Comparison of distributed and centralized quantum key management systems for meshed QKD networks

Abstract

Recent developments in quantum key distribution (QKD) demonstrate the maturity of securing sensitive data against the emerging quantum computing threat. For QKD-secured long-haul and meshed optical transport networks (OTNs), quantum key management systems (QKMSs) are essential to overcome current distance limitations of available QKD devices. In this work, we present and compare two implementations of QKMSs, analyzing their scalability with an emulated QKD network (QKDN) utilizing recorded performance metrics from deployed QKD devices. First, we use a state-of-the-art Internet routing scheme, i.e., open shortest path first (OSPF), demonstrating that key management entities (KMEs) can solve the key routing problem utilizing distributed routing. Second, we apply software-defined networking (SDN) to implement centralized routing with a SDN controller. This paper compares distributed with centralized key routing regarding scalability, throughput, and latency. Both schemes facilitate up to six key relays between any pair of nodes in parallel with average key relay durations per hop below 300 ms given the Nobel-Germany topology and any-to-any demand matrix. With a network-wide joint key routing optimization in the SDN controller, up to 16.7% higher demands can be served compared to distributed key routing. Within the inherent compatibility of our study to network-function virtualization (NFV), we guideline future integration of QKMSs into deployed OTNs.