QuantumLockβ’ Technical Datasheet
SoftQuantus QuantumLock - Technical Specificationsβ
Architecture Overviewβ
Internet
β
ββββββββββββββββΌβββββββββββββββ
β QUANTUMLOCK API β
β License Generation & β
β Revocation Service β
ββββββββββββββββ¬βββββββββββββββ
β
ββββββββββββββββββββββββββββΌβββββββββββββββββββββββββββ
β β β
βΌ βΌ βΌ
βββββββββββββββββ βββββββββββββββββ βββββββββββββββββ
βLICENSE SERVICEβ βQUANTUM ENGINE β βEVIDENCE AUTH β
β β β β β β
β Generate βββββββββΊβ 16-Qubit Sim βββββββββΊβ Bundle Gen β
β Validate β β SHA3-512 Hash �β β PQC Signing β
β Revoke β β Entropy Pool β β Compliance β
βββββββββ¬ββββββββ βββββββββ¬ββββββββ βββββββββ¬ββββββββ
β β β
ββββββββββββββββββββββββββΌβββββββββββββββββββββββββ
β
ββββββββββββββββββββββββββΌβββββββββββββββββββββββββ
β β β
βΌ βΌ βΌ
βββββββββββββββββ βββββββββββββββββ βββββββββββββββββ
β KEY MANAGEMENTβ β AUDIT SERVICE β β ARTIFACT REG β
β β β β β β
β ML-DSA Keys β β Chain Hash β β Build Hashes β
β Rotation β β Event Log β β Manifest β
β HSM Optional β β SIEM Export β β Verification β
βββββββββββββββββ βββββββββββββββββ βββββββββββββββββ
β
ββββββββββββββΌβββββββββββββ
β β β
βΌ βΌ βΌ
ββββββββββββ ββββββββββββ ββββββββββββ
βPostgreSQLβ β Redis β β Blob β
β Primary β β Cache β β Storage β
ββββββββββββ ββββββββββββ ββββββββββββ
Core Componentsβ
SDK Runtime (quantumlock-sdk)β
| Specification | Value |
|---|---|
| Language | Python 3.10+ |
| Package Size | ~2MB (compiled) |
| Dependencies | None (standalone) |
| Memory Footprint | ~15MB |
| Startup Time | < 5ms (offline validation) |
| Protection | Nuitka-compiled binary |
CLI Tool (quantumlock-cli)β
| Specification | Value |
|---|---|
| Language | Python 3.10+ |
| Binary Size | ~8MB (Nuitka) |
| Platforms | Linux, macOS, Windows |
| Output Formats | JSON, YAML, Table |
| Shell Completions | Bash, Zsh, Fish |
API Service (quantumlock-api)β
| Specification | Value |
|---|---|
| Framework | FastAPI + Uvicorn |
| Architecture | Microservices, stateless |
| Scaling | Horizontal, container-native |
| Container | OCI-compliant (Docker) |
| Image Size | ~150MB |
| Memory Footprint | ~200MB base |
Cryptographic Specificationsβ
Quantum Fingerprint Algorithmβ
| Parameter | Value |
|---|---|
| Name | QuantumFingerprint-16Q-SHA3-512 |
| Qubits | 16 (simulated) |
| Hash Function | SHA3-512 |
| Signature Size | 256 bytes |
| Security Level | 256-bit equivalent |
Signature Algorithmsβ
| Purpose | Algorithm | Key Size | Standard |
|---|---|---|---|
| License Signing | Ed25519 | 256-bit | RFC 8032 |
| PQC Signatures | ML-DSA-65 | Level 3 | FIPS 204 |
| Evidence Proofs | Ed25519 + ML-DSA-65 | Dual | Hybrid |
| Legacy Support | RSA-2048 | 2048 | PKCS#1 |
Hash Functionsβ
| Purpose | Algorithm | Standard |
|---|---|---|
| License Hash | SHA3-512 | FIPS 202 |
| Chain Hash | SHA-256 | FIPS 180-4 |
| Content Digest | BLAKE3 | N/A |
Entropy Sourcesβ
| Priority | Source | Entropy Rate |
|---|---|---|
| 1 | Hardware RNG (RDRAND) | High |
| 2 | /dev/urandom | Medium-High |
| 3 | Quantum Simulation | Supplementary |
License Formatβ
License File Structure (.qlicense)β
{
"version": "2.0",
"license_id": "QL-2026-XXXX-YYYY-ZZZZ",
"customer": {
"id": "cust_abc123",
"name": "Acme Corporation",
"email": "license@acme.com"
},
"product": {
"id": "prod_xyz789",
"name": "MyApp Enterprise",
"version_constraint": ">=2.0.0,<3.0.0"
},
"validity": {
"issued_at": "2026-01-01T00:00:00Z",
"expires_at": "2027-01-01T00:00:00Z",
"grace_days": 7
},
"features": ["feature_a", "feature_b", "api_access"],
"limits": {
"max_users": 100,
"max_machines": 5
},
"quantum_fingerprint": {
"algorithm": "QuantumFingerprint-16Q-SHA3-512",
"state_vector": "base64_encoded_quantum_state",
"measurement_basis": "computational"
},
"signatures": {
"ed25519": "base64_ed25519_signature",
"ml_dsa_65": "base64_ml_dsa_signature"
},
"metadata": {
"issuer": "SoftQuantus",
"chain_hash": "abc123..."
}
}
License Typesβ
| Type | Description | Use Case |
|---|---|---|
| Time-Based | Valid for N days | Subscription |
| Perpetual | No expiration | One-time purchase |
| Feature-Based | Specific features enabled | Tiered products |
| Machine-Locked | Bound to hardware | Enterprise |
| Floating | N concurrent activations | Team licenses |
Validation Flowβ
Offline Validation (< 5ms)β
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
β OFFLINE VALIDATION β
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ€
β β
β 1. LOAD LICENSE 2. VERIFY SIGNATURE 3. CHECK β
β βββββββββββββββ βββββββββββββββββ βββββββββ β
β β
β Read .qlicense βββΊ Ed25519.verify() βββΊ Expiry OK? β
β Parse JSON Quantum fingerprint Features OK? β
β Cache in memory Hash verification Machine OK? β
β β
β Result: VALID | INVALID | EXPIRED | REVOKED (cached) β
β β
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
Online Sync (Background)β
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
β BACKGROUND SYNC β
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ€
β β
β 1. CHECK API 2. VERIFY STATUS 3. CACHE β
β ββββββββββ ββββββββββββββ βββββββββ β
β β
β POST /v1/validate βββΊ API validates βββΊ Update local β
β license_id + hash Returns status revocation β
β (async, non-blocking) + metadata cache β
β β
β Frequency: Every 15 min (configurable) β
β Timeout: 5 seconds (does not block app) β
β β
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
API Specificationsβ
REST APIβ
| Specification | Value |
|---|---|
| Base URL | https://quantumlock.softquantus.com |
| Format | JSON |
| Versioning | URL path (/v1/) |
| Documentation | OpenAPI 3.1 |
| Rate Limiting | 1000 req/min per API key |
| Authentication | X-API-Key header |
Endpoints Summaryβ
| Method | Endpoint | Description |
|---|---|---|
| POST | /v1/licenses/generate | Generate new license |
| POST | /v1/licenses/validate | Validate license online |
| POST | /v1/licenses/{id}/revoke | Revoke license |
| GET | /v1/licenses/{id} | Get license details |
| GET | /v1/licenses | List licenses |
| POST | /v1/artifacts/register | Register build artifact |
| GET | /v1/artifacts/{hash} | Verify artifact |
| GET | /v1/evidence/bundles | List evidence bundles |
| POST | /v1/evidence/generate | Generate compliance report |
| GET | /health | Health check |
Response Codesβ
| Code | Meaning |
|---|---|
| 200 | Success |
| 201 | Created |
| 400 | Bad Request (validation error) |
| 401 | Unauthorized (invalid API key) |
| 403 | Forbidden (license revoked) |
| 404 | Not Found |
| 429 | Rate Limited |
| 500 | Server Error |
Example: Generate Licenseβ
curl -X POST https://quantumlock.softquantus.com/v1/licenses/generate \
-H "X-API-Key: your_api_key" \
-H "Content-Type: application/json" \
-d '{
"customer_id": "cust_abc123",
"product_id": "prod_xyz789",
"features": ["feature_a", "feature_b"],
"valid_days": 365,
"max_machines": 5
}'
SDK Specificationsβ
Python SDKβ
# Installation
pip install quantumlock-sdk
# Basic Usage
from quantumlock.sdk import HybridLicenseValidator
validator = HybridLicenseValidator(
license_path="license.qlicense",
api_url="https://quantumlock.softquantus.com",
api_key="your_api_key", # Optional, for online sync
sync_interval=900, # 15 minutes
grace_period_days=7
)
# Validate (offline-first)
result = validator.validate()
if result.valid:
print(f"License valid until: {result.expires_at}")
print(f"Features: {result.features}")
else:
print(f"Invalid: {result.reason}")
SDK Methodsβ
| Method | Description | Returns |
|---|---|---|
validate() | Validate license | ValidationResult |
get_features() | List enabled features | List[str] |
check_feature(name) | Check specific feature | bool |
get_license_info() | Get license metadata | LicenseInfo |
force_sync() | Force online validation | SyncResult |
ValidationResult Fieldsβ
| Field | Type | Description |
|---|---|---|
valid | bool | Overall validity |
status | str | "active", "expired", "revoked" |
reason | str | Error reason if invalid |
customer | str | Customer name |
expires_at | datetime | Expiration date |
features | List[str] | Enabled features |
days_remaining | int | Days until expiration |
in_grace_period | bool | Within grace period |
Deployment Optionsβ
SaaS (Recommended)β
| Aspect | Value |
|---|---|
| Availability | 99.9% SLA |
| Regions | EU (West Europe), US (East) |
| Data Residency | EU by default |
| Backup | Daily, 30-day retention |
On-Premiseβ
| Requirement | Specification |
|---|---|
| Container Runtime | Docker 24+ or Kubernetes 1.28+ |
| CPU | 2 vCPU minimum |
| Memory | 4GB minimum |
| Storage | 20GB SSD |
| Database | PostgreSQL 15+ |
| Cache | Redis 7+ |
Hybridβ
| Component | Location |
|---|---|
| License Generation | Cloud (SaaS API) |
| Validation | Local (SDK offline) |
| Sync | Background to cloud |
| Evidence | Cloud storage |
Performance Specificationsβ
Latencyβ
| Operation | Target | Measured |
|---|---|---|
| Offline validation | <10ms | 3-5ms |
| Online validation | <200ms | 80ms |
| License generation | <500ms | 150ms |
| Evidence bundle gen | <2s | 800ms |
Throughputβ
| Metric | Value |
|---|---|
| Licenses generated/sec | 1,000+ |
| Validations/sec (API) | 10,000+ |
| Concurrent SDK instances | Unlimited |
Security Specificationsβ
Transport Securityβ
| Layer | Protection |
|---|---|
| API | TLS 1.3 only |
| SDK to API | Certificate pinning |
| License files | Encrypted at rest |
Key Managementβ
| Aspect | Specification |
|---|---|
| Key Storage | Azure Key Vault / HSM |
| Rotation | Every 90 days (configurable) |
| Algorithm Migration | Crypto-agility layer |
Anti-Tamperingβ
| Protection | Method |
|---|---|
| Binary | Nuitka compilation |
| License | Dual signature verification |
| Runtime | Integrity checks |
Compliance Alignmentβ
Frameworks Supportedβ
| Framework | Relevance | Evidence Type |
|---|---|---|
| NIS2 | Software supply chain | Artifact registry |
| GDPR | License data handling | Data processing records |
| SOC2 | License audit trail | Evidence bundles |
| ISO27001 | Security controls | Compliance reports |
Evidence Generationβ
- Automated evidence collection
- PQC-signed bundles (ML-DSA-65)
- Chain hash integrity
- Compliance coverage reports
Version Informationβ
| Component | Version |
|---|---|
| QuantumLock Core | 2.1.1 |
| SDK (Python) | 2.1.1 |
| CLI | 2.1.1 |
| API Version | v1 |
| OpenAPI Spec | 3.1.0 |
| Container Image | sqtprodacr.azurecr.io/sqt/quantumlock-api:2.1.1 |
Β© 2026 SoftQuantus innovative OΓ
Registry Code: 17048927 | VAT: EE102767458 Veskiposti tn 2-1002, Tallinn, 10138, Estonia