In the hands of attackers, quantum computers will be able to break classical encryption methods and so, in a bid to fend off such attacks, four partners have launched the Quant-ID project.
The project, ‘Secure Quantum Communication for Critical Identity Access Management Infrastructures (Quant-ID)’, brings together Quant-X Security & Coding, the Fraunhofer Institute for Photonic Microsystems IPMS, MTG AG and the University of Regensburg to jointly research reliable digital identities.
The use of current network protocols is intended to facilitate the transition from classical encryption algorithms to quantum-safe methods. Deviating from the original physical term, quantum security here refers to protection against attacks by quantum computers.
"Our goal is to develop quantum-safe authorisation of users in an IAM (Identity Access Management) architecture with the help of quantum random numbers and post-quantum cryptography," explained Dr. Alexander Noack, group leader at the Fraunhofer Institute for Photonic Microsystems IPMS.
Post-quantum cryptography (PQC) refers to cryptographic algorithms that are used on classical hardware but promise security against attacks with quantum computers. In the project, the true random numbers required for these methods will be generated by a quantum random number generator (QRNG) to increase security.
"In addition, we also want to secure network communication, signatures and database encryption using post-quantum cryptography," said Dr. Alexander Noack. Another goal of the joint project is to develop a quantum-safe "single sign-on" approach that enables access to various services with a single central login.
At the end of the project, the digital identities and quantum-safe authorisation will be tested in a demonstrator in a realistic application using existing network protocols. In the process, the capabilities of the developed system will be compared with classical methods. The results of the subprojects will also be applicable on a modular basis. This offers network administrators and system managers the option of integrating either the entire system or only partial aspects.
By developing the concept in Germany, sovereignty regarding the security of national information technology systems will be strengthened and, as a result there will be particularly high market potential for the project solution in highly sensitive areas and critical infrastructures such as in the area of banks, insurance companies, companies in the healthcare sector as well as public authorities and state institutions.
The consortium is looking to build up an interdisciplinary project team, to establish partnerships in Germany for overall solutions and to make safeguarding technologies against attacks by quantum computers accessible to everyone.
"With this project, we want to create the basis for interdisciplinary collaborations for the efficient realisation of quantum security in Germany" said the Fraunhofer IPMS group leader. The resulting quantum-safe version of OpenID Connect will be made available to the public for low cost as an open-source library.
Quant-ID will create the basis for highly secure protection in critical infrastructures in an end-to-end solution in Germany.
The use case "Quantum-Secure eID" will increase the level of security against cyber-attacks for all resident companies and government institutions, according to the consortium.
The international positioning as a German consortium in a newly to be created public OpenID working group with the goal of defining "OpenID quantum" will also help to guarantee the parallel connection to international standardisation projects.
Further information can be found on the project website. Use the link below.