2025-10-08 –, Prague/ Technical Deep Dive & Innovation
Quantum Key Distribution (QKD) offers a promising leap forward in secure communications, leveraging quantum mechanics to establish unconditionally secure keys. However, real-world deployment of QKD requires interoperability with traditional cryptographic libraries and key management systems.
In this session, we outline our experiences in how to use OpenSSL and Bouncy Castle with QKD systems using standardized protocols, and how to securely manage and distribute those keys using the KMIP (Key Management Interoperability Protocol) standard.
We show practical integration steps and how organizations can use familiar tools—OpenSSL and Bouncy Castle—to bridge today’s cryptographic infrastructure with the quantum-secure future, both with PQC algorithms and QKD hardware solutions.
Quantum Key Distribution (QKD) offers a promising leap forward in secure communications, leveraging quantum mechanics to establish unconditionally secure keys. However, real-world deployment of QKD requires interoperability with traditional cryptographic libraries and key management systems.
In this session, we outline our experiences in how to use OpenSSL and Bouncy Castle with QKD systems using standardized protocols, and how to securely manage and distribute those keys using the KMIP (Key Management Interoperability Protocol) standard.
We show practical integration steps and how organizations can use familiar tools—OpenSSL and Bouncy Castle—to bridge today’s cryptographic infrastructure with the quantum-secure future, both with PQC algorithms and QKD hardware solutions.
What Attendees Will Learn:
How to practically use QKD in existing systems.
How OpenSSL and Bouncy Castle can be extended to work with QKD.
How KMIP KMS can mediate key management between quantum and classical systems.
Future-proofing cryptographic infrastructure with a layered post-quantum strategy.
Eric Ye is a software engineer at Cryptsoft, specializing in standards-based key management technologies. He works on the development and integration of KMIP and PKCS#11-based SDKs in C, Java, and C#, helping OEM clients build secure, interoperable cryptographic systems.