Absstract of: US20260142830A1
0000 The arrangements disclosed herein relate to generating, by a first server, a first seed using a Hash-Based Message Authentication Code (HMAC) based at least in part on a Hash Key (HK), providing, by the first server to each of a first device and a second device, the first seed, providing, by a second server to each of the first device or the second device, a second seed. The second seed is based at least in part on a stream of photons. Each of the first device or the second device generates a Derived Key (DK) based at least in part on the first seed and the second seed. Each of the first device or the second device generates a first key based at least in part on the DK and a first random number generated by a Quantum Random Number Generator (QRNG). The first device encrypts first data using the first key to obtain first ciphertext and provides the first ciphertext to the second device. The second device derives the first key and decrypts the first ciphertext using the first key.
Absstract of: KR20260073135A
0001a 본 발명은 양자키 라우팅 방법, 장치 및 컴퓨터 프로그램에 대한 것으로서, 보다 구체적으로 본 발명에서는, 컴퓨팅 장치를 이용하여, 시작 노드, 중간 노드 및 상기 시작 노드와 인접하지 않는 목적 노드를 포함하는 복수의 노드와 상기 노드를 연결하는 복수의 링크를 포함하여 구성되는 양자 암호 통신 네트워크에서 양자키 중계 경로를 라우팅하는 방법으로서, 미리 정해진 하나 이상의 척도를 기초로 아래의 후보 경로 중 하나 이상을 산출하는 단계; (i) 상기 시작 노드로부터 상기 목적 노드 방향으로 상기 노드를 연결하는 하나 이상의 링크가 순차적으로 선택되어 산출되는 정방향 후보 경로, (ii) 상기 목적 노드로부터 상기 시작 노드 방향으로 상기 노드를 연결하는 하나 이상의 링크가 순차적으로 선택되어 산출되는 역방향 후보 경로, (iii) 상기 중간 노드 또는 상기 중간 노드와 연결되는 링크 중 하나로부터, 상기 시작 노드 방향으로 하나 이상의 링크가 순차적으로 선택되고, 또한 상기 목적 노드 방향으로 하나 이상의 링크가 순차적으로 선택되어 산출되는 양방향 후보 경로, 및 상기 산출된 하나 이상의 후보 경로를 이용하여 상기 시작 노드와 상기 목적 노드에 대한 양자키 중계 경로를 도출하는 단계를 포함�
Absstract of: WO2026103126A1
The present application relates to an identity authentication method and system. The method comprises: a claimant determining an asymmetric digital signature algorithm and a post-quantum digital signature algorithm; generating an algorithm identifier corresponding to the asymmetric digital signature algorithm and the post-quantum digital signature algorithm; acquiring a time-varying parameter, and generating signature data on the basis of the time-varying parameter and an identifier of a verifier; using the asymmetric digital signature algorithm to perform signing on the signature data, so as to obtain a first signature; using the post-quantum digital signature algorithm to perform signing on the signature data, so as to obtain a second signature; on the basis of the algorithm identifier, the signature data, the first signature and the second signature, generating an identity authentication string; and sending the identity authentication string to the verifier, so as to instruct the verifier to perform identity authentication on the basis of the authentication string. On the basis of conventional asymmetric cryptographic identity authentication, the method introduces a post-quantum digital signature algorithm capable of resisting quantum computation, thereby enhancing the security of two communicating parties during identity authentication and being able to resist quantum threats to a certain extent.
Absstract of: WO2026106645A1
A method for secure quantum communication includes generating a photon. The method includes modulating at least two quantum state dimensions selected from the group consisting of orbital angular momentum (OAM), polarization, and phase of the photon to form a composite quantum state. The method includes directing the photon to an emission point on a helical structure having a defined spatial coordinate corresponding to classical data. The method includes emitting the photon from the emission point into a quantum channel. The composite quantum state and spatial coordinate together encode secure information.
Absstract of: EP4746337A1
A revealing unit (100) for revealing a blinding attack in a computing system (102), preferably in a Quantum Key Distribution system, is described. The revealing unit (100) comprising a revealing nanowire (104); wherein the revealing unit (100) is configured, in the event of a blinding attack, to change from a secure state to a reveal state by changing an electrical characteristic of the revealing nanowire (100) to reveal the blinding attack.
Absstract of: EP4510498A1
0001 The present invention relates to a QKD communication method between an emitter and a receiver comprising the steps of distilling a secret key through a Privacy Amplification characterized in that the PA size is variable so as to ramp up from a first lower value to an end greater value.
Absstract of: CN122053041A
本发明属于但不限于光学密钥分发技术领域,公开了一种基于信道互易性和相干光通信的通密一体的密钥分发系统及方法,利用扰偏器使时变的解偏振算法的抽头系数快速变化,进而提升密钥生成速率,并与信道互易特性相结合并运用于安全密钥分发中。本发明密钥分发和安全相干光通信可同时进行。在信号接收模块数字信号处理时:一方面进行密钥生成,另一方面进行安全光通信。通过信道的动态互易性来保证合法双方获取一致密钥,通过信道互易性和时变的正交偏振态的互相扰动保障安全性。系统无需添加额外的器件,与当前的相干通信系统高度兼容,从而可以降低密钥分发模块部署的成本。
Absstract of: EP4745755A1
Systems and methods are provided for implementing and utilizing embedded quantum random number generator (QRNG) based devices. An optical device configured for use in quantum random number generation may have an integrated structure that includes, at least, an optical source configured to emit a light beam, a photodetector configured to detect light based on detection criteria, and a polarizer disposed between the optical source and the photodetector. The optical source, the photodetector, and the polarizer are directly integrated or embedded into the integrated structure. The polarizer is configured to process light based on polarization criteria that include passing or discarding light having a particular polarization. The optical device is configured for use in facilitating or enabling quantum random number generation based on detection of the light beam by the photodetector based on the detection criteria.
Absstract of: US20260134246A1
0000 Systems, apparatuses, methods, and computer program products are disclosed for secure utilization of quick response (QR) codes. An example method includes obtaining a key known to an initiating device and a participating device, and receiving, by the communications hardware of the participating device, an indication of a secure character string extracted from a QR code. The example method further includes verifying, by security circuitry of the participating device and using the key, authenticity of the QR code, and performing by the participating device, an action set.
Absstract of: US20260135915A1
0000 The arrangements disclosed herein relate to systems, apparatus, methods, and non-transitory computer readable media for a network of plurality of roving cryptography devices. Each of the plurality of roving cryptography devices includes a locomotion system configured to move each of the plurality of roving cryptography devices to a respective one of a plurality of locations of the plurality of roving cryptography devices, a network interface circuit configured to provide wireless communication services to a user device of a plurality of user devices through a network of the plurality of roving cryptography devices, and a cryptography service system configured to provide cryptographic material to the user device. The plurality of roving cryptography devices at the plurality of locations form the network for providing the wireless communication services and the cryptographic materials to the plurality of user devices.
Absstract of: US20260134372A1
0000 A system for predicting and mitigating risk events is disclosed. The system includes data acquisition devices that collect first and second data sets associated with a geographical location and transmit them to a risk event mitigation server device. The risk event mitigation server device executes a dynamic threat mitigation module to generate weighted risk indicators, analyze their convergence and divergence, and compute a first risk score. A continuous automated red teaming module simulates risk events using artificial intelligence, while a machine learning adaptation module refines the score using real and simulated data to produce a second risk score. An orchestrator integrates outputs to generate mitigation recommendations, secured by a post-quantum encryption framework. A user device displays the updated risk score and recommendations and provides feedback. A recursive feedback loop continuously adjusts indicator weights based on user actions and new data, enabling adaptive, real-time risk assessment and mitigation.
Absstract of: US20260135840A1
0000 The present disclosure provides an autonomous quantum-secure mesh networking system comprising a server including a memory and a processor operatively coupled to the memory. The processor receives communication data from at least one computing device for secure transmission across a communication network, generates a symmetric quantum encryption key using a quantum key distribution process, derives a quantum identity-bound key material by combining the symmetric quantum encryption key with a quantum identity root for authenticating communication endpoints, evaluates a trust score of each available transmission path using a trust model to select a secure transmission path, encrypts communication data and associated session metadata using the symmetric quantum encryption key, records an identifier of each encrypted packet and at least one trust-related parameter of the secure transmission path on a blockchain-based distributed ledger and transmits the encrypted communication data across the selected secure transmission path.
Absstract of: US20260135617A1
0000 An optical path monitoring process, including the following steps executed by a first node of an optical network: (i) generating photons that are at least partially indistinguishable in frequency, polarization, spatial mode and temporal profile; (ii) transmitting a first photon of the generated photons to a remote node of the optical network over an optical path; (iii) receiving the first photon from the remote node over an optical path; and (iv) interfering the received first photon with a second photon of the generated photons to generate a quantum interference visibility output; and (v) assessing physical integrity of the optical path(s) on the basis of the quantum interference visibility output.
Absstract of: US20260135839A1
0000 The arrangements disclosed herein relate to receiving, by a key management node, a first encrypted message element which is encrypted using a first symmetric key established between the key management node and a first node, decrypting, by the key management node, the first encrypted message element using the first symmetric key to obtain a first message element of a message, encrypting, by the key management node, the first message element using a second symmetric key established between the key management node and a second node to obtain a second encrypted message element, and sending, by the key management node, the second encrypted message element.
Absstract of: US20260133467A1
Photonic integrated circuit(s) (PIC(s)), quantum transmitter(s) and quantum network(s) are provided. Polarization entangled photons, frequency entangled photons and/or polarization-frequency hyperentangled photons may be distributed from a quantum transmitter having one or more PICs. The PIC(s) may be capable of producing one, two or four polarization-entangled Bell State(s).
Absstract of: US20260019233A1
0000 Disclosed herein is an apparatus and method for generating a quantum circuit for an ARIA substitution layer. The apparatus may configure a multiplicative inverse operation quantum circuit by arranging a preconfigured multiplicative inverse operation quantum circuit, configure four types of S-box operation quantum circuits including S<1 >and S<2 >operation quantum circuits, which perform two substitution operations used in ARIA by arranging a quantum circuit for performing affine transform and a quantum circuit for addition of a constant value in the multiplicative inverse operation quantum circuit, and S<1>−1 and S<2>−1 operation quantum circuits, which perform inverse substitution operations, and construct the ARIA algorithm as a quantum circuit by rearranging the four types of S-box operation quantum circuits for two substitution layers.
Absstract of: EP4742586A1
0001 Computer-implemented methods and systems are provided for securing digital signatures on a computational network to protect against unauthorised access, for example, by a quantum computer or similar system.
Absstract of: EP4741780A1
0001 Die Erfindung betrifft eine Photonendetektionsvorrichtung 1 zur Detektion einzelner Photonen und Ausgabe eines Detektionssignals D, die Photonendetektionsvorrichtung 1 umfassend ein Gehäuse 2, 2' mit einem Gehäuseinnenraum 20, 20', in dem eine Einzelphotonendiode 3, 3', 3" und ein aktives Kühlelement 4, 4' angeordnet sind, wobei ein Kühlkörper 21, 21' zum Ableiten von Abwärme des Kühlelementes 4, 4'vorgesehen ist, wobei die Einzelphotonendiode 3, 3', 3" an einer ersten Seite des aktiven Kühlelements (40) angeordnet und der Kühlkörper 21, 21' an einer zweiten Seite des aktiven Kühlelements 41 angeordnet ist, und das Gehäuse 2, 2' ein optisches Eintrittselement 5, 5',aufweist, das zum Durchlassen eines ausgehend von der Umgebung der Photonendetektionsvorrichtung 1 auf das Eintrittselement 5, 5' auftreffenden Photons in den Gehäuseinnenraum 20, 20' ausgebildet ist, wobei die Photonendetektionsvorrichtung 1 eine an die Einzelphotonendiode 3, 3', 3" angeschlossene Vorverarbeitungseinheit 6, 6', 6" zur Umwandlung eines von der Einzelphotonendiode 3, 3', 3" ausgegebenen analogen Signals in ein Zwischensignal und eine an die Vorverarbeitungseinheit 6 angeschlossene Auswerteeinheit 7 zur Erzeugung des Detektionssignals D aus dem Zwischensignal der Vorverarbeitungseinheit 6 umfasst. Die Vorverarbeitungseinheit 6 und die Auswerteeinheit 7 sind in dem Gehäuseinnenraum 20, 20' der Photonendetektionsvorrichtung (1) angeordnet.
Absstract of: CN122027152A
0001 本申请公开了一种多机器人通信系统、方法、存储介质及计算机程序产品,包括:针对集群内部通信,智能执行模块群中的第一目标智能执行模块利用各自的量子密钥分发终端直接执行量子密钥分发协议,生成仅由第一目标智能执行模块共享的第一安全密钥;第一目标智能执行模块为已入网的智能执行模块中需要进行通信的智能执行模块,第一安全密钥用于对第一目标智能执行模块之间传输的任务数据进行加密处理。由此,针对集群内部通信,规定第一目标智能执行模块直接执行协议生成共享密钥,摒弃了云端中转环节,从而解决了因过度依赖中心化调度导致的局部协同延迟高、实时性差的问题。
Absstract of: CN122027144A
本发明公开了一种天基计算环境下超高速存储的后量子密码安全访问方法,涉及数据存储安全技术领域,包括:初始化后量子密码参数并生成密钥体系;构建分层访问令牌树,将单次后量子签名验证的计算开销分摊至大量轻量级令牌验证操作;构建承诺Merkle树,通过联合锚定值将身份认证与数据完整性验证进行密码学绑定;执行基于令牌的快速访问认证和非交互式流式完整性验证,在单次验证流程中同时完成身份认证与数据完整性的双重校验;通过增量更新承诺树和令牌前向演化保证动态更新的高效性与前向安全性。本发明在保证后量子密码安全强度的前提下,显著降低了天基存储访问的密码计算开销和协议交互延迟,提升了存储系统的吞吐量和响应速度。
Absstract of: CN122001570A
本发明公开了一种基于量子同态加密的可验证多方几何面积计算方法,涉及多方协作计算技术领域,本发明通过计算中心、密钥中心、并基于量子同态加密计算获得多边形面积;本发明能够在客户各自自选位置全程加密的状态下,安全、可靠地完成多边形面积的协同计算,同时兼顾量子计算环境下的抗攻击能力与数据隐私保护强度。
Absstract of: CN122001578A
0001 本发明公开了一种基于量子随机数的动态公钥与同步动态私钥库的量子密码系统、终端及方法,包括:至少一个终端和至少一个服务器;其中,每个终端关联一个终端专属熵库分区,该分区的初始副本分别存储于终端本地及所述服务器中;所述终端包括量子随机数发生器,用于在一次测量事件中输出量子随机数,并从该量子随机数中派生至少包括定位种子和演进操作码的同源参数集,所述同源是指所述参数集中的各参数由同一个量子随机事件产生的熵确定;该系统实现通信双方基于共享熵库独立计算会话密钥,会话密钥本身永不传输,从而达到一次一密的抗量子计算安全。
Absstract of: US20260128869A1
Aspects of the subject disclosure may include, for example, receiving a first request from a first communication orchestrator of a first protected environment to provide a secure and authenticated connection between a first resource of the first protected environment and a second resource of a second protected environment, accessing first encryption information from the first communication orchestrator and second encryption information from a second communication orchestrator of the second protected environment, verifying a capability for secure quantum communications of an encryption technique of the first communication orchestrator and the second communication orchestrator according to the first encryption information and the second encryption information, and enabling the first communication orchestrator and the second communication orchestrator to initiate a secure and authenticated communication channel via quantum communications. Other embodiments are disclosed.
Absstract of: US20260128871A1
0000 A method for secure storage of cybersecurity data in a blockchain includes: identifying, by a processor of a processing server, a device profile for a computing device; encrypting, by the processor of the processing server, the device profile into an encrypted device profile using a public key of a first cryptographic key pair; encrypting, by the processor of the processing server, the encrypted device profile into a converted device profile via quantum cryptography using a first configuration key; and transmitting, by a transmitter of the processing server, the converted device profile to a blockchain node in a blockchain network.
Nº publicación: US20260128863A1 07/05/2026
Applicant:
CYBERARK SOFTWARE LTD [IL]
CyberArk Software Ltd.
Absstract of: US20260128863A1
Described herein are methods, systems, and computer-readable storage media for using a network identity. Techniques may include obtaining and encrypting a first data element using an encryption key and storing the encrypted first data element mapped to a network identity. Techniques may further include receiving a request from the network identity to perform an action on a resource and authenticating the network identity using an existing protocol, decrypting the first data element using a second data element calculated based on standard fields of the existing protocol, and enabling the action on the resource using the first data element.