A communication device includes a plurality of key distributing units, a plurality of communicating units, a monitoring unit, and a switching unit. The plurality of key distributing units have a quantum key distribution function for sharing a quantum key with an external distribution device. The plurality of communicating units communicate with an external communication device using the quantum key. The monitoring unit monitors operational status indicating at least one of transmission-reception status of photons in the quantum key distribution function, generation status of generating the quantum key, and obtaining status of obtaining the quantum key. The switching unit switches a control target, which either represents one of the key distributing units or represents one of the communicating units, from a first control target to a second control target other than the first control target according to the operational status.

In one embodiment, a secure computing system comprises a key generation sub-system configured to generate cryptographic keys and corresponding key labels for distribution to computer clusters, each computer cluster including a plurality of respective endpoints, a plurality of quantum key distribution (QKD) devices connected via respective optical fiber connections, and configured to securely distribute the generated cryptographic keys among the computer clusters, and a key orchestration sub-system configured to manage caching of the cryptographic keys in advance of receiving key requests from applications running on ones of the endpoints, and provide respective ones of the cryptographic keys to the applications to enable secure communication among the applications.

An optical device for a quantum random number generator comprising: a source of phase randomised pulses of light, the source of phase randomised pulses of light further comprising a plurality of gain-switched lasers, each gain-switched laser having an output, and each gain-switched laser being configured to emit a stream of pulses such that the phase of each pulse in the stream of pulses is randomised, and an optical pulse combiner, the optical pulse combiner being configured to receive streams of pulses from the output of each gain-switched laser, combine the streams of pulses with one another into a combined stream of pulses and direct the combined stream of pulses into at least one output of the optical pulse combiner, the at least one output of the optical pulse combiner being the output of the source of phase randomised pulses of light; wherein the source of phase randomised pulses of light is configured such that the streams of pulses of light emitted by the plurality of gain-switched lasers are temporally offset relative to one another, a phase measurement element, the phase measurement element being configured to receive the combined stream of pulses from the output of the source of phase randomised pulses of light; and an optical detector, the optical detector being optically coupled to the phase measurement element.

A network system is provided for improving network communication performance between a first client site and a second client site, the network system including: at least one client site network component bonding or aggregating one or more diverse network connections; and at least one network server component, configured to interoperate with the client site network component, the network server component including a server/concentrator that is implemented at an access point to a high performing network, between the client site network component and the network server component data traffic is carried to a network backbone of the high performing network, while maintaining management of data traffic so as to provide a managed network path that incorporates both at least the bonded/aggregated connection and at least one network path carried over the high performing network. The system uses quantum key distribution to encrypt the managed network path.

Aspects of the invention include a computer-implemented method of executing a hybrid quantum safe key exchange system. The computer-implemented method includes initially retrieving an authenticated random value from a trusted source, generating a first Z value using a first elliptic curve (EC) private key and a first certified form of an EC public key with an EC Diffie-Hellman (ECDH) algorithm, deriving a shared key using the authenticated random value and the first Z value with a key derivation function, decrypting the authenticated random value using a quantum safe algorithm (QSA) private key, generating a second Z value using a second EC private key and a second certified form of the EC public key with the ECDH algorithm and deriving the shared key using the authenticated random value and the second Z value with the key derivation function.

The present disclosure describes event detection and management for quantum communications in a communication network. The event detection and management for quantum communications in a communication network may be provided based on event-based interaction between quantum nodes of the communication network and a network controller of the communication network, such as where the quantum nodes detect events associated with quantum communications and report the events associated with quantum communications to the network controller and where the network controller receives the events associated with quantum communications from the quantum nodes and initiates event management operations based on the events associated with quantum communications. The event detection and management for quantum communications in a communication network may be provided for various aspects of quantum communications, such as for quantum channels configured to support quantum information transfers, quantum information transfers via quantum channels, quantum applications, and so forth.

Bitcoins and the underlying blockchain technology are one of the main innovations in building decentralized applications. The effects of quantum computing on this technology are analyzed in general. Provided herein are effective solutions to address security vulnerabilities in a blockchain-based system that can be exploited by a quantum attacker.

A blockchain-based message transmission is provided. The system may include a plurality of silicon-based devices encapsulated in quantum cases. Each quantum case may include a quantum random number generator and a public key. The quantum random number generator may generate quantum-resilient random numbers to be used as private keys. The system may include a private network. The private network may include a subset of system's devices. A first device, included in the private network, may transmit a message to a second device included in the private network. A first quantum case that encapsulates the first device may intercept the message, generate a private key, encrypt the message using the private key, generate a data transaction block that includes message metadata, upload the data transaction block to a system blockchain and transmit the message to the recipient upon receipt of an approval from a majority of devices.

Techniques, methods and system, for synchronization of sparse data signals are disclosed, comprising mixing a serial stream of sparse data signals with a serial stream of synchronization signals, to thereby add redundancy to the serial stream of sparse data signals and enable clock regeneration from a serial stream of mixed signals produced by said mixing, emulating the serial stream of synchronization signals by applying the clock regeneration to the serial stream of mixed signals, and generating a stream of parallel synchronization signals having a frequency of the serial stream of synchronization signals, deserializing the serial stream of mixed signals into a stream of parallel mixed signals having a data rate lower than a data rate of the serial signal streams, and demixing the stream of parallel synchronization signals with the stream of parallel mixed signals and thereby removing the redundancy introduced by the mixing into the sparse data signals and generating a parallel stream of demixed signals substantially synchronized with said synchronization signals.

A computer-implemented method can include: constructing and initializing Pseudo Random Generator Resources using a multiplicity of secret seed values or secret data values known to a first and second communication device; deriving a session key based, at least in part, on the secret seed, secret data values, Multi-Factor Authentication methods, or Pseudo Random Number Generator Resource generated output; receiving from the first communications device, at the second communications device, data encrypted with the session key or Deterministic Chaos obfuscation methods; and decrypting the data at the second communications device using the session key or Deterministic Chaos de-obfuscation methods.