, this…

    • 1 year 1 month ago

    Open Ethics Transparency Proto…

    Commented in Open Ethics Transparency Proto…

    Nikita,

    quite interesting…

    • 1 year 1 month ago

    Open Ethics Transparency Proto…

    Commented in The EU Observatory For ICT Sta…

    I am trying to do the same…

    • 1 year 1 month ago

    The EU Observatory For ICT Sta…

    Most recent tags

    AI
    Big Data
    Blockchain

    In collaboration with

    Logo
    Logo
    Logo
    Logo
    Logo
    Logo
    • About
      • StandICT.eu 2026
      • StandICT.eu 2023
      • Partners
      • StandICT.eu 2018-2020
      • Newsletters
    • Open Calls
      • 9th Open Call
      • Closed Calls
        • 1st Open Call
        • 2nd Open Call
        • 3rd Open Call
        • 4th Open Call
        • 5th Open Call
        • 6th Open Call
        • 7th Open Call
        • 8th Open Call
      • FAQs
    • Results
      • Deliverables
      • Synergies
      • Fellows Reports
      • Landscape Analysis Reports
      • Publications
    • EUOS
      • ICT Standards Observatory
      • ICT Standards Academy
    • Experts
      • EAG
      • EPE
    • Success stories
    • News & Events
      • News
      • Events
    Menu

    eu-flag

    The StandICT.eu 2023 project has received funding from the European Union’s Horizon 2020 - Research and Innovation programme - under grant agreement no. 951972. The content of this website does not represent the opinion of the European Union, and the European Union is not responsible for any use that might be made of such content.

    The StandICT.eu 2026 project is funded by the European Union under grant agreement no. 101091933.

    eu-flag

    The StandICT.eu 2026 project is funded by the European Union under grant agreement no. 101091933. The content of this website does not represent the opinion of the European Union, and the European Union is not responsible for any use that might be made of such content.

    © Copyright 2021-2023 - StandICT.eu

    Footer menu

    • Contact
    • Privacy policy
    • Terms of use
    • About
      • StandICT.eu 2026
      • StandICT.eu 2023
      • Partners
      • StandICT.eu 2018-2020
      • Newsletters
    • Open Calls
      • 9th Open Call
      • Closed Calls
        • 1st Open Call
        • 2nd Open Call
        • 3rd Open Call
        • 4th Open Call
        • 5th Open Call
        • 6th Open Call
        • 7th Open Call
        • 8th Open Call
      • FAQs
    • Results
      • Deliverables
      • Synergies
      • Fellows Reports
      • Landscape Analysis Reports
      • Publications
    • EUOS
      • ICT Standards Observatory
      • ICT Standards Academy
    • Experts
      • EAG
      • EPE
    • Success stories
    • News & Events
      • News
      • Events