Protect your AI data today and against future quantum threats: NVIDIA BlueField-3 strengthens overall cybersecurity posture by creating a functional isolation layer to IPsec processes, and Qrypt’s IPsec plugin provides quantum security through an IKEv2 integration.

BlueField-3

The Opportunity

Your high-value data is at risk from being captured and decrypted during transmission of AI training data and models. NVIDIA BlueField-3 DPUs secure traditional computing environments by transforming them into high-performance virtual private clouds. This enables organizations to run application workloads securely in multi-tenant settings. Qrypt’s IPsec plugin delivers advanced cryptographic security of IPsec VPN connections, safeguarding data against future threats as well as the immediate threat of the Harvest Now, Decrypt Later attacks

Key Benefits

• Maximize performance and throughput: first, by isolating operational work to the DPU, and then by leveraging BLAST to establish quantum–enhanced encryption keys

• Eliminate risk from quantum attacks to your current cryptographic protocols

• Quantum-secure data at the IP level during AI data transmission at scale

• Get the strongest key generation produced from true Quantum measurements, enabling the highest-quality cryptographic keys

• Protect against the Harvest Now, Decrypt Later (HNDL) attack by generating keys at multiple endpoints without transmission, zero interception possible

• Be quantum secure by leveraging existing BF3 and IPsec infrastructure, with no additional quantum infrastructure needed

• PQC agility, available via BLAST protocol

Technical Features

• • NVIDIA BlueField-3 DPU, an infrastructure compute platform for accelerating AI and data center workloads
  • DOCA is the software framework to unlock the potential of the BlueField-3 DPU to simplify development and speed application deployment
  • US QRNG sourced entropy, built in partnership with Los Alamos and Oak Ridge US National Laboratories
  • Qrypt’s BLAST protocol integrated with IPsec IKEv2, providing security against HNDL attacks 

• How it Works

• • Qrypt’s IPsec plugin seamlessly combines existing classical and quantum-secure key exchanges with Qrypt’s BLAST protocol 
  • The solution leverages the NVIDIA BlueField-3 DPU’s hardware capability for secure network communication and optimized performance 
  • Qrypt plugin is easily enabled by configuring the StrongSwan service running on the DPUs 

How Qrypt Secures AI Data Against Quantum Threats

• Advanced cryptographic security: Migrating to quantum security presents both risks and challenges. For some use-cases, post-quantum cryptography (PQC) lacks extensive field testing and demands significant computational resources, rendering systems inefficient. Qrypt’s plug-in supports both classical and PQC algorithms, providing an additional layer of security to safeguard your systems from current and future quantum threats
• Quantum-enhanced keys: Qrypt’s Quantum Secure IPsec Gateway relies on Qrypt’s Quantum Random Number Generation (QRNG) technology, the only provably random and confidential method to generate encryption keys. Qryptʼs QRNG technologies are co-developed with Oak Ridge and Los Alamos National Labs, and assembled entirely in the US, ensuring a controlled and secure supply chain
• Protection against HNDL: A central element of the Quantum Secure Gateway is the BLAST protocol, a patented cryptographic primitive developed by Chief Cryptographer Yevgeniy Dodis, an ICAR Fellow. The protocol enables generation of quantum-enhanced encryption keys without transmission, safeguarding data against the HNDL attack

How to Purchase

• Software only: Upgrade existing BlueField-3; consumption direct with Qrypt  
• Hardware: Purchase a new BlueField-3 with Qrypt integration; direct with NVIDIA reseller