qTrustNet
ICTK's qTrustNet is a quantum-resistant network security solution that combines WireGuard Secure Tunnel Protocol, PUF Array (VIA PUF™-based), and NIST PQC (ML-KEM, ML-DSA).
Quantum-Resistant System Architecture (WireGuard)
Zero Trust is achieved by separating the authentication server and tunnel VPN network through SDP.
TLS 1.3 + PQC-based API server authentication, supporting thousands of simultaneous camera connections
Secondary Tunneling Gateway authentication via PUF HSM-based Client ID control
High-speed secure tunneling at 10Gbps x 2 Ports based on Hybrid PQC (PQC-WireGuard) with Quantum-Safe PFS support
Up to 7,000 IP camera sets per Tunneling Gateway, hundreds of Gateways managed by a single authentication server
Why qTrustNet?
ICTK's qTrustNet is built on 3 key pillars:
WireGuard Secure Tunnel Protocol, PUF Array (VIA PUF™-based), and NIST PQC (ML-KEM, ML-DSA)
VPN Protocol Speed Comparison
- Throughput
- Poly1305: MAC
- Chacha20: Stream Cypher
https://www.ncbi.nlm.nih.gov/pmc/articles/PMC6806263
Fast, Modern, Secure
VPN Tunnel Protocol
PUF HSM Root of Trust
PQC (Post-Quantum Crypto) Applied
VRRP Redundancy
HSM Backup System
qTrustNet
User-Friendly
UI
qTrustNet provides an intuitive web-based management interface.
From login to connection status, device monitoring, and statistics — all at a glance.
Features
| Feature | qTrustNet |
|---|---|
| Protocol | Streamlined protocol based on WireGuard + NoiseIK |
| Encryption Algorithms | ChaCha20/Poly1305, Curve25519, Blake2s (State-of-the-art encryption) |
| Quantum Resistance | NIST standard ML-KEM, ML-DSA (Quantum-resistant support) |
| Authentication | PQC certificate-based authentication, PUF-based hardware (ID/Password) authentication, simple authentication via NoiseIK |
| Security | Keys stored in PUF chip |
| Setup & Configuration | Simple server setup with auto-connection support |
| Performance | Multi-core optimized, low latency, efficient memory and CPU utilization |
| Key Exchange | NoiseIK protocol, completed in 2 packet exchanges |
| PFS (Perfect Forward Secrecy) |
Supported (Key renewal every 2 minutes) |
| Secure Tunnel Throughput | 700~800Mbps |
Model Specifications
| Model | qTrustNet 1000 (Integrated) |
qTrustNet 2500 (Integrated) |
qTrustNet 5000 (Integrated) |
|
|---|---|---|---|---|
| CPU | 16 Core (8 Core * 2P) | 24 Core (12 Core * 2P) | 32 Core (16 Core * 2P) | |
| RAM | 32GB | 64GB | 64GB | |
| System Storage | 480GB (RAID-1) | 480GB (RAID-1) | 480GB (RAID-1) | |
| Log Storage | 2TB (RAID-1) | 2TB (RAID-1) | 2TB (RAID-1) | |
| PUF Array (256 G3 units installed) |
PUF Array(qTrustPCI) x 1 | PUF Array(qTrustPCI) x 2 | PUF Array(qTrustPCI) x 2 | |
| NIC | 1GC | 2 | 2 | 2 |
| 10GC | - | - | - | |
| 10GF | 4 | 8 | 8 | |
| Secure Tunnel Bandwidth | 20G | 40G | 40G | |
| Max Secure Tunnel Tunnels | 10,000 | 25,000 | 50,000 | |
| Concurrent Secure Tunnel Tunnels (1Mbit/sec) |
3,500 | 7,000 | 15,000 | |
| Rack Mount | 1U | 2U | 2U | |
| Power | Redundant | Redundant | Redundant | |
Ready to Secure Your Future?
ICTK's quantum security experts will assess your security environment and recommend the optimal solution.