| CPC H04L 9/0858 (2013.01) [G06F 12/1408 (2013.01); G06N 10/00 (2019.01); H04L 63/061 (2013.01); G06F 2212/1052 (2013.01)] | 17 Claims |
|
1. A secure computing system, comprising:
a key generation sub-system configured to generate cryptographic keys and corresponding key labels for distribution to computer clusters, each computer cluster including a plurality of respective endpoints;
a plurality of quantum key distribution (QKD) devices connected via respective optical fiber connections, and configured to securely distribute the generated cryptographic keys among the computer clusters; and
a key orchestration sub-system configured to:
manage caching of the cryptographic keys in the computer clusters in advance of receiving key requests from applications running on ones of the endpoints in ones of the computer clusters; and
provide respective ones of the cached cryptographic keys, cached in the computer clusters in advance of receiving the key requests from the applications, to the applications to enable secure communication among the applications running on the ones of the endpoints, wherein the key orchestration sub-system includes, in each respective computer cluster, a key cache orchestrator and a key exchange orchestrator, which is configured to manage provision of the cached cryptographic keys to the applications running on respective ones of the endpoints in the computer clusters responsively to corresponding ones of the key labels.
|