AMERICAN BINARY
Quantum-Secure VPN
The only enterprise VPN providing
100% Current Protection
and conventional threats
100% Future Protection
future means of decryption
100% Speed
and minimized latency
Why American Binary?
Your business is currently under cyber-attack. It’s called “Harvest Now, Decrypt Later,” or HNDL. Bad actors are collecting your data as it transits networks and storing it to decrypt once they have a viable quantum computer. American Binary’s VPN defeats this and all other current threats.
Quantum computers will obsolete existing cybersecurity. Only post-quantum cryptography (PQC) that meets the US Government’s highest standards (CNSA 2.0) can protect your data against quantum attacks. American Binary solutions strictly comply with CNSA 2.0 and provide future-proof security.
PQC that meets CNSA 2.0 standards typically comes at the cost of data speeds. American Binary leverages advanced networking technologies to maximize throughput and minimize latency.
Ambit Client: Your future-proof enterprise VPN
Ambit Client: Features
Post-Quantum Features
1. Protection against HNDL and quantum attacks through CNSA2.0, FIPS 140-3, and FIPS-203 compliant PQC (e.g., the Module-Lattice Key Encapsulation Module (ML-KEM))
2. Modern, hyper-efficient networking technology that enhances performance and user experience; this is in contrast to the typical VPN and PQC experience that significantly degrade network performance
Common VPN Features
1. Protection against traditional cyber-attacks such as Man-in-the-Middle (MITM), remote hacking, Distributed Denial-of-Service (DDoS) attacks and session hijacking
2. Anonymous browsing
3. Data protection
4. Online tracking mitigation
5. Protection when using public network access points
6. Multi-factor authentication, including hardware keys
7. IPv4 and IPv6 compatibility
8. Detailed logging (visible only to you)
Ambit Client: Deployment Configurations
SaaS for Enterprise
For customers who want to minimize management of Ambit Client. It features three software components:
1. Ambit Client Controller, cloud-hosted by American Binary
2. Ambit Client Tunnel, cloud-hosted by American Binary
3. Ambit Client VPN, installed on your users’ devices
On-Premises for Enterprise
For customers who want maximum control of Ambit Client. It features three software components:
1. Ambit Client Controller, hosted in your environment
2. Ambit Client Tunnel, hosted in your environment
3. Ambit Client VPN, installed on your users’ devices
Ambit Client: Available Platforms
Mac: Coming Feb ‘25
Linux: Coming Apr ‘25
iOS: Coming Feb ‘25
Android: Coming Mar ‘25
Frequently Asked Questions
Ambit Client is an enterprise VPN that combines post-quantum cryptography (PQC) with networking improvements to mitigate both the cryptographic security impacts of quantum computing and the operational friction commonly induced by cryptographic security products.
Ambit Client defeats Harvest-Now-Decrypt-Later (HNDL) attacks through the use of PQC that is compliant with the Federal Information Processing Standard (FIPS) 140-3 and Commercial National Security Algorithm Suite (CNSA) 2.0 standards. When using Ambit Client, all information leaving an endpoint (e.g., workstation, laptop, mobile device) is fully encrypted with PQC. While bad actors may be able to capture information, they will not be able to decrypt, use, or derive value from it. As a result, Ambit Client creates future-proofing for a post-quantum world.
Underlying these capabilities is an innovative cryptographic protocol, MaxKyber®, that enables rapid, modular replacement of classical cryptographic primitives anticipated to be vulnerable to quantum computers with secure PQC algorithms within a framework extensible to currently ubiquitous network protocols (e.g., Transport Layer Security (TLS), IPSec IKEv2) as well as the generation of a product suite supporting all aspects of connected business operations.
Think of Ambit Client as an armored car to transport your data. It needs quantum-resistant armor and a powerful engine to move large payloads of data safely and quickly. The MaxKyber® protocol plays the roles of the armor and the engine. MaxKyber® was designed to meet a number of technical challenges impacting PQC implementation, including:
1. Making the new PQC algorithms functionally useful by packaging them in a modular manner such that they could be readily integrated into any product requiring the secure exchange of information across a potentially insecure channel. Think of it like putting the engine and armor into a different type of car. This includes VPNs, such as Ambit Client VPN, and also networking and connectivity tools like software defined networks (SDN), browsers, and cloud services.
2. Ensuring that common features such as in-session key rotation were provided in a manner consistent with PQC cryptographic standards and CNSA 2.0. For example, the ML-KEM standard is silent on the issue of key rotation, which is a standard part of legacy cryptographic protocols like Internet Key Exchange, v.2 (IKEv2).
3. Ensuring the provision of a robust, post-quantum analog to the key establishment capabilities provided by classical cryptographic protocols such as the elliptical curve Diffie-Hellman key agreement protocol (ECDH) that was faithful to PQC standards and the requirements specified in CNSA 2.0.
4. Ensuring compatibility with existing networking standards and implementations. For example, PQC algorithms often run into issues with Maximum Transmission Unit (MTU) limitations. This constraint becomes of singular importance when mobile and Internet-of-Things (IoT) networks are considered.
5. Solving the key distribution problem between peers in a manner consistent with CNSA 2.0 without exposing a shared secret (e.g., a cryptographic key) to the risks of transit across an insecure channel.
The MaxKyber® protocol is implemented as a modular package that is portable to TLS and IPSec IKEv2, thus offering a short path to rapid, prolific PQC adoption.
Despite the emergence of stable, viable quantum computing platforms not being expected until close to the end of the decade (near to 2030), quantum computing is already having an indirect impact on asymmetric cryptography. Governments and malicious actors around the world are currently engaging in what is known as Harvest-Now-Decrypt-Later (HNDL) attacks. HNDL attacks are premised on a combination of the following ideas:
1. Information transiting the internet is routinely protected with asymmetric cryptographic algorithms that cannot be broken with classical computers today
2. Quantum computing will be able to break these asymmetric algorithms
3. While much of the information that transits the internet loses value quickly over time, a large, significant part of the information retains value over long periods
4. Seemingly innocuous information transiting the internet from many sources can be mosaicked to create valuable sensitive information
As a result, global actors are currently copying and storing everything that transits the internet and are doing so today.
The SaaS version of Ambit Client enables account setup and installation on endpoint devices in minutes. If an on-premises configuration is selected, server installation, configuration, and subsequent device installation are typically completed in half a day or less. Endpoint installation follows standard platform patterns. Windows, Mac, iOS, and Android are supported.
Ambit Client is designed for a low/no burden adoption experience. Operation requires minimal expertise or training, and the application itself is initialized with a single click. Ambit Client can be configured to automatically activate on startup, and maintains protection even after network interruptions.
Media and Recognition
"Time is of the essence, as the U.S.’s adversaries are already collecting our data in the hopes of decrypting it in the future with a quantum computer... organizations must act now."