NIST PQC · ICS Security Research

QUOTAS Framework (QUantum-safe OT Assessment Sandbox)

Evaluate post-quantum cryptographic suites across a full Purdue architecture model under constrained edge-hardware conditions. Observe end-to-end telemetry traversal and measure jitter impact on deterministic control loops.

ⓘ Topology Note: The 5-layer Purdue model is shown for architectural context. Nodes with dashed borders are passive structural representations. The animated telemetry traces the precise 4-node Docker benchmark harness (HMI ➔ Corp VPN ➔ Plant VPN ➔ Golden PLC).
LVL 5 LVL 4 LVL 3.5 LVL 3 LVL 1/2 Enterprise Network IT / Corporate LAN · 192.168.10.0/24 Industrial DMZ / Untrusted WAN · 172.16.0.0/24 Operations Support / MES Control & Field Devices · 10.0.20.0/24 OQS-OpenVPN · AES-GCM + CLASSICAL Enterprise SCADA Server historian.corp · 10.100.1.5 PASSIVE MONITOR / READ-ONLY Corporate HMI Python Telemetry Engine hmi.corp.lan · 192.168.10.10 Corporate VPN GW OQS-OpenVPN Provider vpn.corp.lan · 172.16.0.20 Plant VPN Gateway Throttled Edge (OQS) vpn.plant.ot · 172.16.0.10 Operations Historian OSIsoft PI / InfluxDB Relay historian.ot · 10.0.20.100 Golden PLC OpenPLC v4 (C++ Runtime) plc.ot · 10.0.20.50 Field RTU 10.0.20.51 · Modbus 0.1× CPU LIMIT Sensor Array 10.0.20.60 · PROFINET READ-ONLY / PASSIVE
Round-Trip
milliseconds
PLC Jitter
ms std-dev
KEM Overhead
ms vs. baseline
Execution Log — Real-Time
◈ ◉ ◈
Initializing environment...
IT / Corporate
DMZ / Tunnel
OT / Operations
Control / Field
Passive Monitor