A monitor and control framework for quantum-key-distribution (QKD) networks equipped with switching capabilities was developed. On the one hand, this framework provides real-time visibility into operational metrics. Specifically, it extracts essential data, such as the switching capabilities of QKD modules, the number of keys stored in buffer queues of the QKD links, and the respective key generation and consumption rates along these links. On the other hand, this framework allows software-defined networking (SDN) applications to operate on the collected information and address the cryptographic needs of the network. The SDN applications dynamically adapt the configuration of the switched network to align with its changing demands, e.g.,~prioritizing key availability on critical paths, responding to link failures, or reallocating generation capacity to prevent bottlenecks. This contribution demonstrates that the combination of switched QKD, centralized control, and global optimization strategies enables efficient, policy-driven operation of QKD networks. The cryptographic resources are allocated to maximize performance and resilience while remaining aligned with the specific policies set by network administrators.

翻译：本文开发了一种具备交换能力的量子密钥分发（QKD）网络的监控与控制框架。一方面，该框架提供了对运行指标的实时可视性。具体而言，它提取关键数据，例如QKD模块的交换能力、QKD链路缓冲队列中存储的密钥数量，以及各链路上相应的密钥生成速率与消耗速率。另一方面，该框架允许软件定义网络（SDN）应用程序基于所收集的信息运行，并满足网络的密码学需求。SDN应用程序动态调整交换网络的配置，以适应其不断变化的需求，例如优先保障关键路径的密钥可用性、响应链路故障，或重新分配生成能力以防止瓶颈。本研究表明，交换式QKD、集中式控制与全局优化策略的结合，能够实现高效、策略驱动的QKD网络运行。密码资源的分配旨在最大化性能与弹性，同时保持与网络管理员设定的具体策略相一致。