Provide Quantum resistant communications without changing existing stacks.
This is part of the STRONGBOX component, into the WP4, in the ELECTRON european project.
Selected algorithms:
- for the Post-Quantum asymmetric key exchange mechanism: Crystals-Kyber 1024
- for the symmetric encryption with authentication enabled: ChaCha20-Poly1305
See the demo folder containing code and documentation.
A Docker container is also available for quick tests.
Starting as command line applications. The applications just exchange a shared key.
sequenceDiagram
Note left of PQ client: Public PQ key
Note right of PQ server: Private PQ key
PQ client->>PQ server: Connect 8080
PQ client-->>PQ server: [OPTIONAL] Send temporary verification
Note left of PQ client: Shared key
PQ client->>PQ client: Use public key
PQ client->>PQ server: Send encapsulated key
PQ server->>PQ server: Use private key
PQ server->>PQ client: OK
Note right of PQ server: Shared key
Two systems exchanging data at port 8081. When a quantum-safe key is required, the systems call PQClient and PQServer to exchange a safe key over the port 8080. Then, these systems can encrypt and transmit data by using that shared key. Note also that Client and PQ client interaction (same with server) is always done locally.
sequenceDiagram
Participant Client A
Participant PQ client
Participant PQ server
Participant Server B
Client A-> Server B: Normal connection (port 443 or 8081)
Client A->>PQ client: Request shared key
PQ client->PQ server: Exchange shared key (port 8080)
Note over PQ client, PQ server: The quantum-safe encapsulation is transmitted, not the raw shared key.
PQ client->>Client A: Return shared key
PQ server->>Server B: Return shared key
loop
Client A->>Client A: Encrypt data with shared key
Client A->> Server B: Encrypted data
Server B->>Server B: Decrypt data with shared key
end
Developers: Download source code, then execute make in the src folder.
Users: use a pre-compiled binary from /dist folder.
Note: At this stage of the project, the public key is delivered only to allowed clients. See reasoning and alternatives here.
To display help: ./electrocomms
To start the server: ./electrocomms 8080 (In the first run, a new pair of keys is generated automatically)
To start the client: ./electrocomms 127.0.0.1 8080
There are many approaches to Post-Quantum (PQ) communications. Each one of them has advantages but also important drawbacks.
| Approach | Advantages | Disadvantages |
|---|---|---|
| OpenSSL fork with PQ | Versatility, PQ certificates instead of keys | No ROOT CA to sign certificate, slower than other options |
| Nginx fork with PQ | Server ready to use | Client must be also a PQ (new client or change the client stack) |
| Pre shared Key (PSK) into TLS | Use only the external PQ for shared key. TLS1.3 already allow this | Existing programs may not have PSK as public method in code, so external implementation is still required |
| Using Qdefender lib | Faster to develop | Qdefender license is Tecnalia proprietary for now |
| Plain C implementation | Better suited for servers and embedded, open-source is possible | Only for simple scenarios, ad-hoc code |
For the Electron project, since many elements are not still defined, we will opt for the plain C implementation focused on server to server communication. Reasons:
- if the C program is kept simple, it could be also used for low resources systems, with some effort. Other options will never be capable in embedded due to RAM, cycles or size of binary, compilation issues etc.
- external dependencies (algorithms) can be linked as open-source. The project license can be set to Free and Open-Source Project (FOSS). This is a positive point for the European commission funding the Electron project.
For the asymmetric part (the key exchange mechanism or KEM), CRYSTALS-KYBER will be selected. Reasons:
- Selected for standardization in the third round of NIST.
- Lattice family performs really well in most architectures.
For the symmetric part [ONLY in the integrated demo by using Node] (the encryption of data to be transmitted securely) ChaCha20-Poly1305 is selected. Reasons:
- Does not require hardware acceleration to be fast.
- Since most of traditional HTTPs servers use AES-GCM, using a different algorithm for the app-level encryption increases the security.
All licenses are permissive open-source, see LICENSE file on each subfolder:
- current project: MIT
- Kyber implementation: Creative Commons Zero CC0
ELECTRON "rEsilient and seLf-healed EleCTRical pOwer Nanogrid"
Call: H2020-SU-DS-2020, Topic: U-DS04-2018-2020, Start Date: 01/10/2021, Duration: 36 months.
This project has received funding from the European Union’s Horizon 2020 research and innovation programme under Grant Agreement No. 101021936.