Whitewood Introduces netRandom Free, a Cloud-Based Entropy Service to Enable True Random Number Generation

  • The new service delivers pure quantum entropy (random number generation) on-demand to strengthen existing enterprise security systems using a cloud-based entropy-as-a-service model.
  • This is believed to be the first quantum-based entropy service specifically geared to meet enterprise-level security needs and improve random number generation for multiple operating systems.
  • The capabilities of the netRandom Free service can also be realized as a dedicated deployment on private networks using the netRandom Enterprise product from Whitewood.

Boston (April 20, 2017) – Whitewood, a developer of crypto-security solutions, today launched netRandom Free, a cloud-based entropy service. netRandom Free is specifically designed to supplement and strengthen security systems in traditional data centers, virtualized cloud environments and embedded systems, such as the Internet of Things (IoT), where the risk of entropy starvation threatens security and risks data exposure and malicious attack.

The netRandom Free service, which is available at www.getnetrandom.com, is part of a broader product portfolio that includes on-premise entropy management systems and quantum random number generators (QRNG) for organizations that prefer to deploy their own dedicated or private security infrastructure.

Security applications and infrastructure, and particularly those that utilize encryption and other forms of cryptography, need access to high quantities of truly random numbers for generating keys that are impossible to predict.  Yet more and more applications run in environments that struggle to collect sufficient entropy to ensure true randomness. netRandom Free addresses the threat of entropy starvation by delivering on-demand, quantum entropy from a cloud-based server over standard IP networks. The received entropy is used to continuously re-seed existing random number generators within Linux- and Windows-based instances and devices.

netRandom Free is designed to act as a background network-based utility to supplement, not replace, existing entropy sources. With it, security professionals can be confident that applications have access to true random numbers consistently across distributed environments even when they have little or no control over the hardware platform and physical environments that traditionally act as the sources of entropy.

“Poor access to entropy and weakened random number generation has been highlighted by the SANS Institute as one of the 7 most dangerous attacks for 2017. Weak random number generation poses a unique threat since it is essentially undetectable. As with any undetectable vulnerability, we are forced to rely on prevention rather than monitoring and alerts –  we need to take proactive rather than reactive measures,” said Richard Moulds, General Manager of Whitewood. “netRandom provides a simple enhancement that helps inoculate servers and virtual machines from generating poor random numbers and therefore weak encryption keys, without requiring changes to applications. Quantum entropy is the only true source of randomness and with our new netRandom Free service, we can now make that available to individuals and organizations of any size.”

Today, virtually all random numbers are generated within the operating system. The problem is that software can’t generate true random numbers. Software-based systems are deterministic and rely on capturing random signals or data from the physical world to act as randomizing ‘seeds’. Because of this requirement, random number generation is traditionally considered to be a local issue. Individual computers capture entropy as best they can, create random numbers, and provide them to local applications. But that model is now changing.

The already widespread and growing use of cryptography raises the bar for randomness, and these current ‘best-effort’ approaches to random number generation are no longer sufficient. The trend towards virtualization and distributed IT environments abstracts our applications from the natural world and the entropy within it. In the virtual world of headless systems running on shared hardware with dynamic replication, there can be little or no real entropy. This makes it virtually impossible to attest to the quality of key generation and system security without the ability to supplement that entropy supply from a trusted source.

At the heart of the netRandom Free service is the Whitewood Entropy EngineTM our award-winning quantum random number generator and entropy source that was jointly developed with the quantum security team at Los Alamos National Laboratory. This same technology is also available for deployment as dedicated on-premise systems for establishing private entropy services for corporate and government data centers, IoT networks and other distributed applications where direct control is of the upmost importance.

For more information, visit www.whitewoodsecurity.com or email info@whitewoodsecurity.com.

To listen to a presentation entitled, Random Number Generation Is Getting Harder — It’s Time to Pay Attention, given at the RSA 2017 Security Conference in San Francisco by Richard Moulds and Richard Hughes, retired Laboratory Fellow at Los Alamos National Laboratory, visit https://www.rsaconference.com/events/us17/agenda/sessions/6672-random-number-generation-is-getting-harder-its-time.

About Whitewood 

Whitewood® is addressing one of the most fundamental challenges associated with modern cryptosystems – random number generation and entropy distribution. Whitewood’s products exploit quantum mechanics to meet demand for high-quality entropy used for random number and key generation at scale. Building upon a base of quantum cryptography capabilities developed over the course of the past two decades at Los Alamos National Laboratory, Whitewood addresses operational vulnerabilities in encryption and crypto applications across the datacenter, cloud and in mobile and embedded systems. More information on Whitewood can be found at: www.whitewoodsecurity.com.

Media Contact:

Christine Dunn

ArcPoint Strategy

ArcPoint Strategy

617.484.1660 x101

cdunn@arcpointstrategy.com

Whitewood Announces the Awarding of a U.S. Patent for Quantum Key Management

  • The patent provides a hybrid approach that marries the power of quantum-safe security techniques with the scalability of existing security architectures, providing a secure way to identify, authenticate, verify and exchange secret cryptographic keys even if subjected to attack using quantum computers.
  • This is the fourth patent awarded for technology exclusively licensed by Whitewood from Los Alamos National Laboratory. The patent marks an important step forward for the company, which is developing a portfolio of products that span the rapidly growing need to both protect existing crypto applications and provide quantum-safe security. Entropy Engine was also a finalist in the prestigious Special Recognition category of Market Disruptor Services.

Boston (January 25, 2017) – Whitewood, a developer of solutions focused on improving the use of cryptography, is pleased to announce that the U.S. Patent and Trademark Office (USPTO) granted a new patent entitled, Quantum Key Management. The patent, designated number 9,509,506, addresses the critical issue of identifying, authenticating, verifying, and exchanging secret cryptographic keys when employing quantum communications techniques designed to address the emerging threat of quantum computers.

The security systems that we use today such as internet encryption, credit card payments, email encryption, secure content sharing and even bitcoin are designed to span large groups of users and devices comprising many senders and receivers, as well as buyers and sellers. These systems employ a security architecture called public key infrastructure (PKI) to establish a framework for managing keys and identities, and to define a trust model that underpins transactions and instructions in a way that can be verified and validated. The much-anticipated arrival of quantum computers introduces the potentially devastating threat that these PKI-based systems can be compromised. Quantum computers have the potential to expose secret keys in a PKI and shatter the security they provide.

Established technologies such as quantum key distribution (QKD) have the potential to provide a method for exchanging keys securely even in the presence of an attacker with a quantum computer, but are limited to fixed, point-to-point connections and represent only a small fraction of the capabilities required by a PKI-based architecture. Products that make use of the new Quantum Key Management (QKM) patent would be able to address many of the practical and architectural limitations of deploying QKD.

The patent covers innovations that enable the low-level quantum-safe capabilities of QKD to be deployed in a way that aligns with existing PKI-based architectures and can scale to large distributed systems. This patented hybrid approach combines QKD and a quantum identification protocol that uses a hash-based signature scheme to create a system that spans many users and devices and yet avoids the need to rely on QKD connections between each of them. The patent also includes innovations for the secure enrollment of users with a registration authority, as well as credential checking and revocation.

This invention originated in research conducted at Los Alamos, and was part of a wide-ranging effort to address the quantum threat. Two of the three inventors named on the patent are Jane Nordholt and Richard Hughes, who co-founded and co-led the Quantum Communications team at Los Alamos for nearly two decades before retiring to become consulting physicists for Whitewood.

“We are proud that Los Alamos has once again been recognized as a center for innovation in this critical area,” said Duncan McBranch, Chief Technology Officer at Los Alamos. “This and our other inventions in quantum science move beyond pure research to teach how viable quantum systems can be designed and built. Quantum technologies will be powerful future security tools and our goal is to make that future real today.”

This new patent forms part of a portfolio of Los Alamos intellectual property that was exclusively licensed by Whitewood to commercialize quantum-based technologies and address current and future needs for secure cryptography. Other Nordholt and Hughes patents in the portfolio include:

  • An advanced method for correcting the unwanted polarization effects encountered in today’s optical fiber networks;
  • The miniaturization of QKD technology components for use on existing optical fiber networks and from satellite to ground;
  • Technologies that dramatically increase the scalability of multi-node networks that employ quantum-based key management techniques.

“The timing of the arrival of quantum computing has been hotly debated for years, but with the stakes so high it is important that organizations assess their current crypto systems and take action to evolve to a quantum-safe posture,” said Richard Moulds, General Manager at Whitewood. “Transitioning to quantum-safe algorithms or technologies such as QKD is potentially very disruptive. The ability to adopt the hybrid QKM approach described in this new patent could greatly simplify that transition.”

QKM builds on existing Whitewood products that include quantum-powered random number generators (QRNG) and entropy management systems. Whitewood’s first product, the award-winning Entropy Engine™ QRNG, was launched in 2015, and last year the company made it possible for customers to address the threat of entropy starvation with Whitewood’s netRandom product suite, which provides access to high-quality true random numbers across an entire data center and application infrastructure.

For more information, visit www.whitewoodsecurity.com or email info@whitewoodsecurity.com.

About Whitewood Encryption Systems, Inc. 

Whitewood® is addressing one of the most fundamental challenges associated with modern cryptosystems – random number generation and distribution. Whitewood’s products exploit quantum mechanics to meet demand for high-quality entropy used for random data and key generation at scale. Building upon a base of quantum cryptography capabilities developed over the course of the past two decades at Los Alamos National Laboratory, Whitewood addresses operational vulnerabilities in encryption and crypto applications across the datacenter, cloud and in mobile and embedded systems. More information on Whitewood can be found at: www.whitewoodsecurity.com.

Media Contact:

Christine Dunn

ArcPoint Strategy

ArcPoint Strategy

617.484.1660 x101

cdunn@arcpointstrategy.com

Whitewood’s Entropy Engine Awarded R&D 100 Award for 2016

  • The R&D 100 Awards, sponsored by R&D Magazine, honors the 100 most innovative technologies and services of the past year.Whitewood’s Entropy Engine won the R&D 100 Award in the IT/Electrical category.
  • Entropy Engine was also a finalist in the prestigious Special Recognition category of Market Disruptor Services.

Boston (November 18, 2016) — Whitewood, a developer of crypto-security solutions, announced that its Entropy Engine™, a quantum-powered, high-performance Random Number Generator capable of generating 350 Mbit/s of true random numbers, was honored with a 2016 R&D 100 Award. The award recognizes the top 100 technological advances of the past year, as determined by a panel selected by R&D Magazine, in the IT/Electrical category. Entropy Engine was also a finalist in the Special Recognition Market Disruptor Services categories.

“We are thrilled that our Entropy Engine was selected as the winner for this prestigious award. It highlights the importance of improving random number generation, the very foundation of all forms of cryptography, across data centers and security infrastructure,” said Richard Moulds, General Manager for Whitewood. “In developing the Entropy Engine, Whitewood works closely with our partners at Los Alamos National Laboratory to commercialize their initial research. The Entropy Engine illustrates the value of public-private partnerships in cybersecurity and an ability to bring additional protection to critical national infrastructure through such partnership.”

Many applications and operating systems rely on random numbers. In particular, those applications that perform encryption, use digital signatures or employ other forms of cryptography use random numbers as the basis of their security. When random numbers are not truly random, keys can become more predictable and security measures such as SSL/TLS, PKI and data-at-rest encryption could become vulnerable to attack. The Entropy Engine aims to set a new benchmark for performance and security when generating random numbers. Designed as a convenient PCI express plug-in card for servers, the Entropy Engine exploits quantum mechanics to generate pure entropy and delivers true random numbers at speeds of up to 350 Mbit/s. The product is architected to comply with the latest draft NIST standard SP800-90B for entropy sources and non-deterministic random bit generators.

“The Entropy Engine provides an excellent example of how a national laboratory and the private sector can combine their skills and resources to address real-world challenges,” said Los Alamos Chief Technology Officer Duncan McBranch. “Not only does the Entropy Engine benefit existing security applications today, it demonstrates potential to be an essential component of future quantum-safe systems. The technology shift due to quantum information and computing systems has been a long-term research focus at Los Alamos, and now with the Entropy Engine we are excited to see this technology in the marketplace.”

In addition to being provided as a standalone random number generator, the Entropy Engine also forms the heart of the Whitewood netRandom product that addresses the need for high quality entropy in distributed networks and applications. The widespread adoption of virtualization, migration to cloud computing, and the Internet of Things (IoT) all increase the challenge of capturing enough high-quality entropy. Deployed as a client-server solution, the netRandom product is designed to supply entropy across an entire datacenter or population of devices and enable existing systems to gain access to true random numbers without requiring modification to applications.

About Whitewood Encryption Systems, Inc. 

Whitewood® is addressing one of the most fundamental challenges associated with modern cryptosystems – random number generation and distribution. Whitewood’s products exploit quantum mechanics to meet demand for high-quality entropy used for random data and key generation at scale. Building upon a base of quantum cryptography capabilities developed over the course of the past two decades at Los Alamos National Laboratory, Whitewood addresses operational vulnerabilities in encryption and crypto applications across the datacenter, cloud and in mobile and embedded systems. More information on Whitewood can be found at: www.whitewoodsecurity.com.

 

Media Contact: 
Christine Dunn
ArcPoint Strategy
617.484.1660 x101

Whitewood’s Entropy Engine Named Twice as Finalist for 2016 R&D 100 Awards

  • The R&D 100 Awards, sponsored by R&D Magazine, honors the 100 most innovative technologies and services of the past year.
  • Whitewood’s Entropy Engine was named a finalist in two categories, firstly in the IT/Electrical category and secondly in the prestigious Special Recognition category of Market Disruptor Services.

Boston (October 31, 2016) — Whitewood, a developer of crypto-security solutions, announced that its Entropy Engine™, a quantum-powered, high-performance Random Number Generator capable of generating 350 Mbit/s of true random numbers, was selected as a finalist in the IT/Electrical and Special Recognition Market Disruptor Services categories of the 2016 R&D 100 Awards, which recognize the top 100 technological advances of the past year as determined by a panel selected by R&D Magazine.

“We are excited to have our Entropy Engine selected as a finalist in this prestigious award. It highlights the importance of improving random number generation, the very foundation of all forms of cryptography, across data centers and security infrastructure” said Richard Moulds, General Manager for Whitewood. “In developing the Entropy Engine Whitewood worked closely with our partners at Los Alamos National Laboratory to commercialize their initial research. The Entropy Engine illustrates the value of public-private partnerships in cybersecurity and an ability to bring additional protection to critical national infrastructure through such partnership.”
Many applications and operating systems rely on random numbers. In particular, those applications that perform encryption, use digital signatures or employ other forms of cryptography use random numbers as the basis of their security. When random numbers are not truly random, keys can become more predictable and security measures such as SSL/TLS, PKI and data-at-rest encryption could become vulnerable to attack.

The Entropy Engine aims to set a new benchmark for performance and security when generating random numbers. Designed as a convenient PCI express plug-in card for servers, the Entropy Engine exploits quantum mechanics to generate pure entropy and delivers true random numbers at speeds of up to 350Mbit/s. The product is architected to comply with the latest draft NIST standard SP800-90B for entropy sources and non-deterministic random bit generators.

“The Entropy Engine provides an excellent example of how a national laboratory and the private sector can combine their skills and resources to address real-world challenges,” said Los Alamos Chief Technology Officer Duncan McBranch. “Not only does the Entropy Engine benefit existing security applications today, but it also demonstrates an essential component of future quantum-safe systems. The potential technology shift due to quantum information and computing systems has been a long-term research focus at Los Alamos, and now with the Entropy Engine we are excited to see this promising technology in the marketplace.”

In addition to being provided as a standalone random number generator, the Entropy Engine also forms the heart of the Whitewood netRandom product that addresses the need for high quality entropy in distributed networks and applications. The widespread adoption of virtualization, migration to cloud computing, and the Internet of Things (IoT) all increase the challenge of capturing enough high-quality entropy. Deployed as a client-server solution, the netRandom product is designed to supply entropy across an entire datacenter or population of devices and enable existing systems to gain access to true random numbers without requiring modification to applications.

This year’s R&D 100 Award Winners will be announced at the annual awards dinner on November 3, 2016 at the Gaylord National Resort & Convention Center in Oxon Hill, Maryland near Washington, D.C.

Whitewood and Cryptsoft Partner to Deliver High-Performance Quantum Security to Enterprise Key Management

Cryptsoft, a leading provider of key management technology for global enterprise and brand-leading security equipment providers, integrates Whitewood’s quantum-powered true random number generator, the Entropy Engine.

Customers can now enhance their standards-based key management tools to address the increased scrutiny placed on random number generation – the essential foundation of all crypto-based operations.

Boston, USA and Brisbane, Australia (March 2, 2016) – Whitewood, which develops crypto-security solutions, and Cryptsoft, the major OEM provider of Key Management Interoperability Protocol (KMIP) technology to the enterprise key management security market, today announced completion of a technology integration between the Cryptsoft KMIP C Server SDK and the Whitewood Entropy EngineTM. With this integration, customers are able to bring the power of quantum-based true random number generation to a wide variety of key management deployments with a level of performance and surety that can satisfy the needs of the entire enterprise.

With rapidly accelerating adoption of all forms of cryptography, ranging from encryption of data at rest, to Internet and network-based encryption, digital signing, and strong authentication, almost every enterprise is faced with the challenge of managing keys securely and at scale. There are fundamental conflicts to address; keys must remain secret and yet need to be available to applications where any failure could bring business systems to a halt. If keys are lost, enormous volumes of valuable data may stay scrambled forever, and if keys can be cracked or guessed then data can be exposed with devastating impact.

To address these widespread issues requires the use of key management systems that are standards-based, built on a trusted foundation, and that support the entire key management lifecycle from the creation of keys, to their use by applications, archival and eventual secure destruction. The mission-critical nature of key management systems increasingly brings them into the spotlight of security audits and compliance activities and forces vendors and customers alike to constantly evolve the security capabilities of this vital component of any IT security infrastructure.

“The security of any key begins with the methods used to generate it. Any key that is not truly random and unpredictable weakens the overall crypto system and puts data at risk. Generating true random numbers that are used to create keys is surprisingly difficult and our customers are constantly looking for new and improved ways to increase their level of assurance,” said Tony Cox, Director, Strategy & Alliances, at Cryptsoft. “We can now offer more choice to our KMIP Server SDK customers through the integration of the Whitewood Encryption Systems’ Entropy Engine random number generator. This integration option has three important advantages – it employs quantum mechanics, a fundamentally random source of entropy, it provides extremely high performance, and it is proven technology that originates from the world-renowned Los Alamos National Laboratory. We are excited to work with Whitewood to bring this innovative technology to a mainstream market.”

“Key management technology is difficult to get right and organizations and vendors around the world have turned to Cryptsoft for their proven implementations. They have led the industry by championing standards such as the Key Management Interoperability Protocol,” said Richard Moulds, General Manager for Whitewood. “Cryptsoft has a clear understanding of emerging market requirements and working with them, together we can further address one of the fundamental crypto challenges. Random number generation is no longer an issue that can be taken for granted and establishing a high level of assurance is now a standard of due care for anyone deploying a key management system.”

When applications need random numbers today they typically rely on deterministic software processes within the operating system of the device or server on which they execute. These otherwise predictable outputs are randomized by capturing apparently random signals or data from the local hardware platform or environment. However, the degree to which these sources of randomness are truly unpredictable and random varies enormously and is notoriously unreliable to measure. This inevitably results in the quality of randomness varying from device to device, leading to inconsistency and doubt. The combined solution from Cryptsoft and Whitewood enables high-quality true random numbers to be created centrally and delivered using standards-based protocols as part of a broader key management solution.

Whitewood’s Entropy Engine and netRandomTM system will be on display at booth 4915 at the RSA Security Conference in San Francisco (February 29 – March 4).

Cryptsoft will also be presenting its solutions at RSA at booth 3030 in the North Hall. For more information, visit www.cryptsoft.com or email info@cryptsoft.com.

About Cryptsoft
Cryptsoft is a privately held Australian company with 20 years’ experience in the cryptographic and security markets. Cryptsoft’s Key Management Interoperability Protocol (KMIP) and PKCS#11 software development kits (SDKs) for Server and Client empowers vendors to provide the secure, simplified, and vendor-agnostic interoperable enterprise key management solutions the global market is demanding. Cryptsoft is an OASIS Foundational Sponsor, SNIA and SSIF Voting Member. www.cryptsoft.com

Whitewood and wolfSSL Partner to Integrate netRandom as Part of the wolfSSL Embedded Security Systems

Together, the companies are providing access to high-quality true random numbers for large-scale security applications across embedded, machine-to-machine (M2M), and Internet of Things (IoT) systems.

By incorporating netRandom into wolfSSL’s security certified toolkits, developers and security professionals can have confidence that cryptographic processes and data protection capabilities are operating at their required levels of security.

Boston and Edmonds, Washington (March 2, 2016) – Whitewood, which develops crypto-security solutions, and wolfSSL, a leading provider of security and connectivity technologies for the embedded, machine-to-machine (M2M), and Internet of Things (IoT) markets, are pleased to announce a technology and co-marketing partnership. With this partnership, wolfSSL will enable its customers to utilize Whitewood’s netRandom system to supply random numbers at scale to devices and distributed applications that incorporate wolfSSL’s embedded security system toolkits.

As demand accelerates for enhanced security for networked applications, product vendors and system operators are re-examining how they develop and deploy secure crypto capabilities. These applications span a huge range of hardware platforms and software environments, from smart devices in cars to routers, printers, credit-card scanners, and IP and mobile phones. The sheer diversity and scale of these deployments brings the issue of random generation, the very foundation of every crypto-security, to the forefront.

Whitewood’s netRandom product offers access to network-delivered true random numbers, helping to eliminate traditional dependencies on individual devices and host machines to capture entropy from their local environments and generate their own random numbers. By incorporating the netRandom Client into the wolfSSL toolkits, applications and devices have the enhanced ability to request true random numbers and seed values from a shared and high-quality entropy source, the netRandom Server.

“We live in a world where companies can no longer take random number generation for granted. It’s time for a more professional network-based approach to security, and by partnering with Whitewood, we are delivering that new standard,” said Larry Stefonic, Chief Executive Officer of wolfSSL. “Our clients will now have the choice of relying on local random number generators or supplementing them with high security random seeds from a trusted, shared source. This will be particularly valuable for customers that need to gain security certification for their products, as testing labs are quite rightly placing increasing emphasis on validating entropy sourcing and random number generation.”

In almost all cases today, random number generation is performed by deterministic software processes within the operating system. These otherwise predictable outputs are randomized by capturing apparently random signals or events from the hardware platform or local environment. However, the degree to which these sources of randomness are truly unpredictable and random varies enormously and is notoriously unreliable to measure. This inevitably results in the quality of randomness varying from device to device, leading to inconsistency and doubt, particularly across large-scale deployments.

“In today’s climate of heightened cybersecurity risks, product developers implementing encryption capabilities or other forms of cryptography need to access adequate supplies of true random numbers to ensure that they satisfy stringent security requirements,” said Richard Moulds, General Manager for Whitewood. “We have already seen many local configuration issues transition to network-synchronized capabilities, such as ‘time-of-day’ settings, and we expect entropy and random number generation to evolve in a similar way. netRandom helps to make that possible with a simple approach to boosting random number capabilities across a wide variety of platforms and applications, bringing a new level of consistency and assurance.”

Whitewood’s netRandom solution is the only network-based provider of random numbers supported by wolfSSL. The ability to request random seed data over the network can help overcome situations where individual devices lack the power and capability to capture local entropy and therefore generate truly random numbers and cryptographic keys – both essential items in securing IoT applications.

Whitewood’s netRandom system, as well as its flagship Entropy Engine, will be on display at booth 4915 at the RSA Security Conference in San Francisco (February 29 – March 4).

wolfSSL will also be presenting its solutions at RSA at booth S2619. For more information, visit www.wolfSSL.com.

About wolfSSL
Founded in 2004, wolfSSL is a dual licensed, open source and commercial company. wolfSSL provides high-end security, while also having a small enough footprint to be perfect for embedded systems. For more information, please visit http://www.wolfSSL.com.

Whitewood is a subsidiary of Allied Minds Federal Innovations, the division of Allied Minds dedicated to commercializing U.S.federal intellectual property. Allied Minds is an innovative U.S. science and technology development and commercialization company. Operating since 2006, Allied Minds forms, funds, manages and builds products and businesses based on innovative technologies developed at leading U.S. universities and federal research institutions. Allied Minds serves as a diversified holding company that supports its businesses and product development with capital, central management and shared services. More information about the Boston-based company can be found at www.alliedminds.com.

Whitewood