QuantVision FAQs
QubitVision Frequently Asked Questions
The Short Answer: It is a CBOM (Cryptographic Bill of Materials) dashboard.
The Enthusiast Answer: Think of it as an “X-ray” for your software’s security. While standard scanners look for surface-level bugs, QuantVision looks at the math (the cryptography) holding your house together. It identifies every lock, key, and signature to ensure they aren’t “Quantum-Vulnerable.”
SHA-256 is just a digital fingerprint—it tells you if the data changed. HMAC-SHA256 adds a Secret Key to that fingerprint.
- SHA-256 is like a seal on a letter.
- HMAC-SHA256 is like a seal that only glows under a specific UV light that only you and the recipient own. It proves the data is both intact and authentic.
A JWT (JSON Web Token) is like a Digital VIP Wristband.
- Stateless means the server doesn’t need to “remember” who you are.
- Instead of looking you up in a database every time you click a button, the server just checks the HMAC-SHA256 signature on your wristband. If the signature is valid, you’re in. This allows apps to scale to millions of users without slowing down.
These are the new CNSA 2.0 standards designed to survive a quantum computer attack:
- ML-KEM (The Vault Builder): Used for safely sending secret keys. (Replaces RSA/Diffie-Hellman).
- ML-DSA (The Notary): Used for digital signatures to prove who you are. (Replaces RSA-Sig/ECDSA).
These are Stateful Hash-Based Signatures. They are used for ultra-critical things like Firmware Updates. Unlike other math that might be “guessed” one day, these use a mathematical “tree” where every signature is carved in stone. They are incredibly secure but require perfect “bookkeeping” (you can’t use the same “leaf” twice).
- Hardcoded: Welding a specific lock onto a door. If the lock breaks, you have to tear the wall down to fix it.
- Direct Call: Ordering a specific brand of lock by name. If that brand goes bankrupt (or the algorithm is hacked), your code won’t work.
- The Fix: We use the Factory Pattern, which allows the app to just ask for a “High-Security Lock” and lets the system pick the best one available that day.
It’s the “Wild West.” It’s when every developer in your company picks their own encryption methods and hides their own keys. QuantVisionfixes this by creating a Centralized Map (the CBOM) so you can manage your security from one cockpit.
It’s a 0–10 “Danger Thermometer”:
- 9.0 – 10.0 (Critical): The house is on fire. Fix it now.
- 7.0 – 8.9 (High): A hacker is at the door. Fix it this week.
- 4.0 – 6.9 (Medium): There’s a crack in the window. Fix it soon.
- CWE (The Weakness): The “Bad Habit.” (e.g., “Leaving the door unlocked.”)
- CVE (The Vulnerability): The “Specific Event.” (e.g., “The back door of Office Building A was found unlocked on Tuesday.”)
QuantVision tracks both to help you fix the specific bug and train your team to stop making the mistake.
It’s the ultimate goal. It means your software is designed so you can swap out encryption algorithms instantly without rewriting any code. It’s the difference between a hard-wired lamp and one you can just unplug and move to a new outlet.
