Chi-Hang Fred Fung,Xiongfeng Ma,H. F. Chau

DOI: https://doi.org/10.1103/physreva.81.012318

2010-01-01

Abstract:Quantum key distribution (QKD) is a secure key generation method between two distant parties by wisely exploiting properties of quantum mechanics. In QKD, experimental measurement outcomes on quantum states are transformed by the two parties to a secret key. This transformation is composed of many logical steps (as guided by security proofs), which together will ultimately determine the length of the final secret key and its security. We detail the procedure for performing such classical postprocessing taking into account practical concerns (including the finite-size effect and authentication and encryption for classical communications). This procedure is directly applicable to realistic QKD experiments and thus serves as a recipe that specifies what postprocessing operations are needed and what the security level is for certain lengths of the keys. Our result is applicable to the BB84 protocol with a single or entangled photon source.

Xiongfeng Ma,Chi-Hang Fred Fung,Jean-Christian Boileau,H. F. Chau

DOI: https://doi.org/10.1016/j.cose.2010.11.001

IF: 5.105

2010-01-01

Computers & Security

Abstract:In quantum key distribution (QKD), a secret key is generated between two distant parties by transmitting quantum states. Experimental measurements on the quantum states are then transformed to a secret key by classical post-processing. Here, we propose a construction framework in which QKD classical post-processing can be custom made. Though seemingly obvious, the concept of concatenating classical blocks to form a whole procedure does not automatically apply to the formation of a quantum cryptographic procedure since the security of the entire QKD procedure rests on the laws of quantum mechanics and classical blocks are originally designed and characterized without regard to any properties of these laws. Nevertheless, we justify such concept of concatenating classical blocks in constructing QKD classical post-processing procedures, along with a relation to the universal-composability-security parameter. Consequently, effects arising from an actual QKD experiment, such as those due to the finiteness of the number of signals used, can be dealt with by employing suitable post-processing blocks. Lastly, we use our proposed customizable framework to build a comprehensive generic recipe for classical post-processing that one can follow to derive a secret key from the measurement outcomes in an actual experiment.

LI Mo,ZHANG Chun-Mei,YIN Zhen-Qiang,CHEN Wei,HAN Zheng-Fu

DOI: https://doi.org/10.13868/j.cnki.jcr.000065

2015-01-01

Abstract:Based on the laws of quantum mechanics(the no-cloning theorem, the principle of quantum measurement, Heisenberg's uncertainty principle and so on), quantum key distribution(QKD) allows two legitimate parties(Alice and Bob) to generate secure keys unconditionally. One-time-pad(OTP) has been proved to be unconditionally secure. By combining QKD and OTP together, we can realise unconditional secure communications. Since 1984, researchers have proposed new QKD protocols. QKD contains the quantum communication procedure and the post-processing procedure. The quantum communication procedure is mainly about a series of quantum states being transmitted by Alice and measured by Bob. The post-processing procedure contains base sifting, error estimation, key reconciliation(error correction), error verification, and privacyamplification. With the development of high-speed QKD systems, the post-processing procedure is becoming a bottleneck. Hence, high-speed and effective post-processing procedure plays an important role in high-speed QKD systems. In this paper, we give a briefly review on the principle and concrete algorithms of the post-processing procedure in quantum key distribution.

Baokang Zhao,Bo Liu,Chunqing Wu,Wanrong Yu,Ilsun You

DOI: https://doi.org/10.1109/bwcca.2015.77

2015-01-01

Abstract:Quantum Key Distribution (QKD) technology, based on quantum uncertainty principle, no-cloning theorem and Heisenberg uncertainty principle, can generate information-theoretically secure keys for communication parties. Typical QKD systems include the quantum communication phase and the post-processing phase and can be divided into three families: Device Dependent QKD, Source-Device Independent QKD and Measurement-Device Independent QKD. Nowadays, QKD is already mature enough for real-life applications. High-speed, long-distance and multi-access QKD technologies and security patches against quantum hacking are both continuously research tendency of QKD in the future.

Liu-Jun Wang,Kai-Yi Zhang,Jia-Yong Wang,Jie Cheng,Yong-Hua Yang,Shi-Biao Tang,Di Yan,Yan-Lin Tang,Zhen Liu,Yu Yu,Qiang Zhang,Jian-Wei Pan

DOI: https://doi.org/10.1038/s41534-021-00400-7

IF: 10.758

2021-05-06

npj Quantum Information

Abstract:Abstract Quantum key distribution (QKD) can provide information theoretically secure key exchange even in the era of quantum computers. However, QKD requires the classical channel to be authenticated, the current method for which is pre-sharing symmetric keys. For a QKD network of n users, this method requires $${C}_{n}^{2}=n(n-1)/2$$ C n 2 = n ( n − 1 ) / 2 pairs of symmetric keys to realize pairwise interconnection. In contrast, with the help of a mature public key infrastructure (PKI) and post-quantum cryptography (PQC) with quantum-resistant security, each user only needs to apply for one digital certificate from a certificate authority (CA) to achieve efficient and secure authentication for QKD. We need to assume only the short-term security of the PQC algorithm to achieve long-term security of the distributed keys. Here, we experimentally verified the feasibility, efficiency, and stability of the PQC algorithm in QKD authentication, and demonstrated the advantages when new users join the QKD network. Using the PQC public-key infrastructure, the nodes need to mutually trust only the CA to authenticate each other. QKD combined with PQC authentication will greatly promote and extend the application prospects of quantum-safe communication.

physics, condensed matter, applied, atomic, molecular & chemical,quantum science & technology

Zhengyu Li,Yi-Chen Zhang,Hong Guo

DOI: https://doi.org/10.48550/arxiv.1805.04249

2018-01-01

Abstract:Quantum key distribution (QKD) provides secure keys resistant to code-breaking quantum computers. As headed towards commercial application, it is crucial to guarantee the practical security of QKD systems. However, the difficulty of security proof limits the flexibility of protocol proposals, which may not fulfill with real application requirements. Here we show a protocol design framework that allows one to securely construct the protocol using arbitrary non-orthogonal states. Multi-mode entangled source is virtually introduced for the security analysis, while coherent measurement is used to provide raw data. This 'arbitrary' feature reverses the traditional protocol-decide-the-system working style, such that the protocol design now can follow what the system generates. We show a valuable showcase, which not only solves the security challenge of discrete-modulated coherent states, but also achieves high performance with no more than 256 coherent states. Our findings lower the requirement for system venders with off-the-shell devices, thus will promote the commercialization of QKD.

Xiang-Bin Wang

DOI: https://doi.org/10.1007/3-540-33133-6_8

2006-01-01

Abstract:Unlike from the existing classical protocols, a quantum key distribution (QKD) protocol can help two remote parties do secure private communication with proven security. We study various QKD protocols with special emphasis on security, feasibility and robustness. The security proof of the standard four-state protocol can be done based on the virtual entanglement purification by classical hashing. QKD can be done with unconditional security even when an imperfect source such as the coherent light from a traditional laser device is used. In particular, we show that one can do QKD effectively with a traditional laser device through the decoy-state method, i.e., changing the intensity of each pulse randomly among three values. One can improve the key rate and noise threshold if the channel noise is asymmetric. One can also do QKD more robustly with a two-qubit quantum code given that the channel noise is collective or independent.

Marcos Curty,Hoi-Kwong Lo

DOI: https://doi.org/10.1038/s41534-019-0131-5

IF: 10.758

2019-02-06

npj Quantum Information

Abstract:The existing paradigm for the security of quantum key distribution (QKD) suffers from two fundamental weaknesses. First, covert channels have emerged as an important threat and have attracted a lot of attention in security research in conventional information and communication systems. Covert channels (e.g. memory attacks) can fatally break the security of even device-independent quantum key distribution (DI-QKD), whenever QKD devices are re-used. Second, it is often implicitly assumed that the classical post-processing units of a QKD system are trusted. This is a rather strong assumption and is very hard to justify in practice. Here, we propose a new paradigm for the security of QKD that addresses these two fundamental problems. Specifically, we show that by using verifiable secret sharing and multiple optical devices and classical post-processing units, one could re-establish the security of QKD. Our techniques are rather general and they apply to both DI-QKD and non-DI-QKD.

physics, condensed matter, applied, atomic, molecular & chemical,quantum science & technology

Yi Luo,Xi Cheng,Hao-Kun Mao,Qiong Li

DOI: https://doi.org/10.3390/math12142243

IF: 2.4

2024-07-19

Mathematics

Abstract:Quantum key distribution (QKD) technology is a frontier in the field of secure communication, leveraging the principles of quantum mechanics to offer information-theoretically secure keys. Postprocessing is an important part of a whole QKD system because it directly impacts the secure key rate and the security of the system. In particular, with the fast increase in the photon transmission frequency in a QKD system, the processing speed of postprocessing becomes an essential issue. Our study embarks on a comprehensive review of the development of postprocessing of QKD, including five subprotocols, namely, parameter estimation, sifting, information reconciliation, privacy amplification, and channel authentication. Furthermore, we emphasize the issues raised in the implementation of these subprotocols under practical scenarios, such as limited computation or storage resources and fluctuations in channel environments. Based on the composable security theory, we demonstrate how enhancements in each subprotocol influence the secure key rate and security parameters, which can provide meaningful insights for future advancements in QKD.

mathematics

Matthias Christandl,Artur Ekert,Michal Horodecki,Pawel Horodecki,Jonathan Oppenheim,Renato Renner

DOI: https://doi.org/10.1007/978-3-540-70936-7_25

2007-01-01

Abstract:Assume that two distant parties, Alice and Bob, as well as an adversary, Eve, have access to (quantum) systems prepared jointly according to a tripartite state PABE. In addition, Alice and Bob can use local operations and authenticated public classical communication. Their goal is to establish a key which is unknown to Eve. We initiate the study of this scenario as a unification of two standard scenarios: (i) key distillation (agreement) from classical correlations and (ii) key distillation from pure tripartite quantum states.Firstly, we obtain generalisations of fundamental results related to scenarios (i) and (ii), including upper bounds on the key rate, i.e., the number of key bits that can be extracted per copy Of PABE. Moreover, based on an embedding of classical distributions into quantum states, we are able to find new connections between protocols and quantities in the standard scenarios (i) and (ii).Secondly, we study specific properties of key distillation protocols. In particular, we show that every protocol that makes use of pre-shared key can be transformed into an equally efficient protocol which needs no pre-shared key. This result is of practical significance as it applies to quantum. key distribution (QKD) protocols, but it also implies that the key rate cannot be locked with information on Eve's side. Finally, we exhibit an arbitrarily large separation between the key rate in the standard setting where Eve is equipped with quantum memory and the key rate in a setting where Eve is only given classical memory. This shows that assumptions on the nature of Eve's memory are important in order to determine the correct security threshold in QKD.

Matthias Christandl,Renato Renner,Artur Ekert

2004-01-01

Abstract:Quantum key distribution allows two parties, traditionally known as Alice and Bob, to establish a secure random cryptographic key if, firstly, they have access to a quantum communication channel, and secondly, they can exchange classical public messages which can be monitored but not altered by an eavesdropper, Eve. Quantum key distribution provides perfect security because, unlike its classical counterpart, it relies on the laws of physics rather than on ensuring that successful eavesdropping would require excessive computational effort. However, security proofs of quantum key distribution are not trivial and are usually restricted in their applicability to specific protocols. In contrast, we present a general and conceptually simple proof which can be applied to a number of different protocols. It relies on the fact that a cryptographic procedure called privacy amplification is equally secure when an adversary’s memory for data storage is quantum rather than classical [1].

Hua-Lei Yin

2024-08-24

Abstract:Key distribution plays a fundamental role in cryptography. Currently, the quantum scheme stands as the only known method for achieving unconditionally secure key distribution. This method has been demonstrated over distances of 508 and 1002 kilometers in the measurement-device-independent and twin-field configurations, respectively. However, quantum key distribution faces transmission distance issues and numerous side channel attacks since the basic physical picture requires the use of quantum channels between users. Even when quantum repeater and quantum constellation are used, commercializing quantum cryptography on a large scale remains unattainable due to the considerable expense and significant technical hurdles associated with establishing a global quantum network and facilitating mobile quantum communication. Here, by discovering the provable quantum one-way function, we propose another key distribution scheme with unconditional security, named probability key distribution, that promises users between any two distances to generate a fixed and high secret key rate. There are no quantum channels for exchanging quantum signals between two legitimate users. Non-local entangled states can be generated, identified and measured in the equivalent virtual protocol and can be used to extract secret keys. We anticipate that this discovery presents a paradigm shift in achieving unconditionally secure cryptography, thereby facilitating its widespread application on a global scale.

Quantum Physics,Cryptography and Security

Davide Li Calsi,Sumit Chaudhary,JinHyeock Choi,Marc Geitz,Janis Nötzel

2024-11-27

Abstract:Quantum Key Distribution (QKD) systems are infamously known for their high demand on hardware, their extremely low key generation rates and their lack of security resulting from a need for trusted nodes which is implied by the absence of quantum repeaters. While they theoretically offer unlimited security, they are therefore practically limited in several regards. In this work we focus on the lack of options to guarantee an end-to-end security service with the currently available technology and infrastructure and propose a novel protocol. We find that one of the stumbling stones on the path towards an end-to-end security service guaranteed by quantum key distribution may be removed by using this protocol. Our proposal combines several parallel instances of twinfield QKD followed by classical postprocessing and communication to allow Alice and Bob to share a secret key. This hybrid approach improves the key rate and range w.r.t. to previous QKD approaches at a contained cost in security. We show that a coalition of intermediary nodes between Alice and Bob is needed to break the new scheme, sharply outperforming the trusted node approach in terms of security. Furthermore, the protocols do not require complex quantum measurements on Alice and Bob's sides, thus being truly end-to-end.

Quantum Physics,Cryptography and Security

Michele Mosca,Douglas Stebila,Berkant Ustaoğlu

DOI: https://doi.org/10.1007/978-3-642-38616-9_9

2013-01-01

Abstract:Key establishment is a crucial primitive for building secure channels in a multi-party setting. Without quantum mechanics, key establishment can only be done under the assumption that some computational problem is hard. Since digital communication can be easily eavesdropped and recorded, it is important to consider the secrecy of information anticipating future algorithmic and computational discoveries which could break the secrecy of past keys, violating the secrecy of the confidential channel.Quantum key distribution (QKD) can be used generate secret keys that are secure against any future algorithmic or computational improvements. QKD protocols still require authentication of classical communication, although existing security proofs of QKD typically assume idealized authentication. It is generally considered folklore that QKD when used with computationally secure authentication is still secure against an unbounded adversary, provided the adversary did not break the authentication during the run of the protocol.We describe a security model for quantum key distribution extending classical authenticated key exchange (AKE) security models. Using our model, we characterize the long-term security of the BB84 QKD protocol with computationally secure authentication against an eventually unbounded adversary. By basing our model on traditional AKE models, we can more readily compare the relative merits of various forms of QKD and existing classical AKE protocols. This comparison illustrates in which types of adversarial environments different quantum and classical key agreement protocols can be secure.

Liu-Jun Wang,You-Yang Zhou,Jian-Ming Yin,Qing Chen

DOI: https://doi.org/10.48550/arxiv.2206.01164

2022-01-01

Abstract: With the development of quantum computers, traditional cryptographic systems are facing more and more serious security threats. Fortunately, quantum key distribution (QKD) and post-quantum cryptography (PQC) are two cryptographic mechanisms with quantum-resistant security, and both will become important solutions for future information security. However, neither of them is perfect, and they are complementary. Quantum key distribution has unconditional security that post-quantum cryptography does not have, and PQC can provide secure and convenient authentication for QKD networks. In this paper, we propose two protocols based on PQC to realize the full authentication of the QKD data post-processing, and we only need to assume the short-term security of PQC algorithm to ensure the long-term quantum resistant security of distributed keys. We found that for the above two authentication protocols, attackers cannot successfully implement replay attacks. These authentication protocols can solve the problems of the current pre-shared key authentication in the application of large-scale quantum key distribution networks, and are expected to realize a key distribution mechanism with practical operability and quantum resistant security, which will be beneficial to promote the deployment and application of quantum key distribution networks.

Pratapaditya Bej,Vinod Jayakeerthi

2024-04-12

Abstract:The evolution of Quantum Key Distribution (QKD) relies on innovative methods to enhance its security and efficiency. Unextendible Product Bases (UPBs) hold promise in quantum cryptography due to their inherent indistinguishability, yet they are underutilized in QKD protocols. This work introduces a protocol utilizing UPBs to establish quantum keys between distant parties. Specifically, we propose a protocol utilizing a $3\times 3$ tile UPB, where Alice sequentially transmits subsystem states to Bob through quantum channels. The protocol's security is underpinned by the no-cloning theorem, prohibiting the cloning of orthogonal states. We analyze potential attacks, including intercept-resend and detector blinding attacks when quantum channels are noiseless, and discuss the challenges posed by the indistinguishability of our protocol for eavesdroppers, thereby enhancing QKD security.

Quantum Physics

Yoshito Kanamori,Seong-Moo Yoo

DOI: https://doi.org/10.48550/arXiv.1004.0599

2010-04-05

Abstract:This letter proposes a novel key distribution protocol with no key exchange in advance, which is secure as the BB84 quantum key distribution protocol. Our protocol utilizes a photon in superposition state for single-bit data transmission instead of a classical electrical/optical signal. The security of this protocol relies on the fact, that the arbitrary quantum state cannot be cloned, known as the no-cloning theorem. This protocol can be implemented with current technologies.

Cryptography and Security

Georgios M. Nikolopoulos

DOI: https://doi.org/10.48550/arXiv.2108.00468

2021-08-01

Quantum Physics

Abstract:Physical unclonable functions have been shown a useful resource of randomness for implementing various cryptographic tasks including entity authentication. All of the related entity authentication protocols that have been discussed in the literature so far, either they are vulnerable to an emulation attack, or they are limited to short distances. Hence, quantum-safe remote entity authentication over large distances remains an open question. In the first part of this work we discuss the requirements that an entity authentication protocol has to offer in order to be useful for remote entity authentication in practice. Subsequently, we propose a protocol, which can operate over large distances, and offers security against both classical and quantum adversaries. The proposed protocol relies on standard techniques, it is fully compatible with the infrastructure of existing and future photonic networks, and it can operate in parallel with other quantum protocols, including QKD protocols.

Xiongfeng Ma,Chi-Hang Fred Fung,Frederic Dupuis,Kai Chen,Kiyoshi Tamaki,Hoi-Kwong Lo

DOI: https://doi.org/10.1103/physreva.74.032330

2006-01-01

Abstract:Decoy states have recently been proposed as a useful method for substantially improving the performance of quantum key distribution (QKD) protocols when a coherent-state source is used. Previously, data postprocessing schemes based on one-way classical communications were considered for use with decoy states. In this paper, we develop two data postprocessing schemes for the decoy-state method using two-way classical communications. Our numerical simulation (using parameters from a specific QKD experiment as an example) results show that our scheme is able to extend the maximal secure distance from 142 km (using only one-way classical communications with decoy states) to 181 km. The second scheme is able to achieve a 10% greater key generation rate in the whole regime of distances. We conclude that decoy-state QKD with two-way classical postprocessing is of practical interest.

Qiong Li,Dan Le,Ming Rao

DOI: https://doi.org/10.1109/IMCCC.2012.68

2012-01-01

Abstract:Although the quantum technology introduces an unprecedented threat to the classical encryption field, the combination of Quantum Key Distribution (QKD) and one-time pad makes the absolutely secure encryption possible. However the key distribution rate of most QKD systems still cannot meet the requirements of practical applications. The complex QKD post-processing is one of the largest obstacles to improving the key distribution rate. In this paper, the design and implementation of a multi-thread QKD post-processing software is introduced, including the motivation, architecture and communication protocol. The QKD post processing software is flexible, efficient and easy to implement.