Sanzida Hoque,Abdullah Aydeger,Engin Zeydan

2024-04-16

Abstract:The proliferation of mobile networks and their increasing importance to modern life, combined with the emerging threat of quantum computing, present new challenges and opportunities for cybersecurity. This paper addresses the complexity of protecting these critical infrastructures against future quantum attacks while considering operational sustainability. We begin with an overview of the current landscape, identify the main vulnerabilities in mobile networks, and evaluate existing security solutions with new post-quantum cryptography (PQC) methods. We then present a quantum-secure architecture with PQC and Quantum Key Distribution (QKD) tailored explicitly for sustainable mobile networks and illustrate its applicability with several use cases that emphasize the need for advanced protection measures in this new era. In addition, a comprehensive analysis of PQC algorithm families is presented, focusing on their suitability for integration in mobile environments, with particular attention to the trade-offs between energy consumption and security improvements. Finally, recommendations for strengthening mobile networks against quantum threats are provided through a detailed examination of current challenges and opportunities.

Cryptography and Security,Networking and Internet Architecture

Lu Zhang,Qiuzhuo Deng,Hongqi Zhang,Zuomin Yang,Xiaodan Pang,Vjaceslavs Bobrovs,Sergei Popov,Yixin Wu,Xiongbin Yu,Oskars Ozolins,Xianbin Yu

DOI: https://doi.org/10.1109/jstqe.2022.3218848

IF: 4.9

2023-01-01

IEEE Journal of Selected Topics in Quantum Electronics

Abstract:The terahertz communications display an important role in high-speed wireless communications, the security threat from the eavesdroppers in the terahertz communications has been gaining attention recently. The true randomness in the physical layer can ensure one-time-pad encryption for secured terahertz communications, however, physical layer security schemes like the quantum key distribution methods suffer from device imperfections that limit the desirable signal rate and link distance. Herein, we present the quantum noise secured terahertz wireless communications with photonic terahertz signal generation schemes. With the high-order diffusion algorithms, the signal is masked by the quantum noise ciphers to the eavesdroppers and cannot be detected because the inevitable randomness by quantum noise measurement will cause physical measurement errors. In the experiment, we demonstrate 16 Gbits −1 quantum noise secured terahertz wireless communications with the conventional optical communication realms and devices, operating at 300 GHz terahertz frequency. This quantum noise secured terahertz communication approach is a significant step toward high-security wireless communications.

Paul Scalise,Robert Garcia,Matthew Boeding,Michael Hempel,Hamid Sharif

DOI: https://doi.org/10.3390/electronics13214258

IF: 2.9

2024-10-30

Electronics

Abstract:Fifth Generation (5G) cellular networks have been adopted worldwide since the rollout began around 2019. It brought with it many innovations and new services, such as Enhanced Mobile Broadband (eMBB), Ultra Reliable and Low-Latency Communications (URLLC), and Massive Internet of Things (mIoT). Furthermore, 5G introduced a more scalable approach to network operations using fully software-based Virtualized Network Functions (VNF) in Core Networks (CN) rather than the prior hardware-based approach. However, while this shift towards a fully software-based system design provides numerous significant benefits, such as increased interoperability, scalability, and cost-effectiveness, it also brings with it an increased cybersecurity risk. Security is crucial to maintaining trust between vendors, operators, and consumers. Cyberattacks are rapidly increasing in number and sophistication, and we are seeing a shift towards zero-trust approaches. This means that even communications between VNFs inside a 5G core must be scrutinized and hardened against attacks, especially with the advent of quantum computers. The National Institute of Standards and Technology (NIST), over the past 10 years, has led efforts to standardize post-quantum cryptography (PQC) to protect against quantum attacks. This paper covers a custom implementation of the open-source free5GC CN, to expand its HTTPS capabilities for VNFs by introducing PQC Key Encapsulation Methods (KEM) for Transport Layer Security (TLS) v1.3. This paper provides the details of this integration with a focus on the latency of different PQC KEMs in initial handshakes between VNFs, on packet size, and the implications in a 5G environment. This work also conducts a security comparison between the PQC-equipped free5GC and other open-source 5G CNs. The presented results indicate a negligible increase in UE connection setup duration and a small increase in connection setup data requirements, strongly indicating that PQC KEM's benefits far outweigh any downsides when integrated into 5G and 6G core services. To the best of our knowledge, this is the first work incorporating PQC into an open-source 5G core. Furthermore, the results from this effort demonstrate that employing PQC ciphers for securing VNF communications results in only a negligible impact on latency and bandwidth usage, thus demonstrating significant benefits to 5G cybersecurity.

engineering, electrical & electronic,computer science, information systems,physics, applied

Pei Zeng,Debayan Bandyopadhyay,Jose A. Mendez,Nolan Bitner,Alexander Kolar,Michael T. Solomon,F. Joseph Heremans,David D. Awschalom,Liang Jiang,Junyu Liu

2024-11-02

Abstract:The rapid advancement of quantum technologies calls for the design and deployment of quantum-safe cryptographic protocols and communication networks. There are two primary approaches to achieving quantum-resistant security: quantum key distribution (QKD) and post-quantum cryptography (PQC). While each offers unique advantages, both have drawbacks in practical implementation. In this work, we introduce the pros and cons of these protocols and explore how they can be combined to achieve a higher level of security and/or improved performance in key distribution. We hope our discussion inspires further research into the design of hybrid cryptographic protocols for quantum-classical communication networks.

Quantum Physics,Artificial Intelligence,Cryptography and Security

Marcel Kempf,Nikolas Gauder,Benedikt Jaeger,Johannes Zirngibl,Georg Carle

2024-05-15

Abstract:QUIC is a new network protocol standardized in 2021. It was designed to replace the TCP/TLS stack and is based on UDP. The most current web standard HTTP/3 is specifically designed to use QUIC as transport protocol. QUIC claims to provide secure and fast transport with low-latency connection establishment, flow and congestion control, reliable delivery, and stream multiplexing. To achieve the security goals, QUIC enforces the usage of TLS 1.3. It uses authenticated encryption with additional data (AEAD) algorithms to not only protect the payload but also parts of the header. The handshake relies on asymmetric cryptography, which will be broken with the introduction of powerful quantum computers, making the use of post-quantum cryptography inevitable. This paper presents a detailed evaluation of the impact of cryptography on QUIC performance. The high-performance QUIC implementations LSQUIC, quiche, and MsQuic are evaluated under different aspects. We break symmetric cryptography down to the different security features. To be able to isolate the impact of cryptography, we implemented a NOOP AEAD algorithm which leaves plaintext unaltered. We show that QUIC performance increases by 10 to 20% when removing packet protection. The header protection has negligible impact on performance, especially for AES ciphers. We integrate post-quantum cryptographic algorithms into QUIC, demonstrating its feasibility without major changes to the QUIC libraries by using a TLS library that implements post-quantum algorithms. Kyber, Dilithium, and FALCON are promising candidates for post-quantum secure QUIC, as they have a low impact on the handshake duration. Algorithms like SPHINCS+ with larger key sizes or more complex calculations significantly impact the handshake duration and cause additional issues in our measurements.

Networking and Internet Architecture,Cryptography and Security

Kadir Sabanci,Mumin Cebe

DOI: https://doi.org/10.48550/arXiv.2309.03338

2023-09-07

Abstract:Narrowband Internet of Things (NB-IoT) is a wireless communication technology that enables a wide range of applications, from smart cities to industrial automation. As a part of the 5G extension, NB-IoT promises to connect billions of devices with low-power and low-cost requirements. However, with the advent of quantum computers, the incoming NB-IoT era is already under threat by these devices, which might break the conventional cryptographic algorithms that can be adapted to secure NB-IoT devices on large scale. In this context, we investigate the feasibility of using post-quantum key exchange and signature algorithms for securing NB-IoT applications. We develop a realistic ns-3 environment to represent the characteristics of NB-IoT networks and analyze the usage of post-quantum algorithms to secure communication. Our findings suggest that using NIST-selected post-quantum key-exchange protocol Kyber does not introduce significant overhead, but post-quantum signature schemes can result in impractical latency times and lower throughputs

Cryptography and Security

Dr. G S Mamatha,Namya Dimri,Rasha Sinha

2024-03-18

Abstract:The advent of quantum computing poses a profound threat to traditional cryptographic systems, exposing vulnerabilities that compromise the security of digital communication channels reliant on RSA, ECC, and similar classical encryption methods. Quantum algorithms, notably Shor's algorithm, exploit the inherent computational power of quantum computers to efficiently solve mathematical problems underlying these cryptographic schemes. In response, post-quantum cryptography (PQC) emerged as a critical field aimed at developing resilient cryptographic algorithms impervious to quantum attacks. This paper delineates the vulnerabilities of classical cryptographic systems to quantum attacks, elucidates the principles of quantum computing, and introduces various PQC algorithms such as lattice-based cryptography, code-based cryptography, hash-based cryptography, and multivariate polynomial cryptography. Highlighting the importance of PQC in securing digital communication amidst quantum computing advancements, this research underscores its pivotal role in safeguarding data integrity, confidentiality, and authenticity in the face of emerging quantum threats.

Cryptography and Security

Jongmin Ahn,Hee-Yong Kwon,Bohyun Ahn,Kyuchan Park,Taesic Kim,Mun-Kyu Lee,Jinsan Kim,Jaehak Chung

DOI: https://doi.org/10.3390/en15030714

IF: 3.2

2022-01-19

Energies

Abstract:Quantum computing is a game-changing technology that affects modern cryptography and security systems including distributed energy resources (DERs) systems. Since the new quantum era is coming soon in 5–10 years, it is crucial to prepare and develop quantum-safe DER systems. This paper provides a comprehensive review of vulnerabilities caused by quantum computing attacks, potential defense strategies, and remaining challenges for DER networks. First, new security vulnerabilities and attack models of the cyber-physical DER systems caused by quantum computing attacks are explored. Moreover, this paper introduces potential quantum attack defense strategies including Quantum Key Distribution (QKD) and Post-Quantum Cryptography (PQC), which can be applied to DER networks and evaluates defense strategies. Finally, remaining research opportunities and challenges for next-generation quantum-safe DER are discussed.

energy & fuels

Bernardo Huberman,Bob Lund,Jing Wang

DOI: https://doi.org/10.48550/arXiv.2007.05522

2020-07-11

Abstract:Quantum computing represents an emerging threat to the public key infrastructure underlying transport layer security (TLS) widely used in the Internet. This paper describes how QKD symmetric keys can be used with TLS to provide quantum computing resistant security for existing Internet applications. We also implement and test a general hybrid key delivery architecture with QKD over long distance fibers between secure sites, and wireless key distribution over short distance within each site Finally we show how this same capability can be extended to a TLS cipher scheme with perfect security.

Cryptography and Security,Computers and Society,Networking and Internet Architecture,Quantum Physics

Jakub Sowa,Bach Hoang,Advaith Yeluru,Steven Qie,Anita Nikolich,Ravishankar Iyer,Phuong Cao

2024-08-08

Abstract:The problem of adopting quantum-resistant cryptographic network protocols or post-quantum cryptography (PQC) is critically important to democratizing quantum computing. The problem is urgent because practical quantum computers will break classical encryption in the next few decades. Past encrypted data has already been collected and can be decrypted in the near future. The main challenges of adopting post-quantum cryptography lie in algorithmic complexity and hardware/software/network implementation. The grand question of how existing cyberinfrastructure will support post-quantum cryptography remains unanswered. This paper describes: i) the design of a novel Post-Quantum Cryptography (PQC) network instrument placed at the National Center for Supercomputing Applications (NCSA) at the University of Illinois at Urbana-Champaign and a part of the FABRIC testbed; ii) the latest results on PQC adoption rate across a wide spectrum of network protocols (Secure Shell -- SSH, Transport Layer Security -- TLS, etc.); iii) the current state of PQC implementation in key scientific applications (e.g., OpenSSH or SciTokens); iv) the challenges of being quantum-resistant; and v) discussion of potential novel attacks. This is the first large-scale measurement of PQC adoption at national-scale supercomputing centers and FABRIC testbeds. Our results show that only OpenSSH and Google Chrome have successfully implemented PQC and achieved an initial adoption rate of 0.029% (6,044 out of 20,556,816) for OpenSSH connections at NCSA coming from major Internet Service Providers or Autonomous Systems (ASes) such as OARNET, GTT, Google Fiber Webpass (U.S.) and Uppsala Lans Landsting (Sweden), with an overall increasing adoption rate year-over-year for 2023-2024. Our analyses identify pathways to migrate current applications to be quantum-resistant.

Networking and Internet Architecture,Cryptography and Security,Quantum Physics

Abdullah Al Mamun,Akid Abrar,Mizanur Rahman,M Sabbir Salek,Mashrur Chowdhury

2024-11-20

Abstract:The rise of quantum computing threatens traditional cryptographic algorithms that secure Transportation Cyber-Physical Systems (TCPS). Shor's algorithm poses a significant threat to RSA and ECC, while Grover's algorithm reduces the security of symmetric encryption schemes, such as AES. The objective of this paper is to underscore the urgency of transitioning to post-quantum cryptography (PQC) to mitigate these risks in TCPS by analyzing the vulnerabilities of traditional cryptographic schemes and the applicability of standardized PQC schemes in TCPS. We analyzed vulnerabilities in traditional cryptography against quantum attacks and reviewed the applicability of NIST-standardized PQC schemes, including CRYSTALS-Kyber, CRYSTALS-Dilithium, and SPHINCS+, in TCPS. We conducted a case study to analyze the vulnerabilities of a TCPS application from the Architecture Reference for Cooperative and Intelligent Transportation (ARC-IT) service package, i.e., Electronic Toll Collection, leveraging the Microsoft Threat Modeling tool. This case study highlights the cryptographic vulnerabilities of a TCPS application and presents how PQC can effectively counter these threats. Additionally, we evaluated CRYSTALS-Kyber's performance across wired and wireless TCPS data communication scenarios. While CRYSTALS-Kyber proves effective in securing TCPS applications over high-bandwidth, low-latency Ethernet networks, our analysis highlights challenges in meeting the stringent latency requirements of safety-critical wireless applications within TCPS. Future research should focus on developing lightweight PQC solutions and hybrid schemes that integrate traditional and PQC algorithms, to enhance compatibility, scalability, and real-time performance, ensuring robust protection against emerging quantum threats in TCPS.

Cryptography and Security

Abura Samson

DOI: https://doi.org/10.30574/gscarr.2024.20.2.0308

2024-08-30

GSC Advanced Research and Reviews

Abstract:Quantum computing, with its potential to solve complex problems exponentially faster than classical computers, is poised to revolutionize various fields, including wireless networks security. This survey paper provides a comprehensive overview of the intersection between quantum computing and wireless networks security. We examine the potential threats quantum computing poses to classical encryption algorithms, such as RSA and ECC, which are foundational to the security of current wireless networks. Additionally, we explore emerging quantum-resistant cryptographic techniques designed to safeguard against these threats. The paper also discusses quantum key distribution (QKD) as a promising solution for achieving theoretically unbreakable encryption in wireless networks. Furthermore, we review the current state of research in applying quantum computing to wireless network security, including its implications for authentication, confidentiality, and integrity. Finally, we identify challenges and future directions for integrating quantum computing into wireless network security, emphasizing the need for continued research to ensure the resilience of wireless networks in the quantum era.

Rafael G. L. D'Oliveira,Alejandro Cohen,John Robinson,Thomas Stahlbuhk,Muriel Medard

DOI: https://doi.org/10.1109/milcom52596.2021.9653013

2021-11-29

Abstract:We consider the problem of post-quantum secure and ultra-reliable communication through a heterogeneous network consisting of multiple connections. Three performance metrics are considered: security, throughput, and in-order delivery delay. In this setting, previous work has looked, individually, at the trade-offs between in-order delivery delay and throughput, and between security and throughput. This is the first work considering the trade-off between all three for heterogeneous communication networks, while taking the computational complexity into account. We present LL-HUNCC, a low latency hybrid universal network coding cryptosystem. LL-HUNCC is an efficient coding scheme which allows for secure communications over a noisy untrusted heterogeneous network by encrypting only a small part of the information being sent. This scheme provides post-quantum security with high throughput and low in-order delivery delay guarantees. We evaluate LL-HUNCC via simulations on a setting inspired by a practical scenario for heterogeneous communications involving a satellite communication link and a 5G communication network. Under this scenario, we compare LL-HUNCC to the state-of-the-art where all communication paths are encrypted via a post-quantum public-key cryptosystem.

Alex He,Dafu Lou,Eric She,Shangjie Guo,Hareesh Watson,Sibyl Weng,Maria Perepechaenko,Rand Kuang

2023-12-28

Abstract:Quantum computing has entered fast development track since Shor's algorithm was proposed in 1994. Multi-cloud services of quantum computing farms are currently available. One of which, IBM quantum computing, presented a road map showing their Kookaburra system with over 4158 qubits will be available in 2025. For the standardization of Post-Quantum Cryptography or PQC, the National Institute of Standards and Technology or NIST recently announced the first candidates for standardization with one algorithm for key encapsulation mechanism (KEM), Kyber, and three algorithms for digital signatures. NIST has also issued a new call for quantum-safe digital signature algorithms due June 1, 2023. This timeline shows that FIPS-certified quantum-safe TLS protocol would take a predictably long time. However, "steal now, crack later" tactic requires protecting data against future quantum threat actors today. NIST recommended the use of a hybrid mode of TLS 1.3 with its extensions to support PQC. The hybrid mode works for certain cases but FIPS certification for the hybridized cryptomodule might still be required. This paper proposes to take a nested mode to enable TLS 1.3 protocol with quantum-safe data, which can be made available today and is FIPS compliant. We discussed the performance impacts of the handshaking phase of the nested TLS 1.3 with PQC and the symmetric encryption phase. The major impact on performance using the nested mode is in the data symmetric encryption with AES. To overcome this performance reduction, we suggest using quantum encryption with a quantum permutation pad for the data encryption with a minor performance reduction of less than 10 percent.

Quantum Physics,Cryptography and Security

Dongyang Xu,Lei Liu,Ning Zhang,Mianxiong Dong,Victor C. M. Leung,James A. Ritcey

DOI: https://doi.org/10.1109/jiot.2023.3245360

IF: 10.6

2023-01-01

IEEE Internet of Things Journal

Abstract:Secure ultra-reliable low-latency communication (URLLC) has become a crucial requirement of mission-critical Internet of Things (IoT) applications and use cases including automotive driving, remote surgery, and many others. However, it is still challenging to protect initial access of massive IoT devices over wireless channels, especially when malicious quantum adversaries paralyse the initial access by overhearing and tampering critical wireless messages, i.e., preambles. We propose a nested hash access system with post-quantum encryption to solve this issue. The system performs random repetition coding and nested hash coding on multi-domain physical-layer resources to encode and decode preambles precisely and resiliently. Particularly, a subtle compression and encryption mechanism based on quasi-cyclic (QC)-moderate-density parity-check (MDPC) code is proposed between repetition and hashing operations to avoid passive eavesdropping during preamble encoding process. We show that the code information can be maintained at 128-bit or higher privacy level, depending on the length of repetition code. Besides, the preamble decoding process can be proved secure agaisnt active attacks with a tolerable loss of decoding errors. Then we formulate two non-convex integer programming problems, each problem corresponding to the minimization of upper bound of preamble decoding error in an example application scenario. Finally, we can derive the expressions of system failure probability to evaluate the reliability of URLLC system under mission-critical IoT scenarios. Simulation results show the effectiveness of our proposed scheme despite attack.

computer science, information systems,telecommunications,engineering, electrical & electronic

Basel Halak,Cristian Sebastian Csete,Edward Joyce,Jack Papaioannou,Alexandre Pires,Jin Soma,Betul Gokkaya,Michael Murphy

2024-07-18

Abstract:The rapid advancement of quantum computing poses a significant threat to many current security algorithms used for secure communication, digital authentication, and information encryption. A sufficiently powerful quantum computer could potentially exploit vulnerabilities in these algorithms, rendering data in transit insecure. This threat is expected to materialize within the next 20 years. Immediate transition to quantum-resilient cryptographic schemes is crucial, primarily to mitigate store-now-decrypt-later attacks and to ensure the security of products with decade-long operational lives. This transition requires a systematic approach to identifying and upgrading vulnerable cryptographic implementations. This work developed a quantum assessment tool for organizations, providing tailored recommendations for transitioning their security protocols into a post-quantum world. The work included a systematic evaluation of the proposed solution using qualitative feedback from network administrators and cybersecurity experts. This feedback was used to refine the accuracy and usability of the assessment process. The results demonstrate its effectiveness and usefulness in helping organizations prepare for quantum computing threats. The assessment tool is publicly available at (<a class="link-external link-https" href="https://quantum-watch.soton.ac.uk" rel="external noopener nofollow">this https URL</a>).

Cryptography and Security,Computers and Society

Yan Xiong,Huanhuan Chen,Naijie Gu,Fuyou Miao

IF: 1.019

2005-01-01

Chinese Journal of Electronics

Abstract:In this paper, a quantum approach for solving the mobile crypto-computation problem is proposed. In our approach, quantum signature and quantum entanglement have been employed to strengthen the security of mobile computation. Theory analysis shows that our solution is secure against classic and quantum attacks.

Yi-Kai Liu,Dustin Moody

DOI: https://doi.org/10.1103/physrevapplied.21.040501

Abstract:We review the current status of efforts to develop and deploy post-quantum cryptography on the Internet. Then we suggest specific ways in which quantum technologies might be used to enhance cybersecurity in the near future and beyond. We focus on two goals: protecting the secret keys that are used in classical cryptography, and ensuring the trustworthiness of quantum computations. These goals may soon be within reach, thanks to recent progress in both theory and experiment. This progress includes interactive protocols for testing quantumness as well as for performing uncloneable cryptographic computations; and experimental demonstrations of device-independent random number generators, device-independent quantum key distribution, quantum memories, and analog quantum simulators.

Yaser Baseri,Vikas Chouhan,Abdelhakim Hafid

DOI: https://doi.org/10.1016/j.cose.2024.103883

2024-05-07

Abstract:The emergence of quantum computing poses a formidable security challenge to network protocols traditionally safeguarded by classical cryptographic algorithms. This paper provides an exhaustive analysis of vulnerabilities introduced by quantum computing in a diverse array of widely utilized security protocols across the layers of the TCP/IP model, including TLS, IPsec, SSH, PGP, and more. Our investigation focuses on precisely identifying vulnerabilities susceptible to exploitation by quantum adversaries at various migration stages for each protocol while also assessing the associated risks and consequences for secure communication. We delve deep into the impact of quantum computing on each protocol, emphasizing potential threats posed by quantum attacks and scrutinizing the effectiveness of post-quantum cryptographic solutions. Through carefully evaluating vulnerabilities and risks that network protocols face in the post-quantum era, this study provides invaluable insights to guide the development of appropriate countermeasures. Our findings contribute to a broader comprehension of quantum computing's influence on network security and offer practical guidance for protocol designers, implementers, and policymakers in addressing the challenges stemming from the advancement of quantum computing. This comprehensive study is a crucial step toward fortifying the security of networked environments in the quantum age.

Cryptography and Security

Mohammed Gharib,Fatemeh Afghah

2023-08-21

Abstract:5G made a significant jump in cellular network security by offering enhanced subscriber identity protection and a user-network mutual authentication implementation. However, it still does not fully follow the zero-trust (ZT) requirements, as users need to trust the network, 5G network is not necessarily authenticated in each communication instance, and there is no mutual authentication between end users. When critical communications need to use commercial networks, but the environment is ZT, specific security architecture is needed to provide security services that do not rely on any 5G network trusted authority. In this paper, we propose SCC5G Secure Critical-mission Communication over a 5G network in ZT setting. SCC5G is a post-quantum cryptography (PQC) security solution that loads an embedded hardware root of authentication (HRA), such as physically unclonable functions (PUF), into the users' devices, to achieve tamper-resistant and unclonability features for authentication and key agreement. We evaluate the performance of the proposed architecture through an exhaustive simulation of a 5G network in an ns-3 network simulator. Results verify the scalability and efficiency of SCC5G by showing that it poses only a few kilobytes of traffic overhead and adds only an order of $O(0.1)$ second of latency under the normal traffic load.

Networking and Internet Architecture