Quantum Secure Gateway provides a managed entropy service with documented provenance, explicit fallback behavior, and standard cryptographic enforcement.
The current public surface is small by design: health, access, entropy delivery, and authenticated account operations.
POST /v1/entropy returns hardware-derived entropy when the reservoir is healthy and transparently switches to CSPRNG fallback when it is not.
Responses expose source class, conditioning method, entropy score, and fallback state so clients can accept or reject degraded draws.
Public routes cover health and access requests. Authenticated routes add entropy, account lookup, usage reporting, key rotation, verification, and audit retrieval.
Standard cryptography remains the enforcement layer. Repository evidence supports source quality and system design, but it is not presented as a replacement for established cryptographic controls.
Paths below reflect the current Worker routes in the repository. Enterprise and internal routes require authentication.
Public service health and version metadata.
Public onboarding request for sandbox or partner access.
Primary entropy delivery endpoint with explicit fallback reporting.
Enterprise verification route for request IDs or entropy-plus-provenance payloads.
Enterprise retrieval of a single audit record or filtered audit listings.
Current client identity and usage reporting for issued API keys.
Authenticated API key regeneration flow.
Internal reservoir status route; public access requires an explicit environment override.
Request an API key or explore the developer guide to integrate entropy delivery into your application.