This paper addresses the urgent need for a cybersecurity framework tailored to quantum communication systems as the world transitions to quantum-safe infrastructures. While quantum communication promises unbreakable security, real-world deployments are vulnerable to physical, protocol, and operational risks. Our work presents a structured framework for analysing these threats, combining a TTP-style (Tactic, Technique, Procedure) approach with a specific risk assessment methodology. We introduce SQOUT, a quantum threat intelligence platform, and illustrate its application using a Photon-Number-Splitting (PNS) attack kill chain. Furthermore, we apply established international standards and best practices for information security risk management to assess quantum-specific risk scenarios, providing practical guidance for safeguarding emerging quantum infrastructures.

翻译：本文针对全球向量子安全基础设施转型过程中，量子通信系统对定制化网络安全框架的迫切需求展开研究。尽管量子通信承诺提供不可破解的安全性，但其实际部署仍面临物理、协议和运行层面的风险。我们提出了一个结构化框架来分析这些威胁，该框架结合了TTP（战术、技术、程序）式分析方法与特定的风险评估方法。我们介绍了SQOUT——一个量子威胁情报平台，并通过光子数分离攻击杀伤链示例说明了其应用。此外，我们应用既定的国际标准和信息安全风险管理最佳实践来评估量子特定风险场景，为保护新兴量子基础设施提供实用指导。