Some attacks on quantum-based cryptographic protocols

H-K Lo; T-M Ko

doi:10.26421/qic5.1-4

Some attacks on quantum-based cryptographic protocols

Quantum Information and Computation ◽

10.26421/qic5.1-4 ◽

2005 ◽

Vol 5 (1) ◽

pp. 40-47

Author(s):

H-K Lo ◽

T-M Ko

Keyword(s):

Coherent States ◽

Secure Communication ◽

Single Photon ◽

Cryptographic Protocols ◽

Original Design ◽

Information Theoretic ◽

Information Theoretic Security ◽

Photon States ◽

Lossy Channel ◽

Known Plaintext Attack

Quantum-based cryptographic protocols are often said to enjoy security guaranteed by the fundamental laws of physics. However, even carefully designed quantum-based cryptographic schemes may be susceptible to subtle attacks that are outside the original design. As an example, we give attacks against a recently proposed ``secure communication using mesoscopic coherent states'', which employs mesoscopic states, rather than single-photon states. Our attacks can be used either as a known-plaintext attack or in the case where the plaintext has not been randomized. One of our attacks requires beamsplitters and the replacement of a lossy channel by a lossless one. It is successful provided that the original loss in the channel is so big that Eve can obtain $2^k$ copies of what Bob receives, where $k$ is the length of the seed key pre-shared by Alice and Bob. In addition, substantial improvements over such an exhaustive key search attack can be made, whenever a key is reused. Furthermore, we remark that, under the same assumption of a known or non-random plaintext, Grover's exhaustive key search attack can be applied directly to "secure communication using mesoscopic coherent states", whenever the channel loss is more than 50 percent. Therefore, as far as information-theoretic security is concerned, optically amplified signals necessarily degrade the security of the proposed scheme, when the plaintext is known or non-random. Our attacks apply even if the mesoscopic scheme is used only for key generation with a subsequent use of the key for one-time-pad encryption. Studying those attacks can help us to better define the risk models and parameter spaces in which quantum-based cryptographic schemes can operate securely. Finally, we remark that our attacks do not affect standard protocols such as Bennett-Brassard BB84 protocol or Bennett B92 protocol, which rely on single-photon signals.

Download Full-text

Physical-layer encryption on the public internet: A stochastic approach to the Kish-Sethuraman cipher

International Journal of Modern Physics Conference Series ◽

10.1142/s2010194514603615 ◽

2014 ◽

Vol 33 ◽

pp. 1460361 ◽

Cited By ~ 1

Author(s):

Lachlan J. Gunn ◽

James M. Chappell ◽

Andrew Allison ◽

Derek Abbott

Keyword(s):

Quantum Key Distribution ◽

Secure Communication ◽

Key Distribution ◽

Stochastic Approach ◽

Physical Layer ◽

Information Theoretic ◽

The Public ◽

Information Theoretic Security ◽

Transit Times ◽

The One

While information-theoretic security is often associated with the one-time pad and quantum key distribution, noisy transport media leave room for classical techniques and even covert operation. Transit times across the public internet exhibit a degree of randomness, and cannot be determined noiselessly by an eavesdropper. We demonstrate the use of these measurements for information-theoretically secure communication over the public internet.

Download Full-text

Photonic quantum data locking

Quantum ◽

10.22331/q-2021-04-28-447 ◽

2021 ◽

Vol 5 ◽

pp. 447

Author(s):

Zixin Huang ◽

Peter P. Rohde ◽

Dominic W. Berry ◽

Pieter Kok ◽

Jonathan P. Dowling ◽

...

Keyword(s):

Secret Key ◽

Linear Optics ◽

Information Theoretic ◽

Information Theoretic Security ◽

Quantum Phenomenon ◽

Classical Information Theory ◽

Photo Detection ◽

Photon States ◽

Multi Mode ◽

Boson Sampling

Quantum data locking is a quantum phenomenon that allows us to encrypt a long message with a small secret key with information-theoretic security. This is in sharp contrast with classical information theory where, according to Shannon, the secret key needs to be at least as long as the message. Here we explore photonic architectures for quantum data locking, where information is encoded in multi-photon states and processed using multi-mode linear optics and photo-detection, with the goal of extending an initial secret key into a longer one. The secret key consumption depends on the number of modes and photons employed. In the no-collision limit, where the likelihood of photon bunching is suppressed, the key consumption is shown to be logarithmic in the dimensions of the system. Our protocol can be viewed as an application of the physics of Boson Sampling to quantum cryptography. Experimental realisations are challenging but feasible with state-of-the-art technology, as techniques recently used to demonstrate Boson Sampling can be adapted to our scheme (e.g., Phys. Rev. Lett. 123, 250503, 2019).

Download Full-text

Quantum Filtering Equations for a System Driven by Nonclassical Fields

Open Systems & Information Dynamics ◽

10.1142/s1230161218500075 ◽

2018 ◽

Vol 25 (02) ◽

pp. 1850007 ◽

Cited By ~ 2

Author(s):

Anita Da̧browska

Keyword(s):

Quantum System ◽

Coherent States ◽

Single Photon ◽

Photon Counting ◽

Stochastic Evolution ◽

Input Output ◽

Nonclassical States ◽

Cascade System ◽

Unitary Evolution ◽

Photon States

Using Gardiner and Collet’s input-output model and the concept of cascade system, we determine the filtering equation for a quantum system driven by light in some specific nonclassical states. The quantum system and electromagnetic field are described by making use of quantum stochastic unitary evolution. We consider two examples of the nonclassical states of field: a combination of vacuum and single photon states and a mixture of two coherent states. The stochastic evolution conditioned on the results of the photon counting and quadrature measurements is described.

Download Full-text

Quantum filtering for systems driven by fields in single photon states and superposition of coherent states using non-Markovian embeddings

Quantum Information Processing ◽

10.1007/s11128-012-0373-z ◽

2012 ◽

Vol 12 (3) ◽

pp. 1469-1499 ◽

Cited By ~ 22

Author(s):

J. E. Gough ◽

M. R. James ◽

H. I. Nurdin

Keyword(s):

Coherent States ◽

Single Photon ◽

Quantum Filtering ◽

Photon States

Download Full-text

Quantum filtering for systems driven by fields in single-photon states or superposition of coherent states

Physical Review A ◽

10.1103/physreva.86.043819 ◽

2012 ◽

Vol 86 (4) ◽

Cited By ~ 64

Author(s):

John E. Gough ◽

Matthew R. James ◽

Hendra I. Nurdin ◽

Joshua Combes

Keyword(s):

Coherent States ◽

Single Photon ◽

Quantum Filtering ◽

Photon States

Download Full-text

Quantum communication with coherent states of light

Philosophical Transactions of The Royal Society A Mathematical Physical and Engineering Sciences ◽

10.1098/rsta.2016.0235 ◽

2017 ◽

Vol 375 (2099) ◽

pp. 20160235 ◽

Cited By ~ 1

Author(s):

Imran Khan ◽

Dominique Elser ◽

Thomas Dirmeier ◽

Christoph Marquardt ◽

Gerd Leuchs

Keyword(s):

Coherent States ◽

Secure Communication ◽

Communication Systems ◽

Quantum Communication ◽

Continuous Variable ◽

Quantum States ◽

Complexity Of Algorithms ◽

Laser Systems ◽

Quantum Technology ◽

Photon States

Quantum communication offers long-term security especially, but not only, relevant to government and industrial users. It is worth noting that, for the first time in the history of cryptographic encoding, we are currently in the situation that secure communication can be based on the fundamental laws of physics (information theoretical security) rather than on algorithmic security relying on the complexity of algorithms, which is periodically endangered as standard computer technology advances. On a fundamental level, the security of quantum key distribution (QKD) relies on the non-orthogonality of the quantum states used. So even coherent states are well suited for this task, the quantum states that largely describe the light generated by laser systems. Depending on whether one uses detectors resolving single or multiple photon states or detectors measuring the field quadratures, one speaks of, respectively, a discrete- or a continuous-variable description. Continuous-variable QKD with coherent states uses a technology that is very similar to the one employed in classical coherent communication systems, the backbone of today’s Internet connections. Here, we review recent developments in this field in two connected regimes: (i) improving QKD equipment by implementing front-end telecom devices and (ii) research into satellite QKD for bridging long distances by building upon existing optical satellite links. This article is part of the themed issue ‘Quantum technology for the 21st century’.

Download Full-text

E - Capacity - Equivocation Region of Wiretap Channel

JUCS - Journal of Universal Computer Science ◽

10.3897/jucs.76605 ◽

2021 ◽

Vol 27 (11) ◽

pp. 1222-1239

Author(s):

Mariam Haroutunian

Keyword(s):

Secure Communication ◽

Maximum Rate ◽

Channel Model ◽

Reliability Function ◽

Achievable Rate ◽

Secrecy Capacity ◽

Wiretap Channel ◽

Information Theoretic ◽

Information Theoretic Security ◽

The Given

One of the problems of information - theoretic security concerns secure communication over a wiretap channel. The aim in the general wiretap channel model is to maximize the rate of the reliable communication from the source to the legitimate receiver, while keeping the confidential information as secret as possible from the wiretapper (eavesdropper). We introduce and investigate the E - capacity - equivocation region and the E - secrecy capacity function for the wiretap channel, which are, correspondingly, the generalizations of the capacity - equivocation region and secrecy - capacity studied by Csiszár and Körner (1978). The E - capacity equivocation region is the closure of the set of all achievable rate - reliability and equivocation pairs, where the rate - reliability function represents the optimal dependence of rate on the error probability exponent (reliability). By analogy with the notion of E - capacity, we consider the E - secrecy capacity function that for the given E is the maximum rate at which the message can be transmitted being kept perfectly secret from the wiretapper.

Download Full-text

Mechanizing the Proof of Adaptive, Information-Theoretic Security of Cryptographic Protocols in the Random Oracle Model

2017 IEEE 30th Computer Security Foundations Symposium (CSF) ◽

10.1109/csf.2017.36 ◽

2017 ◽

Cited By ~ 1

Author(s):

Alley Stoughton ◽

Mayank Varia

Keyword(s):

Random Oracle Model ◽

Random Oracle ◽

Cryptographic Protocols ◽

Information Theoretic ◽

Information Theoretic Security

Download Full-text

SECURE DIRECT COMMUNICATION USING DETERMINISTIC BB84 PROTOCOL

International Journal of Modern Physics C ◽

10.1142/s0129183108012364 ◽

2008 ◽

Vol 19 (04) ◽

pp. 625-635 ◽

Cited By ~ 11

Author(s):

TZONELIH HWANG ◽

CHUAN-MING LI ◽

NARN-YIH LEE

Keyword(s):

Secure Communication ◽

Quantum Communication ◽

Single Photon ◽

Quantum Channels ◽

Direct Communication ◽

Bb84 Protocol ◽

Practical Applications ◽

Single Qubit ◽

Set Up ◽

Photon States

This paper presents a deterministic BB84 (dBB84) protocol that not only inherits the unconditional security of the original BB84 protocol but also enables the receiver to deterministically measure and decode all qubits sent by the sender. The proposed dBB84 protocol is then extended to be a deterministic secure quantum communication (DSQC) protocol wherein the sender can securely transmit secret messages to the receiver via quantum channels and the receiver can read out the secret messages only after receiving an additional classical bit for each qubit from the sender. In contrast to the existing single-photon-based secure communication protocols, which require the sender to either prepare two-qubit photon states or to establish two-way quantum channels with the receiver, the newly proposed protocol requires the sender to prepare single-qubit photon states for message transmissions and only set up one-way quantum channels to the receiver. Therefore, the proposed protocol is very suitable and feasible in practical applications.

Download Full-text

Device-independent quantum key distribution with random key basis

Nature Communications ◽

10.1038/s41467-021-23147-3 ◽

2021 ◽

Vol 12 (1) ◽

Author(s):

René Schwonnek ◽

Koon Tong Goh ◽

Ignatius W. Primaatmaja ◽

Ernest Y.-Z. Tan ◽

Ramona Wolf ◽

...

Keyword(s):

Quantum Key Distribution ◽

Bell Inequality ◽

Key Distribution ◽

Theory And Practice ◽

Information Theoretic ◽

Information Theoretic Security ◽

Experimental Parameters ◽

Secret Keys ◽

Simple Variant ◽

First Time

AbstractDevice-independent quantum key distribution (DIQKD) is the art of using untrusted devices to distribute secret keys in an insecure network. It thus represents the ultimate form of cryptography, offering not only information-theoretic security against channel attacks, but also against attacks exploiting implementation loopholes. In recent years, much progress has been made towards realising the first DIQKD experiments, but current proposals are just out of reach of today’s loophole-free Bell experiments. Here, we significantly narrow the gap between the theory and practice of DIQKD with a simple variant of the original protocol based on the celebrated Clauser-Horne-Shimony-Holt (CHSH) Bell inequality. By using two randomly chosen key generating bases instead of one, we show that our protocol significantly improves over the original DIQKD protocol, enabling positive keys in the high noise regime for the first time. We also compute the finite-key security of the protocol for general attacks, showing that approximately 108–1010 measurement rounds are needed to achieve positive rates using state-of-the-art experimental parameters. Our proposed DIQKD protocol thus represents a highly promising path towards the first realisation of DIQKD in practice.

Download Full-text