NQX™
Quantum-ready protection for critical data in transit
SSH.COM NQX™ is quantum-ready encryption software for transporting Ethernet and IP traffic across any network, private or public. It provides state-of-the-art cryptographic protection against data leaks, breaches, misuse and interference at Finnish TL III (EU confidential) level for data centers, offices and sites.
Fast transfers with minimal impact on the user experience
Persistent encryption down to the last byte of data
Defend against advanced DDoS threats
protection beyond tomorrow
Long-term data protection for permanent secrets
Advances in Quantum Computing threaten long term data confidentiality by allowing new attacks towards key exchange and authentication. Moreover, encrypted data captured today can be hacked when quatum computing is available.
NQX’s Quantum Safe Cryptography (QSC) key exchange and authentication methods together with strong encryption ensure your data will stay safe over time, even after the emergence of the quantum threat.
BUSINESS AS USUAL
Secured service availability
To ensure service availability is one of the cornerstones of network security. DDoS and similar attacks against service availability are cheap and easily available as of today.
NQX’s high resiliency to networks attacks using sophisticated dual IP stack and adaptive key exchange allows you to stay operational even under severe attacks.
Less is more
Attack footprint minimized
Operating over (untrusted) networks expose resources used in these networks to various known and unknown attacks.
NQX minimizes complexity by implementing only the minimal number of software components to achieve robust secure network interconnections. Complex unified network devices with a higher attack footprint can be placed inside a hihgly-protected environment secured by NQX.
Single pane of glass
Operations made Easy
Operating a secure network is can be labor-intensive. Setting up tunnels, keys and other security parameters with a variety of tools is prone to errors. Providing timely and consistent view of a large distributed system state from various logs is hard, and a failure to do so will leave the door open for unwanted visitors.
NQX Central manager (CM) provides an easy-to-use tool for all tasks needed for day-to-day operations. CM’s sophisticated workflow and repository functions help administrators to provision well maintained services with consistent security.
Robust encryption at high speed
Your data is secure between data centers, and on transport networks, like WAN (Wide Area Network) and the Internet, without detrimental effects to either the payload or control data.
Persistent encryption down to the last byte
With NQX rule-based forwarding, every data packet can be forced to use the selected output interface and next-hop address, overruling normal routing. This ensures secure data routing that meets your strict security policies and regulatory mandates.
Defend against advanced DDoS threats
When protecting national business-critical network communications, compliance and regulations (such as GDPR and NISD2) are just the beginning. With quantum-ready algorithms, you are guaranteed to secure data-in-transit even under heavy Distributed Denial of Service (DDoS) attacks.
Connectivity off-the-shelf
The NQX appliance portfolio includes various models to meet requirements ranging from small remote sites to data centers. A robust desktop model allows flexible deployment in even the harshest environments. The rack-mountable appliance can deliver tens of Gigabits of bandwidth of encrypted data with minimal latency.
Centralized control and high availability
Manage, create and adjust security policies and VPN connections with a centrally-managed and browser-based UI. Forget managing large amounts of parameters and replace with simple workflow tools. Improve efficiency while mitigating the risk of human error and misconfiguration.
State-of-the-art encryption ready for tomorrow's networks
New software versions can be easily updated to NQX nodes via the central management tool. The NQX architecture allows implementing new features on currently available appliance models. New features don't require hardware upgrades.
What makes NQX quantum-ready?
- NQX uses quantum-resilient encryption and authentication algorithms
- NQX comes with key exchange support hardening to mitigate against quantum threats
- NQX is software-based to enable easy, fast and cost-effective future transition to post-quantum cryptography (PQC) algorithms
- NQX is upgradeable to Quantum Safe and to Post Quantum Cryptography
- The Utility data plane is protected from Quantum Threat using non-scaleable technologies
- NQX is protected from the Quantum Threat using new set of algorithms that are believed to be hard for Quantum Computers
Learn more about NQX customers and use cases
