How Palo Alto Networks Standardises Quantum Security

The contest to protect global digital infrastructure from quantum computing threats has entered a new phase as organisations prepare for what security experts term the "quantum advantage" - the point at which quantum computers become capable of breaking current encryption standards.

This has prompted cybersecurity providers to develop new protection mechanisms, focusing particularly on the generation of encryption keys that can withstand quantum attacks.

At the same time, the convergence of quantum computing with AI and ML has accelerated the need for standardised security approaches. 

Palo Alto Networks has responded to these challenges by unveiling an open framework for quantum random number generation (QRNG) technology.

This initiative shifts from proprietary quantum security solutions toward industry-wide standards that could accelerate adoption of quantum-safe security measures.

Quantum security framework draws industry support

The QRNG Open API framework, developed with six quantum technology companies, aims to standardise the implementation of quantum-based security systems.

The framework also responds to recommendations from the US National Institute of Standards and Technology (NIST) to combine post-quantum cryptography standards with QRNG technology.

This approach is designed to strengthen protection against potential attacks from quantum computers.

"Helping the world become quantum safe is much more than any one cybersecurity company, government agency or critical infrastructure organisation can tackle alone," says Rich Campagna, Senior Vice President of Product Management at Palo Alto Networks.

"Collaboration in the QRNG field is vital to future-proofing against quantum computing threats."

Duncan Jones, Head of Cybersecurity at Quantinuum, one of the six companies working with Palo Alto Networks on the co-designed Open API, adds: "The launch of the Open API initiative for quantum random number generation (QRNG) by Palo Alto Networks is a significant step forward in highlighting the key role that randomness plays in an organisation’s security stack today and in the coming quantum age.” 

Palo Alto Networks leads implementation drive 

The framework will be available through Palo Alto Networks' GitHub portal.

The company plans to integrate the API into its Next Generation Firewalls, network security devices that protect organisations from cyber threats, later this year, which will enable the platform to incorporate quantum-generated entropy, a measure of randomness, into its cryptographic functions.

Additionally, the initiative brings together quantum technology specialists including Anametric, a quantum security firm, ID Quantique, a quantum hardware manufacturer and Quantinuum, which develops quantum computing systems and other partners include Qrypt, Quantropi and Quside.

"The biggest hurdle in helping organisations adopt quantum entropy isn't convincing them of its value - it's how complex it is to integrate into their systems," says Kenny Huebsch, Director of Software Engineering at Qrypt.

"Driving toward a standard is an essential first step on a path to broader first-class support of quantum entropy sources."

Quantum random numbers enhance encryption standards 

The framework enables organisations to select quantum security solutions that match their requirements, including both cloud-based and on-premises systems.

It also addresses implementation challenges through a standardised approach to integrating quantum random number generation into existing security infrastructure.

Allowing for multi-vendor interoperability, it will also enable organisations to build QRNG-based systems that remain resilient regardless of the underlying technology provider, which removes proprietary barriers that have historically complicated the adoption of quantum security measures.

Wil Oxford, Chief Executive Officer at Anametric, emphasises the framework's role in industry transformation: "Establishing a standardised QRNG Open API is crucial for the cybersecurity landscape, facilitating the seamless transition to post-quantum cryptography.

“Our collective expertise and collaboration will ensure that our digital infrastructure remains resilient, secure and future-ready."

Industry collaboration shapes security standards 

The partnership structure allows organisations to maintain flexibility in their security implementations.

Mike Redding, Chief Technology Officer at Quantropi, highlights the impact on customer decision-making: "We believe that open standards are essential to give clients the confidence to adopt new technologies.

“The Open API will allow clients to focus on the quality, reliability, security and value of QRNG service offerings without the complication of evaluating implementation differences."

The initiative aims to remove barriers to adoption by providing a common mechanism for accessing quantum random number generation.

"Our key objective is to make quantum randomness more accessible by reducing adoption barriers.

"The QRNG Open API initiative is crucial for establishing clear and robust guidelines that meet precise user needs," says Fernando de la Iglesia, Vice President of Product at Quside.

"ID Quantique commercialises quantum hardware and software systems compliant with the relevant applicable standards, ensuring smooth integration with existing security framework, infrastructures and applications.

Duncan concludes: “By adding randomness to complement post-quantum cryptography (PQC) and quantum key distribution (QKD), organisations are creating the best foundation for security in the post-quantum world."

Explore the latest edition of Technology Magazine and be part of the conversation at our global conference series, Tech & AI LIVE.

Discover all our upcoming events and secure your tickets today.

Technology Magazine is a BizClik brand