The Quantis Appliance distributes true and unpredictable randomness to networking and security applications and systems, for bullet-proof protection of sensitive data, servers, virtual machines and private networks. It also ensures server random pools always have true entropy and augment the entropy of random number generators in security systems such as Hardware Security Modules (HSMs) or central key management servers. Other applications include simulations or modelling.
The Quantis Appliance also helps the gaming industry to move from a dedicated to a centralized random number generation architecture, functioning as the central node of a distributed network of randomness. This allows higher flexibility, easier maintenance, better protection against any kind of physical tampering, and higher ROI.
Autonomous and non-intrusive, the Quantis Appliance seamlessly integrates into any type of networks and distributed environments. It securely delivers quantum randomness to multiple applications in parallel using standard REST API over https. It was specifically designed to meet the requirements of high availability environments with a robust FIPS-compliant chassis, redundant power supplies and hot-swap redundant fans.
Quantis QRNG products have been certified by many leading agencies worldwide. IDQ follows best practices and continually performs quality and security testing on its Quantis quantum random number generation products, in line with the recommendations from the most demanding standard institutions worldwide. All IDQ QRNG products pass NIST SP800-90B, SP800-22 and DieHarder tests.
PERFOMANT AND SIMPLE
The Quantis Appliance is an autonomous device, which integrates seamlessly through standard REST API into different types of networks. The system architecture has been specifically developed with parallelizable processes that allow to serve multiple servers with true randomness at minimized latency and offer the best performance without compromising security, even at peak times. It is able to serve 8’000 requests of 256-bit keys per second from multiple threads in parallel.
The Quantis Appliance can also be put in streaming mode where it delivers random bits on the fly. For troubleshooting, the Quantis Appliance generates syslog alerts in case of failure of the power supplies, CPU and RAMs, and failure to provide QRNG data on a request. The watchdog control guarantees low maintenance efforts, ensuring an automatic restart of the Quantis Appliance if any error or malfunction occurs.
ENTROPY FEEDER FOR LINUX AND OTHER APPLICATIONS
The Linux entropy pool is notoriously bad as it has little access to external entropy sources apart from disc interrupts and other fluctuations. By installing a daemon on the Linux host, the Quantis Appliance monitors the kernel entropy pool and feeds entropy into the pool e.g. for establishing secure SSL connections. As this is done at Linux entropy pool’s level, the FIPS or other security certifications of the crypto stack are retained.
Additionally, a custom-developed tool is available which enables the direct seeding of leading security systems, such as Hardware Security modules (HSMs). The user configures the Quantis Appliance to deliver a chosen rate of random numbers to the HSM, which are then mixed with the internal HSM entropy source to improve randomness and trust in the crypto functions performed by the HSM.