The Red Hat Ecosystem Catalog is the official source for discovering and learning more about the Red Hat Ecosystem of both Red Hat and certified third-party products and services.
We’re the world’s leading provider of enterprise open source solutions—including Linux, cloud, container, and Kubernetes. We deliver hardened solutions that make it easier for enterprises to work across platforms and environments, from the core datacenter to the network edge.

A software platform that creates symmetric encryption keys at scale for any endpoint device, providing security against current and future cyber threats, including quantum attacks.
Arqit's SKA-Platform™ delivers quantum-safe encryption by enabling endpoints to dynamically create symmetric keys on demand. Through lightweight software agents, it manages key creation based on predefined security and network policies, brokering shared symmetric keys using standards-compliant cryptography. Keys are generated dynamically at scale and can be integrated across multiple layers of the OSI stack. The platform integrates easily with applications and networking protocols using well-known standards such as ETSI GS QKD 014, RFC 8784 and RFC 9370. SKA-Platform implements FIPS 203 ML-KEM and aligns with CNSA Suite 2.0 and NIST CSfC SKM Annex 2.1, with an optional FIPS 140-3 validated module (Bouncy Castle, Level 1) where required.
The core differentiator. SKA-Platform facilitates the dynamic generation of symmetric keys at scale on endpoints that can be used for authentication and/or encryption of communications across untrusted networks, protecting sensitive data against classical cyber and quantum threats. Keys are dynamically generated and forward-rotated, providing forward secrecy and eliminating the manual key management errors and risks of long-lived static pre-shared keys.
It supports zero-trust architectures to provide continuous device authentication and granular access control. Administrators get real-time management of endpoints with granular device policies, ad-hoc creation and reforming of security groups, and device quarantine for flexible network access control.
A simple, small-footprint overlay to existing infrastructure that avoids rip-and-replace by integrating seamlessly with PKI and IPsec. It requires only a lightweight software integration at the endpoint, uses fewer resources than both existing public-key cryptography and upcoming post-quantum algorithms, and is suitable for resource-constrained devices like IoT.
Cryptographic agility that adapts to any future key size without impacting speed and performance, independent of any hardware requirements. It conforms to NIST SP 800-71 and CNSA 2.0 cryptography standards (e.g. AES-256), and enables compliance with National Security Memorandum NSM-10 and NSA CSfC Symmetric Key Management Requirements Annex 2.1, with FIPS 140-3 Inside.
SKA-Platform protects data against both current cyber threats and the coming quantum threat. The most pressing risk is "harvest-now, decrypt-later," where adversaries harvest encrypted traffic today and wait for quantum capability to break it — which leaves long-lived data such as trade secrets, health records and national security information exposed right now. At the same time, networks are expanding across SD-WAN, 5G and edge environments, multiplying endpoints beyond the traditional perimeter, while sovereignty and PQC migration deadlines tighten across the UK, EU and US. SKA-Platform addresses all three pressures by generating quantum-safe symmetric encryption keys on demand at the endpoints that need them.
Rather than relying solely on public-key cryptography, SKA-Platform dynamically generates symmetric encryption keys directly between endpoints. Each device is provisioned with a registration key (delivered manually or over the air using post-quantum algorithms including NIST-standardised ML-KEM), which provides mutual authentication and is rotated on every successful authentication for perfect forward secrecy. The key agreement protocol then brokers shared symmetric keys between devices using standards-compliant cryptography, optionally layering in ML-KEM. This defence-in-depth, hybrid approach protects long-lived data today while giving you crypto-agility to switch algorithms as PQC standards evolve.
No. SKA-Platform is a lightweight overlay designed to work with what you already have. It hardens VPNs and critical links with on-demand encryption keys layered with standards-aligned cryptography, with no rip-and-replace, working with major OEMs and open interfaces. It integrates with applications and networking protocols through well-known standards and is light enough on resources to suit constrained and edge devices. This makes it especially valuable where infrastructure is hard to reach, has restrictive access controls, or otherwise depends on manual key management such as static pre-shared keys.
Yes. SKA-Platform is built for sectors with the highest assurance demands — telecoms, defence, and government and critical national infrastructure — and is aligned to recognised standards and compliance frameworks, including FIPS 140-3 validation, ML-KEM (FIPS 203), CNSA 2.0 cryptography, and NIST CSfC symmetric key requirements for Commercial Solutions for Classified architectures. It supports zero-trust deployments with continuous device authentication, granular policy control, and high-frequency key rotation, and can be deployed from network core to tactical edge regardless of size, weight and power constraints.