Tackling Denial of Service Attacks on Key Management in Software-Defined Quantum Key Distribution Networks
Miralem Mehić, Stefan Raß, Emir Dervisevic, Miroslav Vozn̆ák
Abstract
A QKD network provides an additional security layer for IT-secure cryptographic key distribution that is added to existing conventional networks. Thus, QKD network components must be resilient to security challenges from conventional network environments. This paper provided solutions for realizing a Key Management System to avoid DoS attacks, and our solution allows applications to function securely in environments with a reduced amount of keys. In addition, we have provided approaches for allocating and managing QKD resources to avoid malicious key reservations. Simulation experiments verified the proposed solutions.
Topics & Concepts
Computer scienceQuantum key distributionKey managementKey (lock)Computer securityDenial-of-service attackKey distributionComputer networkCryptographyNetwork securitySecurity associationPublic-key cryptographyEncryptionCloud computing securityQuantumSecurity information and event managementThe InternetCloud computingPhysicsOperating systemQuantum mechanicsWorld Wide WebQuantum Information and CryptographyQuantum Computing Algorithms and ArchitectureQuantum Mechanics and Applications