Quantum-Seeded Dynamic JWT Authentication Framework - GHRCEM pune Btech Cyber Security

B.Tech CSE (Cyber Security) Team Members - 1.Omkar Koli 2.Affan Mansuri 3.Suyash Awari *Description -* Secure authentication has become a critical concern in modern cybersecurity systems due to the rapid growth of digital financial services and stateless web application technologies. JSON Web Tokens (JWTs), widely used for stateless authentication, rely on pseudo-random keys generated through mathematical algorithms. These keys may become vulnerable to future quantum computing attacks, particularly under the "Harvest Now, Decrypt Later" threat model, where adversaries collect encrypted data today and decrypt it once quantum capabilities mature. The predictability of classical key generation methods increases exposure to large-scale attacks, especially in microservices-based and zero-trust architectures. To address these challenges, a Quantum Seeded Dynamic JWT Authentication Framework is proposed. The framework integrates a quantum entropy source generated through a quantum simulation technique to produce high-entropy, non-deterministic signing keys for JWTs. This approach enhances randomness and significantly reduces predictability compared to classical pseudo-random generators. To mitigate quantum generation delays and maintain authentication response times, an entropy pooling mechanism is introduced, ensuring continuous availability of secure keys without performance degradation. The architecture further incorporates a Redis-based key vault system that enables rapid and automated key rotation, thereby minimizing the exposure window in the event of key compromise. An adaptive quantum rotation mechanism dynamically adjusts token validity based on a calculated threat score, strengthening resilience in high-risk scenarios. Additionally, a hybrid fail-safe strategy ensures uninterrupted service by seamlessly switching to classical entropy sources if the quantum source becomes unavailable.