> For the complete documentation index, see [llms.txt](https://developer.magtek.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://developer.magtek.com/qwantum-services/qwantum-private-messaging/pm-white-papers/qwantum-private-messaging.md). # Qwantum Private Messaging Qwantum Private Messaging White Paper At **Qwantum Private Messaging**, our core **vision** is the belief that all people have a fundamental right to private electronic communications and data. PN D998200486 v.200 10/23 MagTek, Inc. 1710 Apollo Court, Seal Beach, CA 90740 | p 562-546-6400 | | [www.MagTek.com](http://www.magtek.com/) © Copyright 2021-2023 ## Our Vision ### “The right of the people to be secure in their persons, houses, papers, and effects…” (From the 4th Amendment of the Bill of Rights to the United States Constitution). Those few words say it all. People have a fundamental right to privacy. They should be free to communicate with one another and have confidence that their communications are secure, private, and only shared with intended parties. At **Qwantum Private Messaging**, our core **vision** is the belief that all people have a fundamental right to private electronic communications and data. To that end, we have developed a “Privacy as a Service” secure messaging platform that adheres to the fundamental principles of “Privacy”, “Integrity”, and “Authenticity”. With Qwantum Private Messaging you are assured that any messages you create will remain cryptographically secure, authenticated, and private. ## Digital Privacy – A Quick History Lesson When the Internet was introduced in the mid-1990s, it brought forth a new platform that would forever change the way that people around the world would communicate and share information. It compressed time and distance, and allowed for more efficient distribution of information, ideas, and products. It crossed international boundaries and allowed people around the world to come together in business and social endeavors. More than anything, it brought forth hope that this new platform would provide all humanity with more freedom to communicate and share ideas, and to build a better and closer-knit world community for generations to come. We stood at the dawn of a new Digital Age. As the Internet platform launched and evolved, the technology landscape quickly changed. First generation technology companies such as Microsoft and Apple recognized that Internet browsers needed to become a core component of personal computer operating systems. “Explorer” and “Safari” browsers were born. Next, the search engines and email services arrived. New companies such as Yahoo!, AOL, and Google quickly became household names. Soon, email services such as Hotmail, Yahoo, AOL, and Gmail were available to all. As communications networks advanced, we experienced faster data speeds and gained access to Text Messages. The advent of mobile smartphones in 2007 led to a next generation version of the “personal computer” that you could carry with you. New mobile operating systems such as Apple iOS and Google Android emerged quickly and soon dominated the technology landscape. These platforms opened the door for “mobile apps” that supported banking, shopping, travel, and much more. Soon, social media apps such as Facebook, Twitter, and YouTube appeared and cemented themselves as cornerstones of our daily lives and social fabric. Along this path, we saw the emergence of what is now called “BigTech”. A collective core group of technology companies that seemingly have “perfect vision” to foresee the future and limitless financial resources to develop sophisticated hardware, operating systems, applications, and cloud services. Amazingly, they were (are) able to offer this advanced technology to the world “FREE of charge”. It seemed too good to be true. Initially, we provided our complete “trust” to these entities, assuming they were benevolent organizations that simply wanted to lead us on a path towards better technology and derive nominal profits via advertising revenues. It seemed reasonable… Provide the world with amazing technology for “free”, with the “price” being advertising messages. Sure, why not? However, over time, little by little, we saw this “trust” erode. We discovered that the communications and content that WE provided on these platforms were no longer “ours”; instead, it became “theirs”. THEY had the right to collect, store, and analyze our data indefinitely. If you closed your account, nothing was returned; all content was their property. Innocuous terms such as “analytics” were used to disguise analysis of our browsing and shopping patterns as well as tracking of our family, social, and business connections. Presumably, all of this was done to, “enhance our shopping experience”. Many people accepted this explanation without further thought. However, for some, the initial warning flags were raised that perhaps, “something was wrong.” Perhaps the “price” we were paying for this amazing technology was higher than we understood? In 2013, the Edward Snowden revelations shocked the world and revealed that not only were our governments involved with bulk electronic surveillance and snooping of our digital lives, but that they were often doing so with the direct collaboration and support from the BigTech companies that we initially trusted. For the first time, it became clear that our relationship with BigTech was not what we originally understood. What was once thought to be “conspiracy theory” was now established as fact. A significant truth was revealed. We ARE being spied upon by both our governments and BigTech. More concerning, we discovered that we are viewed as “The Product”. Our thoughts, ideas, business strategies, and viewpoints are being “harvested” and “analyzed”. This realization led to many questions: * How is this information being exploited? * Is this legal? * Is this moral? * What is the true “price” of this? * What is the potential danger of this? Given this knowledge, 2013 could have been a watershed moment for the citizens of the world to address our governments and the BigTech sector and attempt to resolve these issues together. Surely, there must be a “reasonable” path forward where we could agree upon a balance between privacy rights, national security, and BigTech commercial interests. Unfortunately, that dialogue never occurred and no “reasonable balance” was established. A golden opportunity was missed. Instead, we ignored the concerns that were clearly in front of us and blindly proceeded forward assuming that the situation would somehow resolve itself over time. Big mistake. As we fast forward from 2013 to 2021, the situation has not improved. In fact, it has become worse. We now live in a world where ALL our digital communications are permanently collected and stored by our governments. Any time they choose, our emails, texts, phone calls, photos, GPS locations, and much more can be retrieved and analyzed. Massive Data Centers such as the NSA’s facility in Utah are no longer hidden. They are now common knowledge and an example of the “collect it all” mentality that now pervades our world’s governments. Along the way, BigTech also adopted a “collect it all” mentality but were not constrained by legal statutes on how they used this information. After all, WE AGREED to the “terms and conditions” set by them. In exchange for “free” access to this amazing technology we “agreed” to provide access to all our activities, comments, information, photos, and documents. For all practical purposes, this became THEIR property and how this information was to be used or shared by them was none of our business. To make matters worse, BigTech furthered their scope of operations from simply performing “analytics” of OUR personal data, to that of becoming “judges” of “appropriate content”. In 2021, BigTech doesn’t just want to KNOW about you, they now want to LABEL you. And… if they deem appropriate, CENSOR you. Given the current state-of-affairs, George Orwell’s 1984 novel of a dystopian “Big Brother” society now reads more like a factual “documentary” than a fictionalized book. We NOW truly live in a society where ALL our digital communications ARE collected, analyzed, and acted upon. We have few controls over the entities that are collecting this information and little understanding of what they are doing (or intend to do) with it. This situation should be of concern to all individuals who value their “privacy rights” and freedoms. End of history lesson. ## Is There a Path Forward? Digital privacy is under attack from multiple fronts: * Criminal organizations and threat-actors that steal strategic business data or use ransomware to hold data hostage. * Governments that “collect everything”. * BigTech companies that “analyze everything”. No matter where you turn, the idea of digital privacy is threatened. Left unchecked, digital privacy will soon become an extinct concept. * It will become a “prehistoric fossil” that we can share with our grandchildren. * It will become a “relic” that we can reference when our future generations ask: “What was it like to have a confidential conversation?” HOW shall we answer them? Is this our future? No. It doesn’t have to be. Is there a better path forward? Yes. Digital Privacy can be preserved. Practically speaking, everything shared via electronic communications can be intercepted, collected, and analyzed by criminals, threat-actors, governments, and BigTech. The potential threats to Intellectual Property, Freedom of the Press, Medical Privacy, and Strategic Business interests are obvious. Given this reality and the reasonable assumption that a significant segment of our society still desires to retain and protect their fundamental privacy rights, there are only two viable paths forward to resolve or mitigate these matters: * Implement comprehensive legislation to protect the digital privacy of citizens (e.g., “Digital Privacy - Bill of Rights”) — Path 1 is beyond the scope of this document. * Utilize data encryption and authentication technologies to protect digital communications and data — Path 2 can be addressed with “Private Messaging” technologies. Citizens and businesses CAN utilize secure private messaging technology that protects them from the prying eyes of threat-actors, BigTech, and Governments. Digital privacy can be saved! The remainder of this document introduces **Qwantum Private Messaging** by MagTek and explains how and why it provides a superior communications platform that enables fast, reliable, and secure private messaging services for both citizens and businesses. ### Why Qwantum? We draw its name from the principles of quantum physics. Nothing in nature is inherently static. Change is nature’s rule. About 500 BC, the poet Heraclitus wrote, “No man ever steps in the same river twice…”. Following these observations and quantum dynamics, the Qwantum protection engine relies on constantly morphing, unpredictable, stochastic data obtained during the transaction. Statistical evaluation provides evidence of the token’s origin and provenance. Whether the token is obtained from a Qwantum Card or as a virtual derivative delivered by a QR code or NFC, the level of security is not diminished. **At MagTek, we are in the authentication business.** We provide means to ascertain the genuineness of people and things. In the payment world we authenticate payment devices and credentials. Beyond payment, we authenticate users, endpoints, documents, messages, forms, photos, works of art, keys, NFTs, and certificates. On the internet, we answer “Are you who you say you are?” “Has this document been altered?” “Is this an original photo?” “Is this signature acceptable?” When it comes to authentication, there is nothing artificial about our intelligence. **We are also in the data protection business.** We do this by means of encryption and tokenization. Encryption and tokenization expertise is in our DNA. In the 1970s we were among the first to implement DES for PIN calculation at ATMs and POS. We built the world's first encrypting card reader to protect PANs and Track data and were early adopters of DUKPT for key management. Presently, we implemented AES DUKPT using 256-bit keys. You will find these technologies in our Qwantum ASICs, Qwantum Heads, Qwantum Peripherals, and Qwantum Terminals. No other organization knows more about how to use authentication, encryption, and token substitution to do good. ## Introducing Qwantum Private Messaging **Qwantum Private Messaging** is developed and operated by MagTek, Inc., of Seal Beach CA. MagTek was founded in 1972 and has a 50-year history as a pioneer, innovator, and leader in technologies related to financial card payments and electronic transaction security. MagTek is globally trusted by leading financial institutions, retail businesses, and government agencies to provide hardware, software, and cloud services for secure electronic authentication and data protection. Given the current state-of-affairs regarding digital privacy concerns, MagTek recognized the need to extend transaction security expertise to consumers and businesses. As a result, Qwantum Private Messaging was developed as a “Privacy as a Service” platform and formally launched to the consumer market in June 2021. Qwantum Private Messaging is organized as a club, so that it can grow and flourish by attracting like‑minded professionals that see value in privacy, do not intend to use the service for unscrupulous activities, have business needs to establish authenticity and integrity of documents and objects, and desire to trust with confidence those with whom they share sensitive information. The Club’s mission is to build a network of trust based on three timeless principles: Privacy, Integrity, and Authenticity. There are many “private messaging” services in the marketplace (e.g., WhatsApp, Signal). Despite claims of “security”, many rely on key generation and key storage within general-purpose devices (phones, PCs) that contain hardware and software backdoors and centralized data storage—attack points for exploitation. Qwantum recognizes that true digital security cannot rely exclusively on software and general-purpose devices. For proper security, a physical token is required that exists outside the digital domain, is guaranteed unique, cannot be replicated, and has dynamic properties that create unique data with each use. That physical token is the **Qwantum Card**. Separating the digital and physical domains, the Qwantum Card provides a basis for truly secure key generation and user authentication outside non‑secure general‑purpose computers. This is what makes Qwantum Private Messaging superior. ## Qwantum Card The cornerstone of Qwantum Private Messaging security begins with the physical Qwantum Card. Each Qwantum Card provides a one-of-a-kind unique physical token that cannot be replicated or counterfeited. Each card is guaranteed unique based upon the quantum characteristics of the magnetic fields produced by random distribution of ferrous particles that comprise the Qwantum stripe. Just as each snowflake in nature is unique, so too is the quantum magnetic field associated with each Qwantum Card. This unique physical token literally is your “**hardware key**” to secure private communications. The unique physical properties of the Qwantum card are recognized in science and often referred to as a “PUF” (Physical Unclonable Function). In the world of traditional Quantum Physics, a PUF is defined as a “*physical entity embodied in a unique physical structure, that is easy to evaluate but hard to predict or clone*”. The Qwantum Card utilizes a magnetic field and its underlying ferrous particles as its “unique physical structure”. This structure is specifically defined and categorized as a “Magnetic PUF”. A Magnetic PUF results in a unique and dynamic magnetic field that changes with each use. The application of a Magnetic PUF as a trusted dynamic authentication token is formally recognized by the American National Standards Institute (ANSI) and is documented in the ANSI X9.122 security standard. The Qwantum Card is unique and dynamic. Based on traditional quantum physics, the Qwantum Card’s magnetic field is constantly in motion and changes dynamically each time it is used. These characteristics make it both a perfect authentication token and a random data generator that facilitates the generation of unique encryption keys. The Qwantum Card is anonymous. The data encoded on each Qwantum card is anonymous and contains only a generic serial number that provides no information about the card owner. Each Qwantum Club Member is assigned their own unique Qwantum Club card. The Qwantum Card is your physical “KEY” to security. Think of it as a one-of-a-kind “hardware key” that uses its PUF features to authenticate the user. It replaces the need for Usernames and Passwords that can be stolen and compromised. Simply glide the Qwantum card through the card reader and you are instantly authenticated. The magnetic PUF data is then used to facilitate the generation of a unique encryption key. Each use of the Qwantum Card creates both a dynamic authentication value for user authentication and random quantum data that is used to help generate a unique encryption key to protect the data. Together, the use of these physically generated security values forms the foundation for a secure private message that can be both authenticated and protected by AES-256 encryption. Think of the resulting encrypted message as a “self-encapsulated” private message token that remains secure no matter how or where it is stored. It is analogous to a virtualized “hardened bank vault” that cannot be opened or viewed by threat-actors. Even IF intercepted or stolen by threat-actors, the contents of the private message cannot be accessed or compromised. ## Encryption Using the dynamically and randomly generated data from each glide of the Qwantum Card, a unique AES-256 key is automatically created for each Qwantum Private Message. AES-256 encryption is a NIST-recognized symmetric-key algorithm for providing the highest-level non-military grade encryption available to the civilian sector. It is approved for use with “top secret” documents within the Federal Government. AES-256 uses 256-bit symmetric keys. This key space creates a range of numbers so large that no existing computer systems have the computational power to attempt a brute force attack. Unlike asymmetric keys used in PKI, large symmetric keys will remain resistant to future attacks from next-generation quantum-capable computers. (AES-256 is resistant to potential quantum computer attacks based on Shor’s or Grover’s algorithms.) This means that AES-256 encryption provides optimum data protection today and into the future. It means that Qwantum Private Messages and documents remain safe and secure no matter where they are stored or transmitted. ## Key Management With Qwantum Private Messaging the user never has to be concerned with anything related to cryptographic key generation, key storage, or key usage for encryption or decryption of private message data. All key management activities are automatically managed by the Qwantum Private Messaging service. Because of the dynamic properties of the Qwantum Card, a unique encryption key is generated for each private message. This is referred to as “UKPT” (Unique Key Per Transaction). The use of a unique key per message means that a threat-actor cannot simply compromise a single key and use it to attack “all” messages. Each message is uniquely encrypted and protected. ## Data Management Qwantum Private Messaging NEVER stores a Qwantum Club Member’s message data or encryption keys on our servers. EVER. Qwantum’s servers only provide a real-time “on-the-fly” service that authenticates each private message, encrypts/decrypts the message as required, and passes the message to an authenticated recipient. As soon as the message services are completed, ALL data and keys associated with that message are immediately and permanently erased. NO copies, records, or logs of the message or key are retained on Qwantum’s servers. PERIOD. The resultant encrypted files are only distributed to the Qwantum Club Member that created the message and to their designated recipients. Because they are encrypted under AES-256, they are safe and secure no matter where they are stored or transmitted. ## Distributed Assets With Qwantum Private Messaging, ALL critical assets are distributed and never stored in a central location. * User Authentication is distributed, because each Qwantum Club Member has their own unique Qwantum Card. Since the card is a “physical” token, it cannot be “stolen” from the digital domain. * Key Generation is distributed because each encryption key is locally generated by Qwantum Club Members when they glide their Qwantum Card. There is no single location for threat‑actors to exploit. * Encrypted Messages and File Attachments are distributed and only exist within the possession of Qwantum Club Members that created them and the designated parties that received them. By using a distributed (rather than centralized) security architecture, Qwantum Private Messaging provides an enhanced security platform compared to other solutions. There is no central repository of encryption keys or message data. There is no single or centralized “attack point” for threat-actors to exploit. In short, there is nothing to steal. ## Audit Trail Qwantum Club Members are provided with “receipt notifications” that confirm secure delivery of private messages to intended parties and validate when the message was viewed. Optionally, for each private message, the sender may require geo-location of recipients for higher assurance that intended recipients received the message. For even higher security, the sender can mandate one-time Phone Codes that are texted or emailed to intended recipients. Together, these features allow the Qwantum Club Member to set the desired level of security and maintain a complete audit trail of who received messages and when. Because of the authentication technologies used, this audit system can be used to establish “non-repudiation” of message origination and receipt. ## Member Tokens If a Qwantum Club Member desires to send and receive Qwantum Private Messages from a mobile device without their Qwantum Card or reader, they can create a “Member Token”. The Member Token is stored on their mobile device and used as a replacement for their Qwantum Card. For security, the Member Token’s expiration is established by the member and can be set to “one-time use” or a pre-determined time period. For additional security, a one-time Phone Code is automatically dispatched to the member’s mobile number every time a Member Token is submitted for use. ## Guest Tokens To send secure private messages to a non-club member, Qwantum Club Members use “Guest Tokens”. Workflow overview: * Create and send the secure private message as normal. * Generate a Guest Token and send it to the non-club recipient. * Optionally require a one-time Phone Code when the Guest Token is submitted. * Recipient inserts the Guest Token (and Phone Code if required) to decrypt the message. Guest Tokens can be restricted to decrypt a specific Private Message by Transaction ID, or configured to allow a non-club member to create a Private Message back to the Qwantum Club Member. Guest Tokens support advanced Message Options to pre-fill and lock Subject, To, CC, BCC, and to define Custom Field Lists (comma-separated; add \* to require a field — e.g., First\*,Last\*,Phone\*). These features enable unlimited customized private message templates. ## Token Management and Reports Qwantum Club Members can view reports of all active tokens they’ve issued, revoke individual tokens or all tokens, and manage them easily and securely. ## Browser and App Interface Options Qwantum Private Messaging supports both browser-based interfaces and local client apps. Browser-based interfaces support all leading browsers: Chrome, Safari, Firefox, Edge, Brave, Opera, and MagneFlex by MagTek. Access (example): — plug a Qwantum card reader into a USB port (USB KBE or Keyboard Emulation) and you’re ready. Native apps (for users who prefer them) are available for Windows and iOS platforms and support MagTek USB HID/USB KBE, Apple Lightning, USB-C and BLE devices. * [Windows app on Microsoft Store](https://apps.microsoft.com/detail/9NC0WF5XTTGB?hl=en-us\&gl=US) * iOS – Coming Soon ## Private Messages and Files Qwantum Club Members can create private messages and custom-form templates for secure sharing or local storage. Messages can be simple text or complex data (health forms, travel documents, legal documents). File attachments (Word, Excel, PowerPoint, PDF) are supported. When ready, all contents are securely encrypted via AES-256 unique-key encryption and encapsulated into a “virtual hardened bank vault”. During transit and storage, the secure private message remains protected and can only be opened by valid recipients who either possess a valid Qwantum Card or have a valid Guest Token. Messages cannot be viewed or altered in transit. ## Join the Qwantum Club! In 1995 we entered the “dawn” of the Digital Age. In 2021 it is time to enter the “protect your privacy” era. We have learned that our “trust” in BigTech providers and Governments has been misplaced. Real-world threats from criminal organizations and threat-actors continue to expand and pose significant threats to our freedoms and security. For those who desire digital privacy, the burden is on each citizen and business to find a solution. As with most things, “security isn’t free”. There is a price that must be paid. It’s a question of who you can trust. **Qwantum Private Messaging** is committed to providing citizens and businesses around the world with trusted and reliable data security services that protect their data and communications via a convenient, easy-to-use platform that provides true value and peace of mind. You are formally invited to **join the Qwantum Club!** Within this community you will find a trusted platform for secure private messaging and file privatization. * A secure domain where your digital privacy rights are respected and protected. * A place to express yourself and share thoughts only with those you choose. You have a right to digital privacy. Defend it. To learn more, please visit Qwantum Private Messaging: --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://developer.magtek.com/qwantum-services/qwantum-private-messaging/pm-white-papers/qwantum-private-messaging.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.