First update (#87)

Co-authored-by: Kevin Hsieh <[email protected]>

Author: qryptdev

content/_index.md

@@ -19,9 +19,17 @@ Below is a list of the products that Qrypt offers with links to their supporting
 ### [Quantum Entropy Appliance (on-prem)](eaas/appliance/)
 Qrypt's on-prem quantum entropy appliance is a server that is intentended for on-prem deployments. It exposes a REST API that clients can call to retrieve quantum entropy from the QRNG card installed on the server.
 
+### [Quantum Readiness](quantumreadiness/)
+
+Quantum readiness provides centralized deployment and management UI of all Qrypt products.
+
+### [Post quantum TLS proxy](postquantumproxy/)
+
+This post quantum TLS proxy allows for incoming TLS connections to use post quantum cryptography.
+
 ### [Quantum Entropy as a Service](/eaas/)
 
-Qrypt's Quantum Entropy service measures quantum effects and converts those measurements into pure random numbers. The service leverages multiple Quantum Random Number Generators (QRNGs) developed by national and international research labs to ensure the highest quality random.
+Qrypt's Quantum Entropy service measures quantum effects and converts those measurements into pure random numbers. The service leverages multiple Quantum Random Number Generators (QRNGs) developed in collaboration with national and international research labs to ensure the highest quality random.
 
 ### [Key Generation](sdk/)
 

content/openssh/_index.md

@@ -2,7 +2,7 @@
 menuTitle = "Qrypt OpenSSH"
 title = "Portable OpenSSH with Qrypt"
 date = 2021-10-18T08:59:39-04:00
-weight = 30
+weight = 32
 +++
 
 OpenSSH is a complete implementation of the SSH protocol (version 2) for secure remote login, command execution and file transfer. Our Qrypt modifications add a dash of quantum-secure.

content/postquantumproxy/_index.md

@@ -0,0 +1,27 @@
++++
+menuTitle = "Post quantum TLS proxy"
+title = "Post quantum TLS proxy"
+date = 2024-09-24T08:59:39-04:00
+weight = 31
+disableToc = "true"
++++
+
+## Overview
+
+This post quantum TLS proxy combines nginx, oqs OpenSSL, wireguard, and our quantum readiness orchestrator. This can be a stand alone proxy to serve content through traditional nginx configurations.
+
+### Setup
+
+There are some exposed environment variables to set the default nginx algorithms. See below.
+```
+DEFAULT_GROUPS: x25519:x448:kyber512:p256_kyber512:kyber768:p384_kyber768:kyber1024:p521_kyber1024
+DEFAULT_SIG_ALGS: dilithium3:dilithium5
+DEFAULT_CIPHERS: TLS_CHACHA20_POLY1305_SHA256
+MIN_PROTOCOL: TLSv1.3
+```
+
+It also uses a config file at /opt/nginx/example.conf. This config controls the log level and quantum readiness connection.
+
+A container image is provided and it can be simply run with `docker run -i -t --rm crypto-agility-orchestrator:latest sh` to interact with.
+
+Please reach out to [Qrypt](https://www.qrypt.com/contact/) for a demo or more information.

content/quantumreadiness/_index.md

@@ -0,0 +1,53 @@
++++
+menuTitle = "Quantum Readiness"
+title = "Quantum Readiness with Qrypt"
+date = 2024-09-24T08:59:39-04:00
+weight = 30
+disableToc = "true"
++++
+
+## Overview
+
+Quantum Readiness is Qrypt's single pane management console for all Qrypt products. Currently everything is containerized to support a wide range of machines and target environments.
+
+## General setup
+
+There are ports to set that allow frontend to backend communication. There are defaults set in the docker-compose.yaml.
+
+### Local
+
+There is a provided docker-compose.yaml. Run `docker-compose up -d` to bring up everything. The frontend should be available at http://localhost:8081/.
+
+### Cloud kubernetes
+
+Currently this is tested against the Azure cloud. This uses Microsoft Entra ID as the authentication system. WireGuard sidecar container are not covered here, but can be set up for further network security between external connections to this cluster. There will be an example kustomize yaml to follow. Below is a manual setup.
+
+Create a Microsoft Entra ID to be used as authentication. Note the link, client id, client secret, and redirect url.
+
+Deploy a postgres database to be used in conjection with the backend.
+
+Deploy the backend proxy container. The following ports will need to be exposed to other pods 8080, 50051, 50052, 50053.
+
+Deploy the backend container. Make sure the set the DBCONNSTR environment variable with a connection string to the post res database.
+
+Deploy the web api container. Make sure to set the BACKEND_API environment variable to the backend proxy and the 50051 port. Set the EXPRESS_LISTEN_PORT environment variable to the port to listen for incoming requests.
+
+Deploy the auth container. Make sure to set the LOGOUT_REDIRECT_URL to the frontend container's login URI. Set the REDIRECT_URL to the frontend container's auth-redirect URI. Set the EXPRESS_LISTEN_PORT environment variable to the port to listen for incoming requests. Set AUTHORITY environment variable to the Entra ID link. Set CLIENT_ID environment variable to the Entra ID client id. Set the CLIENT_SECRET environment variable to the Entra ID client secret.
+
+Deploy the frontend container. The default serving port is 5173. Make sure to set the VITE_AUTH_API to the proxy container's 50052 port. Make sure to set the VITE_BACKEND_API to the porxy container's 50053 port.
+
+The frontend should be available at the hostname set up for the cluster's external IP and the exposed frontend container. This should bring you to a login screen which is hooked up to the Entra ID set up.
+
+## Post quantum TLS proxy setup
+
+A WireGuard container is set up to run along side to allow for a symmetric key connection with the use of a preshared key. This will involve a standard WireGuard setup with generating keys and updating the WireGuard configuration to allow a connections. Please see our WireGuard sidecar container as an example.
+
+To add a post quantum TLS proxy, go through the UI and make sure the add the host name/ip and port that the proxy is set up to listen to GRPC connections. The UI should then show the proxy.
+
+## On-Prem appliance setup
+
+The on-prem appliance has to be reachable from the network which quantum readiness is deployed on. To add an on-prem appliance, go to the "on-prem appliance" tab and click "Add an appliance". Make sure to use the correct hostname or IP and port to connect to.
+
+### Demo
+
+Please reach out to [Qrypt](https://www.qrypt.com/contact/) for a demo or more information.

docs/404.html

@@ -9,15 +9,15 @@
   <title>404 Page not found</title>
 
 
-    <link href="./css/nucleus.css?1727201733" rel="stylesheet">
-    <link href="./css/fontawesome-all.min.css?1727201733" rel="stylesheet">
-    <link href="./css/hybrid.css?1727201733" rel="stylesheet">
-    <link href="./css/featherlight.min.css?1727201733" rel="stylesheet">
-    <link href="./css/perfect-scrollbar.min.css?1727201733" rel="stylesheet">
-    <link href="./css/theme.css?1727201733" rel="stylesheet">
-    <link href="./css/hugo-theme.css?1727201733" rel="stylesheet">
+    <link href="./css/nucleus.css?1727727456" rel="stylesheet">
+    <link href="./css/fontawesome-all.min.css?1727727456" rel="stylesheet">
+    <link href="./css/hybrid.css?1727727456" rel="stylesheet">
+    <link href="./css/featherlight.min.css?1727727456" rel="stylesheet">
+    <link href="./css/perfect-scrollbar.min.css?1727727456" rel="stylesheet">
+    <link href="./css/theme.css?1727727456" rel="stylesheet">
+    <link href="./css/hugo-theme.css?1727727456" rel="stylesheet">
 
-      <link href="./css/theme-mine.css?1727201733" rel="stylesheet">
+      <link href="./css/theme-mine.css?1727727456" rel="stylesheet">
 
 <style>
     :root #header + #content > #left > #rlblock_left {

docs/categories/index.html

@@ -3,7 +3,7 @@
   <head>
     <meta charset="utf-8">
     <meta name="viewport" content="width=device-width, initial-scale=1.0">
-    <meta name="generator" content="Hugo 0.105.0">
+    <meta name="generator" content="Hugo 0.134.3">
     <meta name="description" content="">
 
 
@@ -12,22 +12,22 @@
     <title>Categories :: Qrypt</title>
 
 
-    <link href="../css/nucleus.css?1727201733" rel="stylesheet">
-    <link href="../css/fontawesome-all.min.css?1727201733" rel="stylesheet">
-    <link href="../css/hybrid.css?1727201733" rel="stylesheet">
-    <link href="../css/featherlight.min.css?1727201733" rel="stylesheet">
-    <link href="../css/perfect-scrollbar.min.css?1727201733" rel="stylesheet">
-    <link href="../css/auto-complete.css?1727201733" rel="stylesheet">
-    <link href="../css/atom-one-dark-reasonable.css?1727201733" rel="stylesheet">
-    <link href="../css/theme.css?1727201733" rel="stylesheet">
-    <link href="../css/tabs.css?1727201733" rel="stylesheet">
-    <link href="../css/hugo-theme.css?1727201733" rel="stylesheet">
+    <link href="../css/nucleus.css?1727727456" rel="stylesheet">
+    <link href="../css/fontawesome-all.min.css?1727727456" rel="stylesheet">
+    <link href="../css/hybrid.css?1727727456" rel="stylesheet">
+    <link href="../css/featherlight.min.css?1727727456" rel="stylesheet">
+    <link href="../css/perfect-scrollbar.min.css?1727727456" rel="stylesheet">
+    <link href="../css/auto-complete.css?1727727456" rel="stylesheet">
+    <link href="../css/atom-one-dark-reasonable.css?1727727456" rel="stylesheet">
+    <link href="../css/theme.css?1727727456" rel="stylesheet">
+    <link href="../css/tabs.css?1727727456" rel="stylesheet">
+    <link href="../css/hugo-theme.css?1727727456" rel="stylesheet">
 
-    <link href="../css/theme-mine.css?1727201733" rel="stylesheet">
+    <link href="../css/theme-mine.css?1727727456" rel="stylesheet">
 
 
 
-    <script src="../js/jquery-3.3.1.min.js?1727201733"></script>
+    <script src="../js/jquery-3.3.1.min.js?1727727456"></script>
 
 
   </head>
@@ -270,6 +270,36 @@
 
 </li>
 
+<li
+  data-nav-id="/quantumreadiness/"
+  title="Quantum Readiness with Qrypt"
+  class="dd-item
+        
+        
+        
+        "
+>
+  <a href="../quantumreadiness/">
+    Quantum Readiness 
+  </a>
+   
+</li>
+           
+<li
+  data-nav-id="/postquantumproxy/"
+  title="Post quantum TLS proxy"
+  class="dd-item
+        
+        
+        
+        "
+>
+  <a href="../postquantumproxy/">
+    Post quantum TLS proxy 
+  </a>
+   
+</li>
+           
 <li
   data-nav-id="/openssh/"
   title="Portable OpenSSH with Qrypt"
@@ -745,6 +775,38 @@ <h1>
 
 
 
+                    
+
+                    
+            
+        
+                    
+                        
+            
+            
+                
+                    
+                
+                
+
+                    
+                    
+                    
+
+                    
+            
+        
+                    
+                        
+            
+            
+                
+                    
+                
+                
+
+                    
+                    
 
 
 
@@ -832,19 +894,19 @@ <h1>
     <div style="left: -1000px; overflow: scroll; position: absolute; top: -1000px; border: none; box-sizing: content-box; height: 200px; margin: 0px; padding: 0px; width: 200px;">
       <div style="border: none; box-sizing: content-box; height: 200px; margin: 0px; padding: 0px; width: 200px;"></div>
     </div>
-    <script src="../js/clipboard.min.js?1727201733"></script>
-    <script src="../js/perfect-scrollbar.min.js?1727201733"></script>
-    <script src="../js/perfect-scrollbar.jquery.min.js?1727201733"></script>
-    <script src="../js/jquery.sticky.js?1727201733"></script>
-    <script src="../js/featherlight.min.js?1727201733"></script>
-    <script src="../js/highlight.pack.js?1727201733"></script>
+    <script src="../js/clipboard.min.js?1727727456"></script>
+    <script src="../js/perfect-scrollbar.min.js?1727727456"></script>
+    <script src="../js/perfect-scrollbar.jquery.min.js?1727727456"></script>
+    <script src="../js/jquery.sticky.js?1727727456"></script>
+    <script src="../js/featherlight.min.js?1727727456"></script>
+    <script src="../js/highlight.pack.js?1727727456"></script>
     <script>hljs.initHighlightingOnLoad();</script>
-    <script src="../js/modernizr.custom-3.6.0.js?1727201733"></script>
-    <script src="../js/learn.js?1727201733"></script>
-    <script src="../js/hugo-learn.js?1727201733"></script>
+    <script src="../js/modernizr.custom-3.6.0.js?1727727456"></script>
+    <script src="../js/learn.js?1727727456"></script>
+    <script src="../js/hugo-learn.js?1727727456"></script>
 
 
-            <script src="../mermaid/mermaid.js?1727201733"></script>
+            <script src="../mermaid/mermaid.js?1727727456"></script>
 
         <script>
             mermaid.initialize({ startOnLoad: true });

docs/categories/index.xml

@@ -4,7 +4,8 @@
     <title>Categories on Qrypt</title>
     <link>https://QryptInc.github.io/categories/</link>
     <description>Recent content in Categories on Qrypt</description>
-    <generator>Hugo -- gohugo.io</generator>
-    <language>en-us</language><atom:link href="https://QryptInc.github.io/categories/index.xml" rel="self" type="application/rss+xml" />
+    <generator>Hugo</generator>
+    <language>en-us</language>
+    <atom:link href="https://QryptInc.github.io/categories/index.xml" rel="self" type="application/rss+xml" />
   </channel>
 </rss>