• “The time needed to factor an RSA integer is the same order as the time needed to use that same integer as modulus for a single RSA encryption.   In other words, it takes no more time to break RSA on a quantum computer (up to a multiplicative constant) than to use it legitimately on a classical computer.”

    Professor Gilles Brassard,  "Quantum Information Processing: The Good, the Bad and the Ugly", 1997

  • “Briefly and simply, assurance work makes a user or a creditor more confident that the system works as intended without flaws, without surprises, even in the presence of malice.” … “The major shortfall is absence of assurance or safety mechanisms in software.  If my car crashed as often as my computer does, I’d be dead by now.”

    Brian Snow, Former Technical Director of the US National Security Agency (NSA), "We need Assurance", AusCERT 2008

  • "My colleagues at MIT and I have been building simple quantum computers and executing quantum algorithms since 1996, as have other scientists around the world. Quantum computers work as promised. If they can be scaled up, to thousands or tens of thousands of qubits from their current size of a dozen or so, watch out!

    Prof Seth Lloyd of MIT, MIT Review 2008

  • “The current way which organisations approach security can be recognised as an underlying market failure which consists of fire fighting security problems, silo'd implementation of technologies, uncontrolled application development practices and a failure to address systemic problems. Organisations tend to deal with one problem at a time that results in the deployment of point solutions to treat singular problems. This failure is typical of an uncontrolled marketplace evolving with little or no co-ordination.

    The British Government’s Technology Strategy Board, 2008

  • “Assurance is best addressed during the initial design and engineering of security systems, NOT as an after market patch. The earlier you include a security architect in your design process, the greater the likely hood of a successful and robust design. As the quip goes, he who gets to the (module) interface first wins.”

    Brian Snow, Former Technical Director of the US National Security Agency (NSA), "We need Assurance", AusCERT 2008

  • “When will we be secure? Nobody knows for sure – but it cannot happen before commercial security products and services possess not only enough functionality to satisfy customers’ stated needs, but also sufficient assurance of quality, reliability, safety, and appropriateness for use. Such assurances are lacking in most of today’s commercial security products and services.”

    Brian Snow, Former Technical Director of the US National Security Agency (NSA), "We need Assurance", 2005

  • "First and foremost, there is no proper excuse for continued use of a broken cryptographic primitive (MD5) when sufficiently strong alternatives are readily available, for example SHA-2. Secondly, there is no substitute for security awareness." ... "Advice from experts should be taken seriously and early in the process. In this case, MD5 should have been phased out soon after 2004."

    Alexander Sotirov, Marc Stevens, Jacob Appelbaum, Arjen Lenstra, David Molnar, Dag Arne Osvik, Benne de Wegerr, "MD5 considered harmful today - Creating a rogue CA certificate", December 2008

  • “Never underestimate the attention, risk, money and time that an opponent will put into reading traffic.”

    Robert Morris, former Chief Scientist of the US National Security Agency (NSA), National Computer Security Center, "Crypto '95 invited talks by R. Morris and A. Shamir", 1995

  • "But conventional security is not enough. The complexity of today's operational environment means organisations must embrace a level of business resilience that is normally associated with the protection of critical national infrastructure."

    Detica, a BAE Systems Company

  • “Consider the use of smart cards ... for especially critical functions.  Although more costly than software, when properly implemented the assurance gain is great.  The form-factor is not as important as the existence of an isolated processor and address space for assured operations – an ‘Island of Security,’ if you will.  Such devices can communicate with each other through secure protocols and provide a web of security connecting secure nodes located across a sea of insecurity in the global net.”

    Brian Snow, Former Technical Director of the US National Security Agency (NSA), "We need assurance!", 1999-2008

Resources Frequently asked questions Key Exchanges Synaptic Enterprise Key Exchange Home
Synaptic Enterprise Key Exchange Home

Protect your online mission-critical data and infrastructure against the advances of time with Synaptic Labs' many-to-many key exchange infrastructure!

Synaptic Labs' Enterprise Key exchange offers up to 100 year secure key-exchange technology targeted for communications between 10's to millions of hardware security modules (HSM). The HSM may be smart cards, network attached HSM, or any combination of HSM form factor. The choice of form factor can be adjusted to suit the application requirements.

The Enterprise Key Exchange on its own is ideal for securing communications within medium to large size companies, and between three or more companies seeking to collaborate together. The Enterprise Key Exchange can be extended to use Synaptic Labs' Universal Key Exchange technology. This combination allows some of the online key exchange servers to be provided by companies outside of the group of organisations that wish to securely communicate with each other.

The Enterprise Key Exchange allows for dynamic group membership. This means that users can be dynamically added and removed from the system as you might normally expect in business relationships.

In collaborative communications environments each enrolled party is provided with a smart card that has been initialized within that Enterprise Key Exchange system. The first key exchange between two smart cards is performed as illustrated in label 1 above. Each additional key exchange between the smart cards occurs directly as illustrated in label 2 above. The smart card is used to uniquely identify members enrolled within that system and to perform all sensitive key exchange operations. Just like normal smart card security applications, each enrolled user plugs the smart card into the computer that they wish to securely communicate from.

In inter-company back office applications the Enterprise Key Exchange may be used to secure a scalable group of network servers belonging to different companies. The smart cards are used to enable secure network connections between the servers.

Network attached hardware security modules provide the ideal platform for performing secure business computing. In this context all sensitive data operations and business logic is run within a hardened computing environment.

The Enterprise Key Exchange technology can also be used to bolster the strength of QKD systems by extending the reach of the QKD post quantum secure communication properties right through to all computers connected to the QKD system. This layered defense model protects against single point of trust failure which could compromise point to point QKD and QKD networks. Furthermore the Enterprise Key Exchange servers can be run on QKD network routers.

Further Information

Additional information is available via the menu bar on the right of the screen under the Enterprise Key Exchange menu item.

The Enterprise Key Exchange was presented by Synaptic Labs at the IEEE Key Management Summit 2010.  The presentation titled: "Survey of symmetric key distribution techniques" can be watched as streaming video here.

The Enterprise Key Exchange has been described in a short 4 page peer reviewed technical abstract presented at the U.S. Oak Ridge National Laboratory - Cyber Security and Information Intelligence Research Workshop. A longer and more detailed version of that extract has been published on ePrint.

Synaptic Laboratories and the Gozo Business Chamber (EU) have co-founded the ICT Gozo Malta cluster of excellence. This cluster of excellence will work in close collaboration with key Government and private stakeholders and leading International companies to develop many of Synaptic Labs' innovative technologies. The Enterprise Key Exchange proposal will be implemented as part of the ICT Gozo Malta Global-scale Cyber Security project and Exoskeleton extensions. The relationships between projects is visually illustrated here.
Last Updated on Friday, 18 March 2011 09:35
 
This website uses cookies to manage authentication, navigation, and to provide you with a better and more personal service. By continuing to use this website, you are consenting to this use. Find out more here.

image Introduction to synaptic Laboratories global cyber safety and Security status 2012 Cyber Security Technical Problems, Drivers and Incentives Video Presentation by Brian Snow

"Synaptic Laboratories is a rare company; they tackle the hard problems! Their basic approach is directly relevant to Governments and/or any commercial companies that deploy products that must function correctly in high-risk environments. They differ from most competitors in that not only do they work hard to get the concepts right, they also work very hard to assure the implementation is correct and robust as well."

Related Items

 

 

 

 

 

 

 

Universal Transaction System