| Internet-Draft | SRv6 QKD Relay Framework | July 2026 |
| Chen, et al. | Expires 7 January 2027 | [Page] |
Quantum Key Distribution (QKD) links generate symmetric key material between directly connected QKD nodes. Trusted relay is commonly used to extend key delivery beyond the reach of a single QKD link. A complete trusted-relay service requires the network to collect QKD link capacity and node trust information, compute a relay path according to service requirements, translate the result into an SRv6 path, and carry the relayed key information in an IPv6/UDP packet steered by that SRv6 path.¶
This document describes an architectural framework for such a service. Each QKD link provides its available quantum key rate capacity, and each relay node provides a trust level. A controller uses these inputs together with application requirements to calculate a relay path. The path-computation algorithm is not standardized and may be selected or defined by the user, operator, or implementation. The calculated relay sequence is represented as an SRv6 path, and UDP packets following that path carry the key-relay information.¶
This document identifies the protocol extension points needed to support the framework. The detailed encodings, message formats, SRv6 behaviors, TLVs, and signaling procedures are left for future work and are marked as TBD.¶
This Internet-Draft is submitted in full conformance with the provisions of BCP 78 and BCP 79.¶
Internet-Drafts are working documents of the Internet Engineering Task Force (IETF). Note that other groups may also distribute working documents as Internet-Drafts. The list of current Internet-Drafts is at https://datatracker.ietf.org/drafts/current/.¶
Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced, or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference material or to cite them other than as "work in progress."¶
This Internet-Draft will expire on 7 January 2027.¶
Copyright (c) 2026 IETF Trust and the persons identified as the document authors. All rights reserved.¶
This document is subject to BCP 78 and the IETF Trust's Legal Provisions Relating to IETF Documents (https://trustee.ietf.org/license-info) in effect on the date of publication of this document. Please review these documents carefully, as they describe your rights and restrictions with respect to this document. Code Components extracted from this document must include Revised BSD License text as described in Section 4.e of the Trust Legal Provisions and are provided without warranty as described in the Revised BSD License.¶
Quantum Key Distribution provides a method for generating shared symmetric keys between two QKD systems. The physical distance of a single QKD link is limited by optical attenuation, noise, equipment capability, and deployment conditions. Large-scale QKD networks therefore commonly use trusted relay nodes to deliver key material across multiple QKD links.¶
Trusted relay is not only a key-management function. It also requires a network path that selects the correct relay nodes in the correct order. The path should take into account at least two QKD-specific properties:¶
After the path is calculated, the network must enforce the selected relay sequence and carry the key-relay information between the nodes. This document uses SRv6 as the path-steering mechanism and UDP as the transport for the key-relay information.¶
The framework is intended to connect four previously separated functions:¶
This document focuses on the architecture and protocol requirements. It does not define detailed wire formats or a mandatory path-computation algorithm.¶
The key words MUST, MUST NOT, REQUIRED, SHALL, SHALL NOT, SHOULD, SHOULD NOT, RECOMMENDED, NOT RECOMMENDED, MAY, and OPTIONAL in this document are to be interpreted as described in BCP 14 [RFC2119] [RFC8174] when, and only when, they appear in all capitals, as shown here.¶
This document specifies an architectural framework in which:¶
The following items are outside the scope of this document:¶
All such protocol details are left as TBD.¶
A conventional IP path is selected mainly according to reachability and network metrics. Such a path may not be suitable for QKD key relay because it does not necessarily consider QKD key availability or node trustworthiness.¶
For example, the shortest IP path may traverse:¶
A QKD relay service therefore needs a mechanism that connects path computation with packet forwarding. The controller first selects a relay path based on QKD-specific inputs and service requirements. It then expresses that path as an SRv6 segment list so that key-relay packets visit the selected relay nodes in the selected order.¶
The key-relay information is carried in the UDP payload. Each trusted relay node processes the received information and forwards a new or updated UDP packet toward the next relay according to the SRv6 path.¶
The framework contains the following logical components:¶
+--------------------+ resource and trust +-------------+
| QKD Links and | ----------------------------> | |
| QKD Relay Nodes | | |
+--------------------+ | |
| QKD |
+--------------------+ service request | Controller |
| Application or KME | ----------------------------> | |
+--------------------+ | |
+------+------+
path install |
+----------------------------------------------------+
|
v
+---------+ +-----------+ +-----------+ +---------+
| Source |----->| Relay R1 |----->| Relay R2 |----->| Dest. |
| QKD/KME | | SRv6/QKD | | SRv6/QKD | | QKD/KME |
+---------+ +-----------+ +-----------+ +---------+
SRv6-steered IPv6/UDP key-relay packets
The components may be implemented in separate physical devices or combined in one device. For example, an SRv6 router and a QKD key management entity may be integrated or connected through a protected local interface.¶
The general information flow is:¶
Quantum Key Rate Capacity, referred to as QKRC in this document, is a metric describing the QKD key-generation resource associated with a QKD link.¶
The value SHOULD represent the amount of key material that can be made available to new key-relay services. Depending on the implementation, it may represent:¶
The exact capacity model is deployment specific. A controller MUST understand the semantics of the value before using it for path computation.¶
A QKD link with no usable key-generation capability MUST NOT be selected for a new key-relay path.¶
The protocol used to advertise QKRC and its detailed encoding are TBD.¶
Node Trust Level, referred to as NTL in this document, is a policy-defined metric representing the degree of trust assigned to a QKD relay node.¶
An implementation may use a five-level model such as:¶
The specific criteria associated with each level are defined by the operator, user, or applicable assurance framework. Trust levels from different administrative or assurance domains may not be directly comparable.¶
A service may require that every selected trusted relay node meet a minimum NTL.¶
The protocol used to advertise NTL and its detailed encoding are TBD.¶
A key-relay request may contain one or more of the following requirements:¶
The exact service-request interface and message format are TBD.¶
The controller uses the QKD topology information and service requirements to select a trusted relay path.¶
A valid path SHOULD satisfy all mandatory service constraints. At a minimum, the controller SHOULD verify that:¶
The controller MAY consider additional information, including IP transport cost, link latency, key-pool status, network congestion, failure risk, administrative boundaries, or protection policy.¶
This document does not define or require a specific path-computation algorithm.¶
The algorithm MAY be:¶
Different algorithms may produce different valid paths for the same input. Such differences do not affect protocol interoperability, provided that the resulting relay path can be represented as an SRv6 path and installed consistently at the participating nodes.¶
The output of path computation is an ordered sequence of trusted relay nodes from the source to the destination.¶
The controller maps each relay node to an SRv6 segment or SRv6 service instruction. The resulting SRv6 path MUST preserve the relay order selected by the path-computation function.¶
The detailed mapping between a trusted relay node and an SRv6 SID is TBD.¶
The controller MAY also insert transport-related segments when needed to constrain the classical IP path between two trusted relay nodes. The detailed rules are TBD.¶
SRv6 provides an ordered list of network instructions that can be carried in an IPv6 packet. In this framework, the SRv6 path represents the ordered trusted relay sequence selected by the controller.¶
Each trusted relay node SHOULD be explicitly represented in the SRv6 path. This ensures that the key-relay packet is processed by all selected relay nodes in the required order.¶
The framework may require one or more SRv6 extensions to identify a QKD trusted relay function or to associate an SRv6 SID with a local key-relay service.¶
The specific SRv6 endpoint behavior, SID format, signaling method, and processing rules are TBD.¶
The SRv6 packet carries a UDP datagram. The UDP payload carries the information required by the trusted key-relay process.¶
The UDP payload may need to contain information such as:¶
This list identifies functional requirements only. It does not define a wire format.¶
The UDP port, message types, field encoding, cryptographic container, and message-protection mechanism are TBD.¶
When a key-relay packet reaches a trusted relay node, the node performs the trusted relay function associated with that SRv6 processing point.¶
The logical processing includes:¶
At the destination, the key information is delivered to the destination KME or application.¶
The exact packet-processing behavior and the division of functions between the SRv6 node and the KME are TBD.¶
This section identifies the protocol areas that require extension. Only the extension objectives are defined. All detailed formats and procedures are TBD.¶
A protocol extension is required to advertise the quantum key rate capacity of each QKD link to the controller.¶
The extension SHOULD support:¶
The protocol selected for carrying this information and the detailed extension format are TBD.¶
Possible protocol families may include a link-state routing protocol, BGP-LS, a management protocol, or a controller-specific interface. No specific choice is made in this document.¶
A protocol extension is required to advertise the trust level and QKD relay capability of each node.¶
The extension SHOULD support:¶
The protocol selected for carrying this information and the detailed extension format are TBD.¶
A mechanism is required for the controller to install the calculated SRv6 path at the source and, when necessary, at the trusted relay nodes.¶
The mechanism SHOULD support:¶
The use of an existing SR Policy mechanism or another controller-to-device protocol is possible. The selected mechanism and any required extension are TBD.¶
An SRv6 extension may be required to identify that a segment invokes a QKD trusted relay function.¶
The extension may be realized by a dedicated SRv6 endpoint behavior, a service SID, an argument carried in a SID, a policy association, or another SRv6 mechanism.¶
The selected mechanism, code point, SID structure, and processing behavior are TBD.¶
The key-relay packet may require non-secret context that is visible to the SRv6 and relay-processing functions.¶
Such context may include:¶
The context may be carried in an SRH TLV, another IPv6 extension, the UDP payload, or local policy state.¶
The selected location, encoding, mutability rules, and protection method are TBD.¶
Key material itself SHOULD NOT be carried in an unprotected SRv6 or IPv6 header field.¶
A UDP-based protocol extension or new protocol is required to carry the key-relay information.¶
The protocol SHOULD support:¶
The UDP port, versioning model, common header, payload encoding, key-protection method, and algorithm negotiation are TBD.¶
A key-relay service may require confirmation that the destination has accepted the relayed key.¶
The framework therefore requires a mechanism for:¶
The message types, timers, retry rules, state machine, and error codes are TBD.¶
QKD link capacity and node trust information may change over time. A controller SHOULD use sufficiently fresh information when admitting a new key-relay service.¶
A controller SHOULD coordinate the following operations:¶
When the relay path changes, the controller SHOULD ensure that packets associated with the old path are not incorrectly processed on the new path.¶
The specific reservation, transaction, and make-before-break procedures are TBD.¶
An implementation SHOULD provide management and telemetry for:¶
Management systems MUST NOT expose plaintext key material or QKD link keys in logs, telemetry, alarms, or diagnostic output.¶
The detailed YANG models, telemetry models, and management interfaces are TBD.¶
This document makes no IANA requests.¶
Future documents that define the protocol extensions identified in Section 8 may request allocations for SRv6 endpoint behaviors, SRH TLVs, routing-protocol TLVs, UDP service names or port numbers, message types, error codes, or other protocol parameters.¶
This appendix provides a non-normative example.¶
Assume the following relay topology:¶
Source S ---- Relay R1 ---- Relay R2 ---- Destination D
Each QKD link reports its available quantum key rate capacity. R1 and R2 report their node trust levels.¶
An application requests a key-relay service from S to D with:¶
The controller performs the following actions:¶
The detailed routing-protocol extensions, SRv6 behavior, packet formats, state machine, and cryptographic processing are all TBD.¶