Konstantinos Gkouliaras,Vasileios Theos,Stylianos Chatzidakis

DOI: https://doi.org/10.1080/00295450.2024.2368977

IF: 1.667

2024-07-20

Nuclear Technology

Abstract:Recent advancements in reactor designs could offer new revolutionary capabilities, including remote monitoring, increased flexibility, and reduced operation and maintenance costs. Embracing new digital technologies would allow for operational concepts such as semiautonomous or near-autonomous control, and two-way communications for real-time integration with the upcoming smart electric grid. However, such continuous data transmission from and toward a reactor site could potentially introduce new challenges and vulnerabilities, necessitating the prioritization of cybersecurity. Conventional information technology–based encryption schemes, which rely mostly on computational complexity, have been shown to be vulnerable to cyberattacks. With the advent of quantum computing, practically any asymmetric encryption could be potentially compromised. For example, it has been shown that a RSA-2048 bit key could be broken in 8 h. To address this challenge, we explore the feasibility of quantum key distribution (QKD) to secure communications. QKD is a physical layer security scheme relying on the laws of quantum mechanics instead of mathematical complexity. QKD promises not only unconditional security but also detection of potential intrusion, as it allows the communication parties to become aware of eavesdropping. To test the proposed hypothesis, a novel simulation tool (NuQKD) was developed to allow for real-time simulation of the BB84 QKD protocol between two remote terminals. A reference scenario is proposed, generic enough to cover various internal and external communication links to a reactor site. Using NuQKD, the internal and external data links were modeled, and receiver operating characteristic curves were calculated for various QKD configurations. A performance analysis was conducted, demonstrating that QKD can provide adequate secret key rates with low false alarms and has the potential of addressing the nuclear industry's high standards of confidentiality for distance lengths up to 75 km of fiberoptics. Using a conservative estimation, QKD can provide up to 21.5 kbps of secret key rate for a distance of 1 km and 14.4 kbps at 10 km. The target secret key rates for the corresponding links were estimated at 16 kbps and 80 bps, respectively, based on the analysis of real data from a PUR-1 fully digital reactor. Consequently, QKD is shown to be compatible with existing and future point-to-point reactor communication architectures. These results motivate further study of quantum communications for nuclear reactors.

nuclear science & technology

Hai-Jin Ding,Re-Bing Wu,Qian-Chuan Zhao

DOI: https://doi.org/10.48550/arxiv.1805.09015

2018-01-01

Abstract:Cyber-security has become vital for modern networked control systems (NCS). In this paper, we propose that the emerging technology of quantum key distribution (QKD) can be applied to enhance the privacy and security of NCS up to an unbreakable level. QKD can continuously distribute random secret keys with much higher privacy between communication parties, and thus enable the one-time pad encryption that cannot be truly applied in classical networks. We show that the resulting overall security of NCS can be essentially improved, and present a composable definition of security based on the analysis of the key generation and management processes. Moreover, because the security is mainly determined by quantum keys rather than the complexity of encryption algorithms, the control performance can be improved as well by reducing the time delay using simpler algorithms. These advantages are demonstrated by the example of a remotely controlled servo system, showing that the introduction of QKD to NCS can simultaneously improve the security and performance by using the simplest encryption algorithm XOR. Furthermore, we propose a novel Kalman-filter embedded communication protocol that can more efficiently use the raw keys generated by QKD.

Jongmin Ahn,Hee-Yong Kwon,Bohyun Ahn,Kyuchan Park,Taesic Kim,Mun-Kyu Lee,Jinsan Kim,Jaehak Chung

DOI: https://doi.org/10.3390/en15030714

IF: 3.2

2022-01-19

Energies

Abstract:Quantum computing is a game-changing technology that affects modern cryptography and security systems including distributed energy resources (DERs) systems. Since the new quantum era is coming soon in 5–10 years, it is crucial to prepare and develop quantum-safe DER systems. This paper provides a comprehensive review of vulnerabilities caused by quantum computing attacks, potential defense strategies, and remaining challenges for DER networks. First, new security vulnerabilities and attack models of the cyber-physical DER systems caused by quantum computing attacks are explored. Moreover, this paper introduces potential quantum attack defense strategies including Quantum Key Distribution (QKD) and Post-Quantum Cryptography (PQC), which can be applied to DER networks and evaluates defense strategies. Finally, remaining research opportunities and challenges for next-generation quantum-safe DER are discussed.

energy & fuels

Muneer Alshowkan,Philip G. Evans,Michael Starke,Duncan Earl,Nicholas A. Peters

DOI: https://doi.org/10.1038/s41598-022-16090-w

IF: 4.6

2022-07-29

Scientific Reports

Abstract:Smart grid solutions enable utilities and customers to better monitor and control energy use via information and communications technology. Information technology is intended to improve the future electric grid's reliability, efficiency, and sustainability by implementing advanced monitoring and control systems. However, leveraging modern communications systems also makes the grid vulnerable to cyberattacks. Here we report the first use of quantum key distribution (QKD) keys in the authentication of smart grid communications. In particular, we make such demonstration on a deployed electric utility fiber network. The developed method was prototyped in a software package to manage and utilize cryptographic keys to authenticate machine-to-machine communications used for supervisory control and data acquisition (SCADA). This demonstration showcases the feasibility of using QKD to improve the security of critical infrastructure, including future distributed energy resources (DERs), such as energy storage.

multidisciplinary sciences

Mathieu Bozzio,Claude Crépeau,Petros Wallden,Philip Walther

2024-11-14

Abstract:Due to its fundamental principles, quantum theory holds the promise to enhance the security of modern cryptography, from message encryption to anonymous communication, digital signatures, online banking, leader election, one-time passwords and delegated computation. While quantum key distribution (QKD) has already enabled secure key exchange over hundreds of kilometers, a myriad of other quantum-cryptographic primitives are being developed to secure future applications against quantum adversaries. This article surveys the theoretical and experimental developments in quantum cryptography beyond QKD over the past decades, along with advances in secure quantum computation. It provides an intuitive classification of the main quantum primitives and their security levels, summarizes their possibilities and limits, and discusses their implementation with current photonic technology.

Quantum Physics

Suman Rath,Neel Kanth Kundu,Subham Sahoo

2024-05-18

Abstract:Quantum key distribution (QKD) has often been hailed as a reliable technology for secure communication in cyber-physical microgrids. Even though unauthorized key measurements are not possible in QKD, attempts to read them can disturb quantum states leading to mutations in the transmitted value. Further, inaccurate quantum keys can lead to erroneous decryption producing garbage values, destabilizing microgrid operation. QKD can also be vulnerable to node-level manipulations incorporating attack values into measurements before they are encrypted at the communication layer. To address these issues, this paper proposes a secure QKD protocol that can identify errors in keys and/or nodal measurements by observing violations in control dynamics. Additionally, the protocol uses a dynamic adjacency matrix-based formulation strategy enabling the affected nodes to reconstruct a trustworthy signal and replace it with the attacked signal in a multi-hop manner. This enables microgrids to perform nominal operations in the presence of adversaries who try to eavesdrop on the system causing an increase in the quantum bit error rate (QBER). We provide several case studies to showcase the robustness of the proposed strategy against eavesdroppers and node manipulations. The results demonstrate that it can resist unwanted observation and attack vectors that manipulate signals before encryption.

Cryptography and Security,Quantum Physics

Zefan Tang,Yanyuan Qin,Zimin Jiang,Walter O. Krawec,Peng Zhang

DOI: https://doi.org/10.1109/tpwrs.2020.3011071

IF: 7.326

2021-03-01

IEEE Transactions on Power Systems

Abstract:Existing microgrid communication relies on classical public key systems, which are vulnerable to attacks from quantum computers. This paper uses quantum key distribution (QKD) to solve these quantum-era microgrid challenges. Specifically, this paper makes the following novel contributions: 1) it devises a novel QKD simulator capable of simulating QKD protocols; 2) it offers a QKD-based microgrid communication architecture for microgrids; 3) it shows how to build a quantum-secure microgrid testbed in an RTDS environment; 4) it develops a key pool sharing (KPS) strategy to improve the cyberattack resilience of the QKD-based microgrid; and 5) it analyzes the impacts of critical QKD parameters with the testbed. Test results provide insightful resources for building a quantum-secure microgrid.

engineering, electrical & electronic

Peng-Yong Kong

DOI: https://doi.org/10.1109/jsyst.2020.3024956

IF: 4.802

2022-03-01

IEEE Systems Journal

Abstract:Smart grid depends on an advanced communication network to collect information from the power grid, and to disseminate control commands to the control devices. To safeguard the power grid, it is crucial to ensure information confidentiality in the communication networks. Quantum key distribution (QKD) protocols help in generating, and distributing secret keys between communication parties, and such secret keys are required in symmetric cryptography. The combination of QKD protocols, and symmetric cryptography are known to be unconditionally secure, which means information confidentiality can be guaranteed even against an eavesdropper, who has unlimited resources. This article provides a concise review of existing works on QKD protocols, and their applications in smart grid communications. Deploying QKD protocols in smart grid is challenging because distance between the control center, and control devices can be larger than the limits of existing protocols. Also, QKD protocols require an expensive quantum channel between each pair of sender, and receiver nodes, and there is large number of control devices with diverse capabilities in smart grid. We have classified existing works based on the challenges they have dealt with. Compared to the rich literature on QKD protocols in general, there are significantly fewer works in the specific context of smart grid. This can be an indication for opportunity to make a significant contribution. We have also identified a few research challenges that can be potential future works.

computer science, information systems,telecommunications,engineering, electrical & electronic,operations research & management science

Pei Zeng,Debayan Bandyopadhyay,José A. Méndez Méndez,Nolan Bitner,Alexander Kolar,Michael T. Solomon,Filip Rozpedek,Tian Zhong,F. Joseph Heremans,David D. Awschalom,Liang Jiang,Junyu Liu

2024-11-02

Abstract:Quantum resistance is vital for emerging cryptographic systems as quantum technologies continue to advance towards large-scale, fault-tolerant quantum computers. Resistance may be offered by quantum key distribution (QKD), which provides information-theoretic security using quantum states of photons, but may be limited by transmission loss at long distances. An alternative approach uses classical means and is conjectured to be resistant to quantum attacks, so-called post-quantum cryptography (PQC), but it is yet to be rigorously proven, and its current implementations are computationally expensive. To overcome the security and performance challenges present in each, here we develop hybrid protocols by which QKD and PQC inter-operate within a joint quantum-classical network. In particular, we consider different hybrid designs that may offer enhanced speed and/or security over the individual performance of either approach. Furthermore, we present a method for analyzing the security of hybrid protocols in key distribution networks. Our hybrid approach paves the way for joint quantum-classical communication networks, which leverage the advantages of both QKD and PQC and can be tailored to the requirements of various practical networks.

Quantum Physics,Artificial Intelligence,Cryptography and Security

Piotr K. Tysowski,Xinhua Ling,Norbert Lütkenhaus,Michele Mosca

DOI: https://doi.org/10.1088/2058-9565/aa9a5d

2017-12-07

Abstract:Quantum Key Distribution (QKD) is a means of generating keys between a pair of computing hosts that is theoretically secure against cryptanalysis, even by a quantum computer. Although there is much active research into improving the QKD technology itself, there is still significant work to be done to apply engineering methodology and determine how it can be practically built to scale within an enterprise IT environment. Significant challenges exist in building a practical key management service for use in a metropolitan network. QKD is generally a point-to-point technique only and is subject to steep performance constraints. The integration of QKD into enterprise-level computing has been researched, to enable quantum-safe communication. A novel method for constructing a key management service is presented that allows arbitrary computing hosts on one site to establish multiple secure communication sessions with the hosts of another site. A key exchange protocol is proposed where symmetric private keys are granted to hosts while satisfying the scalability needs of an enterprise population of users. The key management service operates within a layered architectural style that is able to interoperate with various underlying QKD implementations. Variable levels of security for the host population are enforced through a policy engine. A network layer provides key generation across a network of nodes connected by quantum links. Scheduling and routing functionality allows quantum key material to be relayed across trusted nodes. Optimizations are performed to match the real-time host demand for key material with the capacity afforded by the infrastructure. The result is a flexible and scalable architecture that is suitable for enterprise use and independent of any specific QKD technology.

Cryptography and Security,Networking and Internet Architecture,Quantum Physics

Kranthi Kumar Singamaneni,Gaurav Dhiman,Sapna Juneja,Ghulam Muhammad,Salman A AlQahtani,John Zaki

DOI: https://doi.org/10.3390/s22186741

2022-09-06

Abstract:The industry-based internet of things (IIoT) describes how IIoT devices enhance and extend their capabilities for production amenities, security, and efficacy. IIoT establishes an enterprise-to-enterprise setup that means industries have several factories and manufacturing units that are dependent on other sectors for their services and products. In this context, individual industries need to share their information with other external sectors in a shared environment which may not be secure. The capability to examine and inspect such large-scale information and perform analytical protection over the large volumes of personal and organizational information demands authentication and confidentiality so that the total data are not endangered after illegal access by hackers and other unauthorized persons. In parallel, these large volumes of confidential industrial data need to be processed within reasonable time for effective deliverables. Currently, there are many mathematical-based symmetric and asymmetric key cryptographic approaches and identity- and attribute-based public key cryptographic approaches that exist to address the abovementioned concerns and limitations such as computational overheads and taking more time for crucial generation as part of the encipherment and decipherment process for large-scale data privacy and security. In addition, the required key for the encipherment and decipherment process may be generated by a third party which may be compromised and lead to man-in-the-middle attacks, brute force attacks, etc. In parallel, there are some other quantum key distribution approaches available to produce keys for the encipherment and decipherment process without the need for a third party. However, there are still some attacks such as photon number splitting attacks and faked state attacks that may be possible with these existing QKD approaches. The primary motivation of our work is to address and avoid such abovementioned existing problems with better and optimal computational overhead for key generation, encipherment, and the decipherment process compared to the existing conventional models. To overcome the existing problems, we proposed a novel dynamic quantum key distribution (QKD) algorithm for critical public infrastructure, which will secure all cyber-physical systems as part of IIoT. In this paper, we used novel multi-state qubit representation to support enhanced dynamic, chaotic quantum key generation with high efficiency and low computational overhead. Our proposed QKD algorithm can create a chaotic set of qubits that act as a part of session-wise dynamic keys used to encipher the IIoT-based large scales of information for secure communication and distribution of sensitive information.

Pei Zeng,Debayan Bandyopadhyay,Jose A. Mendez,Nolan Bitner,Alexander Kolar,Michael T. Solomon,F. Joseph Heremans,David D. Awschalom,Liang Jiang,Junyu Liu

2024-11-02

Abstract:The rapid advancement of quantum technologies calls for the design and deployment of quantum-safe cryptographic protocols and communication networks. There are two primary approaches to achieving quantum-resistant security: quantum key distribution (QKD) and post-quantum cryptography (PQC). While each offers unique advantages, both have drawbacks in practical implementation. In this work, we introduce the pros and cons of these protocols and explore how they can be combined to achieve a higher level of security and/or improved performance in key distribution. We hope our discussion inspires further research into the design of hybrid cryptographic protocols for quantum-classical communication networks.

Quantum Physics,Artificial Intelligence,Cryptography and Security

Purva Sharma,Anuj Agrawal,Vimal Bhatia,Shashi Prakash,Amit Kumar Mishra

DOI: https://doi.org/10.1109/ojcoms.2021.3106659

2021-01-01

IEEE Open Journal of the Communications Society

Abstract:Increasing incidents of cyber attacks and evolution of quantum computing poses challenges to secure existing information and communication technologies infrastructure. In recent years, quantum key distribution (QKD) is being extensively researched, and is widely accepted as a promising technology to realize secure networks. Optical fiber networks carry a huge amount of information, and are widely deployed around the world in the backbone terrestrial, submarine, metro, and access networks. Thus, instead of using separate dark fibers for quantum communication, integration of QKD with the existing classical optical networks has been proposed as a cost-efficient solution, however, this integration introduces new research challenges. In this paper, we do a comprehensive survey of the state-of-the-art QKD secured optical networks, which is going to shape communication networks in the coming decades. We elucidate the methods and protocols used in QKD secured optical networks, and describe the process of key establishment. Various methods proposed in the literature to address the networking challenges in QKD secured optical networks, specifically, routing, wavelength and time-slot allocation (RWTA), resiliency, trusted repeater node (TRN) placement, QKD for multicast service, and quantum key recycling are described and compared in detail. This survey begins with the introduction to QKD and its advantages over conventional encryption methods. Thereafter, an overview of QKD is given including quantum bits, basic QKD system, QKD schemes and protocol families along with the detailed description of QKD process based on the Bennett and Brassard-84 (BB84) protocol as it is the most widely used QKD protocol in the literature. QKD system are also prone to some specific types of attacks, hence, we describe the types of quantum hacking attacks on the QKD system along with the methods used to prevent them. Subsequently, the process of point-to-point mechanism of QKD over an optical fiber link is described in detail using the BB84 protocol. Different architectures of QKD secured optical networks are described next. Finally, major findings from this comprehensive survey are summarized with highlighting open issues and challenges in QKD secured optical networks.

Yaser Baseri,Vikas Chouhan,Ali Ghorbani

2024-04-16

Abstract:The emergence of quantum computing presents a double-edged sword for cybersecurity. While its immense power holds promise for advancements in various fields, it also threatens to crack the foundation of current encryption methods. This analysis explores the impact of quantum computing on critical infrastructure and cloud services, meticulously evaluating potential vulnerabilities across various layers, including applications, data, runtime, middleware, operating systems, virtualization, hardware, storage, and networks. We advocate for proactive security strategies and collaboration between sectors to develop and implement quantum-resistant cryptography. This crucial shift necessitates a comprehensive approach, and the paper introduces a tailored security blueprint encompassing nine critical infrastructure components. This blueprint strengthens each area's defenses against potential quantum-induced cyber threats. Our strategic vulnerability and risk assessment equips stakeholders with the knowledge to navigate the complex quantum threat landscape. This empowers them to make informed decisions about design, implementation, and policy formulation, ultimately bolstering the resilience of critical infrastructure. In essence, this analysis not only forecasts quantum threats but also offers a sophisticated, actionable framework for fortifying infrastructure and cloud environments against the multifaceted challenges of the quantum era. This proactive approach will ensure continued data security and a thriving digital landscape in the years to come

Cryptography and Security

Kaiwei Qiu,Jing Yan Haw,Hao Qin,Nelly H. Y. Ng,Michael Kasper,Alexander Ling

DOI: https://doi.org/10.20517/jsss.2024.02

2024-10-14

Abstract:In the evolving landscape of quantum technology, the increasing prominence of quantum computing poses a significant threat to the security of conventional public key infrastructure. Quantum key distribution (QKD), an established quantum technology at a high readiness level, emerges as a viable solution with commercial adoption potential. QKD facilitates the establishment of secure symmetric random bit strings between two geographically separated, trustworthy entities, safeguarding communications from potential eavesdropping. In particular, data centre interconnects can leverage the potential of QKD devices to ensure the secure transmission of critical and sensitive information in preserving the confidentiality, security, and integrity of their stored data. In this article, we present the successful implementation of a QKD field trial within a commercial data centre environment that utilises the existing fibre network infrastructure. The achieved average secret key rate of 2.392 kbps and an average quantum bit error rate of less than 2% demonstrate the commercial feasibility of QKD in real-world scenarios. As a use case study, we demonstrate the secure transfer of files between two data centres through the Quantum-Secured Virtual Private Network, utilising secret keys generated by the QKD devices.

Quantum Physics

Javier Oliva del Moral,Antonio deMarti iOlius,Gerard Vidal,Pedro M. Crespo,Josu Etxezarreta Martinez

DOI: https://doi.org/10.1109/jiot.2024.3410702

IF: 10.6

2024-09-03

IEEE Internet of Things Journal

Abstract:The machinery of industrial environments was connected to the Internet years ago with the scope of increasing their performance. However, this change made such environments vulnerable against cyber-attacks that can compromise their correct functioning resulting in economic or social problems. Moreover, implementing cryptosystems in the communications between operational technology (OT) devices is a more challenging task than for information technology (IT) environments since the OT networks are generally composed of legacy elements, characterized by low-computational capabilities. Consequently, implementing cryptosystems in industrial communication networks faces a tradeoff between the security of the communications and the amortization of the industrial infrastructure. Critical infrastructure (CI) refers to the industries which provide key resources for the daily social and economical development, e.g., electricity. Furthermore, a new threat to cybersecurity has arisen with the theoretical proposal of quantum computers, due to their potential ability of breaking state-of-the-art cryptography protocols, such as RSA or elliptic curve cryptography. Many global agents have become aware that transitioning their secure communications to a quantum secure paradigm is a priority that should be established before the arrival of fault-tolerance. In this article, we aim to describe the problematic of implementing post-quantum cryptography (PQC) to CI environments. For doing so, we describe the requirements for these scenarios and how they differ against IT. We also introduce classical cryptography and how quantum computers pose a threat to such security protocols. Furthermore, we introduce state-of-the-art proposals of PQC protocols and present their characteristics. We conclude by discussing the problematic of integrating PQC in industrial environments.

computer science, information systems,telecommunications,engineering, electrical & electronic

Emir Dervisevic,Amina Tankovic,Ehsan Fazel,Ramana Kompella,Peppino Fazio,Miroslav Voznak,Miralem Mehic

2024-08-09

Abstract:Secure communication makes the widespread use of telecommunication networks and services possible. With the constant progress of computing and mathematics, new cryptographic methods are being diligently developed. Quantum Key Distribution (QKD) is a promising technology that provides an Information-Theoretically Secure (ITS) solution to the secret-key agreement problem between two remote parties. QKD networks based on trusted repeaters are built to provide service to a larger number of parties at arbitrary distances. They function as an add-on technology to traditional networks, generating, managing, distributing, and supplying ITS cryptographic keys. Since key resources are limited, integrating QKD network services into critical infrastructures necessitates effective key management. As a result, this paper provides a comprehensive review of QKD network key management approaches. They are analyzed to facilitate the identification of potential strategies and accelerate the future development of QKD networks.

Cryptography and Security

Guillermo Currás-Lorenzo,Margarida Pereira,Go Kato,Marcos Curty,Kiyoshi Tamaki

2024-07-23

Abstract:Quantum key distribution (QKD) can theoretically achieve the Holy Grail of cryptography, information-theoretic security against eavesdropping. However, in practice, discrepancies between the mathematical models assumed in security proofs and the actual functioning of the devices used in implementations prevent it from reaching this goal. Device-independent QKD is currently not a satisfactory solution to this problem, as its performance is extremely poor and most of its security proofs assume that the user devices leak absolutely no information to the outside. On the other hand, measurement-device-independent (MDI) QKD can guarantee security with arbitrarily flawed receivers while achieving high performance, and the remaining challenge is ensuring its security in the presence of source imperfections. So far, all efforts in this regard have come at a price; some proofs are suitable only for particular source imperfections, while others severely compromise the system's performance, i.e., its communication speed and distance. Here, we overcome these crucial problems by presenting a security proof in the finite-key regime against coherent attacks that can incorporate general encoding imperfections and side channels while achieving much higher performances than previous approaches. Moreover, our proof requires minimal state characterization, which facilitates its application to real-life implementations.

Quantum Physics

Shuang Wang,Zheng Fu Han,Wei Chen,ZhenQiang Yin,Deyong He,Guang-Can Guo

DOI: https://doi.org/10.1109/PHOSST.2013.6614520

2013-01-01

Abstract:Secure communication and information protection become more and more important in the modern society. Quantum key distribution (QKD) enables two remote legitimate users to share unconditionally secure keys. Different from the former ones, the security of these keys is based on the principles of quantum physics and could be proved. Combined with one-time pad encryption, QKD can provide us an effective way for secure communication and information protection. Since Bennett and Brassard proposed the famous BB84 protocol, QKD or quantum cryptography has become one of the most dynamic research fields. After about twenty years of development, experimental QKD has achieved significant improvements, such as the transmission distance increased from 32 cm to 260 km, the speed increased from 200 Hz to 10 GHz.