Open European Quantum Key Distribution Testbed

The economic, political and social well-being of European citizens relies on secure information and communication technologies (ICT). Our current ICT security relies in a large part on algorithmic methods that are threatened by constant progress in computing hardware and software, among which quantum computing must be seriously considered. Its potential realization has triggered the development of alternatives to currently-used public key encryption, in particular quantum key distribution (QKD), where security is built within the physical layer and based on the laws of quantum physics. The promise that QKD holds for the future of ICT-dependent societies has been recognized world-wide, including in China and the USA, but the creation of widely-available QKD-based ICT infrastructure and its broad adoption remain an open challenge. A key asset to bridge this gap between QKD technology providers and end users is the establishment and operation of an experimental facility that serves, and helps developing, the quantum communication ecosystem. This is where the OPENQKD projects comes into play. Its main aim is to raise awareness of the maturity of QKD and its seamless integration into existing security solutions and networks for a wide range of use-cases. This is done by working directly with end-users to test and validate end-to-end security for various businesses and industry sectors based on QKD. In particular, the OPENQKD project set up many testbed sites across Europe (approx. 20 different locations) to bring the technology to as many potential customers as possible. The testbeds replicated real world use cases as closely as possible with deployed optical fiber infrastructure and locations at the end-user premises to house the QKD and other network equipment. In order to demonstrate seamless integration into the security chain, both QKD and classical encryption devices were adapted, according to standardized specifications, to allow a direct hand over of keys. Since the use-case demonstration are core to the project, demonstrations covered a wide range of sectors such as, critical infrastructure protection, data center interconnect, securing of medical data, banking, securing governmental communication and many others.

The second part of the project saw the full implementation of all use-cases and the deployment of QKD hardware at all sites. Overall, about 30 demonstrations were carried out at the different locations in OPENQKD. The 4 larger testbeds demonstrated several use-cases involving secure intra-governmental communication (Vienna), integration of QKD into large telecom networks (Madrid), hybrid PQC and QKD key exchange (Berlin) and a cross-border network with long-distance QKD over 400 km (Poznan). In addition, the open calls were very successful with 17 new demonstrations, also expanding the geographical reach of the project. For use-cases that could not be tested in a deployed network (e.g. satellite QKD), a network simulator was developed. Data from the actual QKD links were also provided to a virtual QKD testbed web interface where users could replicate the use-cases. The project also leveraged the establishment of de-facto interoperability standards, mainly for key transfer between the devices and applications (ETSI 004 and 014). All European and some North American equipment vendors use this interface now and allow a pick and mix approach when selecting devices for installment. The standardisation also allowed to simulate large QKD networks (see fig. 1), where long-distance links can be emulated by key generation devices featuring the same interface as real QKD systems. Furthermore, several new standards on security proofs and security requirements were developed within the ETSI framework. OPENQKD also supported the creation of the very first protection profile for QKD, a vital ingredient for the future certification of QKD devices. The support of OPENQKD for QKD system development also achieved lasting results with several new European start-up companies now offering commercial QKD products. The main outcome however was the raising of awareness for QKD to unprecedented levels. This was mainly due to the large number of use-cases that could be demonstrated. Not only did the project cover a very wide spectrum of industry sectors (ranging from critical infrastructure protection, data center interconnect, securing of medical data, banking, to secure governmental communication), but the demos were carried out at about 20 different sites across Europe. This provided a very large visibility to both industry stakeholders as well as decision makers and transformed QKD into a well-known technology.

As a pilot project for the Pan-European quantum communication infrastructure (EuroQCI), the OPENQKD projects paved the way in advancing Europe’s industrial capabilities. OPENQKD supported the development of several industry standards for interoperability of QKD and network devices as well as supporting the creation of a European QKD eco systems comprising of new start-ups, component suppliers and new and improved product ranges for QKD systems. The project also played a crucial role in establishing a knowledge base for QKD in all European countries in preparation for EuroQCI. Project partners held several workshops on QKD relate themes such as certification, technology and use-cases to all the national EuroQCI stakeholders. The project also reached a large international audience by organizing workshops and holding invited talks at large conferences such as OFC, ECOC and EQTC.