# 4.1 qSIM Node Specifications

The qSIM node integrates three core subsystems: QRNG for entropy, PQC for signatures, and HSM for key isolation. Compliance with NIST SP 800-90B is mandatory.

#### QRNG Module

Entropy is generated from quantum optical phenomena (primary: photon shot noise; vacuum fluctuations under evaluation). Raw output undergoes continuous health testing per NIST SP 800-90B, including the Repetition Count Test (RCT) and Adaptive Proportion Test (APT). Cryptographic conditioning (AES-CBC-MAC or SHA-3 extractor) produces uniformly distributed random bits suitable for key generation.

#### PQC Signature Module

* Primary: ML-DSA (CRYSTALS-Dilithium, FIPS 204) — strong security margin suitable for server-grade hardware
* Fallback: SLH-DSA (SPHINCS+, FIPS 205) — stateless hash-based alternative resilient to advances in lattice cryptanalysis

Key generation occurs on-device, with no private key export.

#### HSM / 보안 엔클레이브

A tamper-resistant enclave targeting FIPS 140-3 Level 3 certification.

* Status: hardware design complete; certification initiated, target Q1 2026
* Anti-tamper mesh triggers immediate key erasure upon intrusion detection
* All cryptographic operations execute within enclave boundaries; only outputs leave the secure boundary

*Figure 4.A — qSIM Technical Specifications*

<table data-header-hidden><thead><tr><th width="143.88897705078125"></th><th width="237.22222900390625"></th><th width="188.888916015625"></th><th></th></tr></thead><tbody><tr><td>Component</td><td>Specification</td><td>Standard</td><td>Status</td></tr><tr><td>QRNG Source</td><td>Photon shot noise optical sensor</td><td>SP 800-90B</td><td>Prototype validated</td></tr><tr><td>Entropy Output</td><td>≥32 Mbps raw / ≥8 Mbps conditioned</td><td>SP 800-90B tests</td><td>Prototype validated</td></tr><tr><td>PQC Primary</td><td>ML-DSA-65 (Dilithium)</td><td>FIPS 204</td><td>Implemented</td></tr><tr><td>PQC Fallback</td><td>SLH-DSA-256s (SPHINCS+)</td><td>FIPS 205</td><td>Implemented</td></tr><tr><td>HSM</td><td>Tamper-resistant secure element</td><td>Target FIPS 140-3 L3</td><td>Certification in progress</td></tr><tr><td>Anti-Tamper</td><td>Mesh + key erasure</td><td>Physical security</td><td>Design complete</td></tr><tr><td>Connectivity</td><td>Ethernet + 4G/5G backup</td><td>Always-on</td><td>Design complete</td></tr><tr><td>Form Factor</td><td>Compact rackmount / standalone</td><td>Standard 1U</td><td>Design complete</td></tr></tbody></table>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://railquant.gitbook.io/quantarail/4.-technical-advantage-hardware-based-trust/4.1-qsim-node-specifications.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.