Xiao-Liang Yang,Yu-Qing Li,Hong-Wei Li

DOI: https://doi.org/10.1088/1674-1056/ad99c9

2024-12-05

Chinese Physics B

Abstract:In the process of quantum key distribution (QKD), the communicating parties need to randomly determine quantum states and measurement bases. To ensure the security of key distribution, we aim to use true random sequences generated by true random number generators as the source of randomness. In practical systems, due to the difficulty of obtaining true random numbers, pseudo-random number generators are used instead. Although the random numbers generated by pseudo-random number generators are statistically random, meeting the requirements of uniform distribution and independence, they rely on an initial seed to generate corresponding pseudo-random sequences. Attackers may predict future elements from the initial elements of the random sequence, posing a security risk to quantum key distribution.This paper analyzes the problems existing in current pseudo-random number generators and proposes corresponding attack methods and applicable scenarios based on the vulnerabilities in the pseudo-random sequence generation process. Under certain conditions, it is possible to obtain the keys of the communicating parties with very low error rates, thus effectively attacking the quantum key system. This paper presents new requirements for the use of random numbers in quantum key systems, which can effectively guide the security evaluation of quantum key distribution protocols.

physics, multidisciplinary

Horace Yuen

DOI: https://doi.org/10.1103/PhysRevA.82.062304

2010-12-08

Abstract:We analyze the fundamental security significance of the quantitative criteria on the final generated key K in quantum key generation including the quantum criterion d, the attacker's mutual information on K, and the statistical distance between her distribution on K and the uniform distribution. For operational significance a criterion has to produce guarantee on the attacker's probability of correctly estimating some portion of K from her measurement, in particular her maximum probability of identifying the whole K. We distinguish between the raw security of K when the attacker just gets at K before it is used in a cryptographic context and its composition security when the attacker may gain further information during its actual use to help getting at K. We compare both of these securities of K to those obtainable from conventional key expansion with a symmetric key cipher. It is pointed out that a common belief in the superior security of a quantum generated K is based on an incorrect interpretation of d which cannot be true, and the security significance of d is uncertain. Generally, the QKD key K has no composition security guarantee and its raw security guarantee from concrete protocols is worse than that of conventional ciphers. Furthermore, for both raw and composition security there is an exponential catch up problem that would make it difficult to quantitatively improve the security of K in a realistic protocol. Some possible ways to deal with the situation are suggested.

Quantum Physics

Hong-Wei Li,Zhen-Qiang Yin,Shuang Wang,Wan-Su Bao,Guang-Can Guo,Zheng-Fu Han

DOI: https://doi.org/10.26421/qic11.11-12-4

2011-01-01

Quantum Information and Computation

Abstract:In practical quantum key distribution system, the state preparation and measurement have state-dependent imperfections comparing with the ideal BB84 protocol. If the state-dependent imperfection can not be regarded as an unitary transformation, it should not be considered as part of quantum channel noise introduced by the eavesdropper, the commonly used secret key rate formula GLLP can not be applied correspondingly. In this paper, the unconditional security of quantum key distribution with state-dependent imperfections will be analyzed by estimating upper bound of the phase error rate in the quantum channel and the imperfect measurement. Interestingly, since Eve can not control all phase error in the quantum key distribution system, the final secret key rate under constant quantum bit error rate can be improved comparing with the perfect quantum key distribution protocol.

Xiang-Bin Wang,Jing-Tao Wang,Ji-Qian Qin,Cong Jiang,Zong-Wen Yu

DOI: https://doi.org/10.1038/s41534-020-0267-3

IF: 10.758

2020-01-01

npj Quantum Information

Abstract:On the basis of the existing trace distance result, we present a simple and efficient method to tighten the upper bound of the guessing probability. The guessing probability of the final key k can be upper bounded by the guessing probability of another key k^' , if k^' can be mapped from the final key k . Compared with the known methods, our result is more tightened by thousands of orders of magnitude. For example, given a 10 −9 -secure key from the sifted key, the upper bound of the guessing probability obtained using our method is 2 × 10 −3277 . This value is smaller than the existing result 10 −9 by more than 3000 orders of magnitude. Our result shows that from the perspective of guessing probability, the performance of the existing trace distance security is actually much better than what was assumed in the past.

Yi Zhao,Bing Qi,Hoi-Kwong Lo

DOI: https://doi.org/10.1103/PhysRevA.77.052327

2008-05-26

Abstract:The security of a standard bi-directional "plug & play" quantum key distribution (QKD) system has been an open question for a long time. This is mainly because its source is equivalently controlled by an eavesdropper, which means the source is unknown and untrusted. Qualitative discussion on this subject has been made previously. In this paper, we present the first quantitative security analysis on a general class of QKD protocols whose sources are unknown and untrusted. The securities of standard BB84 protocol, weak+vacuum decoy state protocol, and one-decoy decoy state protocol, with unknown and untrusted sources are rigorously proved. We derive rigorous lower bounds to the secure key generation rates of the above three protocols. Our numerical simulation results show that QKD with an untrusted source gives a key generation rate that is close to that with a trusted source.

Quantum Physics

Arun Mishra,Kanaka Raju Pandiri,Anupama Arjun Pandit,Lucy Sharma

2023-11-06

Abstract:Quantum Key Distribution(QKD) thrives to achieve perfect secrecy of One time Pad (OTP) through quantum processes. One of the crucial components of QKD are Quantum Random Number Generators(QRNG) for generation of keys. Unfortunately, these QRNG does not immediately produce usable bits rather it produces raw bits with high entropy but low uniformity which can be hardly used by any cryptographic system. A lot of pre-processing is required before the random numbers generated by QRNG to be usable. This causes a bottle neck in random number generation rate as well as QKD system relying on it. To avoid this lacuna of post-processing methods employed as a central part of Quantum Random Number Generators alternative approaches that satisfy the entropy(non determinism) and quantum security is explored. Pseudorandom generators based on quantum secure primitives could be an alternative to the post-processing problem as PRNGs are way more faster than any random number generator employing physical randomness (quantum mechanical process in QRNG) as well as it can provide uniform bits required for cryptography application. In this work we propose a pseudorandom generator based on post quantum primitives. The central theme of this random number generator is designing PRNG with non deterministic entropy generated through hard lattice problem - Learning with errors. We leverage the non determinism by Gaussian errors of LWE to construct non-deterministic PRNG satisfying the entropy requirement of QKD. Further, the paper concludes by evaluating the PRNG through Die-Harder Test.

Cryptography and Security,Emerging Technologies

Hong-Wei Li,Zhen-Qiang Yin,Shuang Wang,Yong-Jun Qian,Wei Chen,Guang-Can Guo,Zheng-Fu Han

DOI: https://doi.org/10.48550/arXiv.1508.06396

2015-09-20

Abstract:Unconditional security of the BB84 quantum key distribution protocol has been proved by exploiting the fundamental laws of quantum mechanics, but the practical quantum key distribution system maybe hacked by considering the imperfect state preparation and measurement respectively. Until now, different attacking schemes have been proposed by utilizing imperfect devices, but the general security analysis model against all of the practical attacking schemes has not been proposed. Here, we demonstrate that the general practical attacking schemes can be divided into the Trojan horse attack, strong randomness attack and weak randomness attack respectively. We prove security of BB84 protocol under randomness attacking models, and these results can be applied to guarantee the security of the practical quantum key distribution system.

Quantum Physics

Xing Lin,Rong Wang,Shuang Wang,Zhen-Qiang Yin,Wei Chen,Guang-Can Guo,Zheng-Fu Han

DOI: https://doi.org/10.1103/physrevlett.129.050506

IF: 8.6

2022-01-01

Physical Review Letters

Abstract:Generating random numbers plays an important role in many scientific applications. Compared to pseudorandom number generators, a quantum device is capable of generating true random numbers by the laws of quantum mechanics. However, information-theoretical secure random numbers are regularly based on a perfect device model, which may deviate from a real-world device. To close this gap, we propose a quantum random number generation protocol and experimentally demonstrate it. In our protocol, we make no assumptions about the source. Some reasonable assumptions on the trusted two-dimensional measurement are needed, but we do not require a detailed characterization. Even if considering the most general quantum attack and using the general sources, we achieve a randomness generation rate of over 1 Mbps with a universal composable security parameter of 10(-10).

Xing Lin,Rong Wang,Shuang Wang,Zhen-Qiang Yin,Wei Chen,De-Yong He,Zheng Zhou,Guang-can Guo,Zhen-fu Han

DOI: https://doi.org/10.1364/oe.460907

IF: 3.8

2022-01-01

Optics Express

Abstract:Quantum random number generators (QRNGs) promise secure randomness generation based on the foundational unpredictability of quantum mechanics. However, the unavoidable gaps between theoretical models and practical devices could lead to security invalidation. Recently, a source-independent quantum random number generator (SI-QRNG) has been proposed to solve the issue of uncharacteristic sources. However, in most current analyses of SI-QRNG protocols, the security proofs with imperfect measurements are individual for different factors and very sensitive to small deviations from theoretical models. Here, we establish a unified model for imperfect measurements in the SI-QRNG and provide a tight rate bound based on the uncertainty relation for smooth entropies. Then the performance with large device imperfections is evaluated and the randomness rate in our model can approach a similar order of magnitude of the rate upper bound in common discrete variable QRNGs. In addition, by utilizing the daily illumination and measurement devices with large imperfections, we experimentally demonstrate our scheme at the rate of the order of magnitude of Mbps.

Xing Lin,Rong Wang

2023-12-06

Abstract:Quantum random number generator harnesses the power of quantum mechanics to generate true random numbers, making it valuable for various scientific applications. However, real-world devices often suffer from imperfections that can undermine the integrity and privacy of generated randomness. To combat this issue, we present a novel quantum random number generator and experimentally demonstrate it. Our approach circumvents the need for exhaustive characterization of measurement devices, even in the presence of a quantum side channel. Additionally, we also do not require detailed characterization of the source, relying instead on reasonable assumptions about encoding dimension and noise constraints. Leveraging commercially available all-fiber devices, we achieve a randomness generation rate of 40 kbps.

Quantum Physics

Zhu Cao,Hongyi Zhou,Xiao Yuan,Xiongfeng Ma

DOI: https://doi.org/10.1103/PhysRevX.6.011020

2016-02-27

Abstract:Quantum random number generators can provide genuine randomness by appealing to the fundamental principles of quantum mechanics. In general, a physical generator contains two parts---a randomness source and its readout. The source is essential to the quality of the resulting random numbers; hence, it needs to be carefully calibrated and modeled to achieve information-theoretical provable randomness. However, in practice, the source is a complicated physical system, such as a light source or an atomic ensemble, and any deviations in the real-life implementation from the theoretical model may affect the randomness of the output. To close this gap, we propose a source-independent scheme for quantum random number generation in which output randomness can be certified, even when the source is uncharacterized and untrusted. In our randomness analysis, we make no assumptions about the dimension of the source. For instance, multiphoton emissions are allowed in optical implementations. Our analysis takes into account the finite-key effect with the composable security definition. In the limit of large data size, the length of the input random seed is exponentially small compared to that of the output random bit. In addition, by modifying a quantum key distribution system, we experimentally demonstrate our scheme and achieve a randomness generation rate of over $5\times 10^3$ bit/s.

Quantum Physics

Marcus Huber,Marcin Pawlowski

DOI: https://doi.org/10.1103/PhysRevA.88.032309

2013-09-11

Abstract:We show that in device independent quantum key distribution protocols the privacy of randomness is of crucial importance. For sublinear test sample sizes even the slightest guessing probability by an eavesdropper will completely compromise security. We show that a combined attack exploiting test sample and measurement choices compromises the security even with a linear size test sample and otherwise device independent security considerations. We explicitly derive the sample size needed to retrieve security as a function of the randomness quality. We demonstrate that exploiting features of genuinely higher dimensional systems one can reduce this weakness and provide device independent security more robust against weak randomness sources.

Quantum Physics

Xing Lin,Shuang Wang,Zhen-Qiang Yin,Guan-Jie Fan-Yuan,Rong Wang,Wei Chen,De-Yong He,Zheng Zhou,Guang-Can Guo,Zheng-Fu Han

DOI: https://doi.org/10.1038/s41534-020-00331-9

IF: 10.758

2020-12-01

npj Quantum Information

Abstract:Abstract A quantum random number generator (QRNG) as a genuine source of randomness is essential in many applications, such as number simulation and cryptography. Recently, a source-independent quantum random number generator (SI-QRNG), which can generate secure random numbers with untrusted sources, has been realized. However, the measurement loopholes of the trusted but imperfect devices used in SI-QRNGs have not yet been fully explored, which will cause security problems, especially in high-speed systems. Here, we point out and evaluate the security loopholes of practical imperfect measurement devices in SI-QRNGs. We also provide corresponding countermeasures to prevent these information leakages by recalculating the conditional minimum entropy and adding a monitor. Furthermore, by taking into account the finite-size effect, we show that the influence of the afterpulse can exceed that of the finite-size effect with the large number of sampled rounds. Our protocol is simple and effective, and it promotes the security of SI-QRNG in practice as well as the compatibility with high-speed measurement devices, thus paving the way for constructing ultrafast and security-certified commercial SI-QRNG systems.

physics, condensed matter, applied, atomic, molecular & chemical,quantum science & technology

Hua-Lei Yin,Min-Gang Zhou,Jie Gu,Yuan-Mei Xie,Yu-Shuo Lu,Zeng-Bing Chen

DOI: https://doi.org/10.1038/s41598-020-71107-6

IF: 4.6

2020-01-01

Scientific Reports

Abstract:The BB84 quantum key distribution (QKD) combined with decoy-state method is currently the most practical protocol, which has been proved secure against general attacks in the finite-key regime. Thereinto, statistical fluctuation analysis methods are very important in dealing with finite-key effects, which directly affect secret key rate, secure transmission distance and most importantly, the security. There are two tasks of statistical fluctuation in decoy-state BB84 QKD. One is the deviation between expected value and observed value for a given expected value or observed value. The other is the deviation between phase error rate of computational basis and bit error rate of dual basis. Here, we provide the rigorous and optimal analytic formula to solve the above tasks, resulting to higher secret key rate and longer secure transmission distance. Our results can be widely applied to deal with statistical fluctuation in quantum cryptography protocols.

Kriss Gutierrez Anco,Tristan Nemoz,Peter Brown

2024-11-05

Abstract:How much cryptographically-secure randomness can be extracted from a quantum state? This fundamental question probes the absolute limits of quantum random number generation (QRNG) and yet, despite the technological maturity of QRNGs, it remains unsolved. In this work we consider a general adversarial model that allows for an adversary who has quantum side-information about both the source and the measurement device. Using links between randomness extraction rates and sandwiched Rényi entropies, we provide compact, easy to compute, achievable rates of secure randomness extraction from quantum states. In turn, this provides a simple to evaluate benchmarking tool for the randomness generation rates of QRNG protocols.

Quantum Physics

Xiao Yuan,Zhu Cao,Xiongfeng Ma

DOI: https://doi.org/10.1103/PhysRevA.91.032111

2014-01-01

Abstract: The Clauser-Horne-Shimony-Holt inequality test is widely used as a mean of invalidating the local deterministic theories and a tool of device independent quantum cryptographic tasks. There exists a randomness (freewill) loophole in the test, which is widely believed impossible to be closed perfectly. That is, certain random inputs are required for the test. Following a randomness quantification method used in literature, we investigate the randomness required in the test under various assumptions. By comparing the results, one can conclude that the key to make the test result reliable is to rule out correlations between multiple runs.

Matthew P. Peloso,Ilja Gerhardt

DOI: https://doi.org/10.1109/jlt.2013.2285340

IF: 4.7

2013-12-01

Journal of Lightwave Technology

Abstract:A suite of random number tests was used to evaluate the randomness of raw cryptographic keys generated using quantum key distribution (QKD). The cryptographic channel was established by coupling an entanglement source over a free-space link during both day and night for a period of 48 h. External noise from sunlight both scattered in the atmosphere and directly reflected within the field-of-view of the receiving optic reduced the randomness of the raw cryptographic keys. Systematic influences on the supposed random key were observed due to both imbalances in the coupling of the source and detectors through the free-space QKD channel, as well as the introduction of noise counts into the raw key from which the final key was distilled. The introduction of noise in the key exchange may drastically reduce the rate of secure key bits extracted from the raw keys using privacy amplification. Synchronization limits for key generation using photon timing correlations were established by experimentally controlling the coupling ratio of unbiased noise to the coincidence counts. The influence of external optical noise on the quantum bit error ratio is discussed, whereby the suppression of external noise, a balance of optical hardware, and active coupling of the free-space link were identified for optimization of the extracted QKD key generation rates.

engineering, electrical & electronic,optics,telecommunications

Bingjie Xu,Ziyang Chen,Zhengyu Li,Jie Yang,Qi Su,Wei Huang,Yichen Zhang,Hong Guo

DOI: https://doi.org/10.1088/2058-9565/ab0fd9

IF: 6.568

2019-01-01

Quantum Science and Technology

Abstract:As a fundamental phenomenon in nature, randomness has a wide range of applications in the fields of science and engineering. Among different types of random number generators (RNG), quantum random number generator (QRNG) is a kind of promising RNG as it can provide provable true random numbers based on the inherent randomness of fundamental quantum processes. Nevertheless, the randomness from a QRNG can be diminished (or even destroyed) if the devices (especially the entropy source devices) are not perfect or ill-characterized. To eliminate the practical security loopholes from the source, source-independent QRNGs, which allow the source to have arbitrary and unknown dimensions, have been introduced and become one of the most important semi-device-independent (DI) QRNGs. Herein a method that enables ultra-fast unpredictable quantum random number generation from quadrature fluctuations of quantum optical field without any assumptions on the input states is proposed. Particularly, to estimate a lower bound on the extractable randomness that is independent from side information held by an eavesdropper, a new security analysis framework is established based on the extremality of Gaussian states, which can be easily extended to design and analyze new semi-DI continuous variable QRNG protocols. Moreover, the practical imperfections of the QRNG including the effects of excess noise, finite sampling range, finite resolution and asymmetric conjugate quadratures are taken into account and quantitatively analyzed. Finally, the proposed method is experimentally demonstrated to obtain high secure random number generation rates of 15.07 Gbits s(-1) in off-line configuration and can potentially achieve 6 Gbits s(-1) by real-time post-processing.

Randy Kuang,Dafu Lou,Alex He,Chris McKenzie,Michael Redding

DOI: https://doi.org/10.1109/QCE52317.2021.00053

2023-03-02

Abstract:Cryptographic random number generation is critical for any quantum safe encryption. Based on the natural uncertainty of some quantum processes, variety of quantum random number generators or QRNGs have been created with physical quantum processes. They generally generate random numbers with good unpredictable randomness. Of course, physical QRNGs are costic and require physical integrations with computing systems. This paper proposes a pseudo quantum random number generator with a quantum algorithm called quantum permutation pad or QPP, leveraging the high entropy of quantum permutation space its bijective transformation. Unlike the Boolean algebra where the size of information space is 2n for an n-bit system, an n-bit quantum permutation space consists of 2n! quantum permutation matrices, representing all quantum permutation gates over an n-bit computational basis. This permutation space holds an equivalent Shannon information entropy log_2(2^n!). A QPP can be used to create a pseudo QRNG or pQRNG capable integrated with any classical computing system or directly with any application for good quality deterministic random number generation. Using a QPP pad with 64 8-bit permuation matrices, pQRNG holds 107,776 bits of entropy for the pseudo random number generation, comparing with 4096 bits of entropy in Linux /dev/random. It can be used as a deterministic PRNG or entropy booster of other PRNGs. It can also be used as a whitening algorithm for any hardware random number generator including QRNG without discarding physical bias bits.

Quantum Physics,Cryptography and Security

Hang Liu,Zhen-Qiang Yin,Rong Wang,Ze-Hao Wang,Shuang Wang,Wei Chen,Guang-Can Guo,Zheng-Fu Han

DOI: https://doi.org/10.1038/s41534-021-00428-9

IF: 10.758

2021-06-09

npj Quantum Information

Abstract:Abstract Unlike traditional communication, quantum key distribution (QKD) can reach unconditional security and thus attracts intensive studies. Among all existing QKD protocols, round-robin-differential-phase-shift (RRDPS) protocol can be running without monitoring signal disturbance, which significantly simplifies its flow and improves its tolerance of error rate. Although several security proofs of RRDPS have been given, a tight finite-key analysis with a practical phase-randomized source is still missing. In this paper, we propose an improved security proof of RRDPS against the most general coherent attack based on the entropic uncertainty relation. What’s more, with the help of Azuma’s inequality, our proof can tackle finite-key effects primely. The proposed finite-key analysis keeps the advantages of phase randomization source and indicates experimentally acceptable numbers of pulses are sufficient to approach the asymptotical bound closely. The results shed light on practical QKD without monitoring signal disturbance.

physics, condensed matter, applied, atomic, molecular & chemical,quantum science & technology