Technology Foundation

Deep Dive: QRNG Technology

Entropy sources, NIST SP 800-90 compliance, hardware integration, and QRNG performance benchmarking.

Why classical PRNGs are insufficient for defence cryptography. Key areas include: Pseudo-random versus true random: deterministic algorithms, seed predictability, and side-channel leakage; Quantum entropy sources: vacuum fluctuation, photon arrival time, amplified spontaneous emission (ASE), and homodyne detection; Certification standards: AIS 31 (BSI), NIST SP 800-90B, and Common Criteria for QRNG evaluation.

From laboratory devices to chip-scale integration. Key areas include: Discrete-variable QRNG: single-photon detection, photon number splitting, and path branching implementations; Continuous-variable QRNG: vacuum state measurement, homodyne detection, and heterodyne approaches; Chip-scale QRNG: CMOS-compatible designs across commercial QRNG products, throughput benchmarks, and integration paths.

Where QRNG adds genuine security value. Key areas include: Key generation for AES-256, ML-KEM, and ML-DSA: entropy requirements and CNSA 2.0 compliance; Nonce generation for TLS 1.3, IPsec IKEv2, and MACsec in classified networks; Hardware security modules (HSMs) with QRNG: integration options across FIPS 140-3-validated HSM platforms.

Evaluating QRNG for your environment. Key areas include: Vendor comparison: throughput, form factor, certification status, and cost per bit; Procurement pathway: NCSC guidance, FIPS 140-3 validation status, and Common Criteria evaluation.

Discuss this topic with senior peers.