Zijian Li,Bingbing Zheng,Chengxian Zhang,Zhenrong Zhang,Hong-Bo Xie,Kejin Wei

2023-12-24

Abstract:In a quantum Trojan-horse attack (THA), eavesdroppers learn encoded information by injecting bright light into encoded or decoded devices of quantum key distribution (QKD) systems. These attacks severely compromise the security of non-isolated systems. Thus, analytical security bound was derived in previous studies. However, these studies achieved poor performance unless the devices were strongly isolated. Here, we present a numerical method for achieving improved security bound for a decoy-state QKD system under THAs. The developed method takes advantage of the well-established numerical framework and significantly outperforms previous analytical bounds regarding the achievable final key and secure transmitted distance. The results provide a new tool for investigating the efficient security bounds of THA in practical decoy-state QKD systems. This study constitutes an important step toward securing QKD with real-life components.

Quantum Physics

Hua-Jian Ding,Jing-Yang Liu,Xing-Yu Zhou,Chun-Hui Zhang,Jian Li,and Qin Wang

DOI: https://doi.org/10.1103/physrevapplied.19.044022

IF: 4.6

2023-04-08

Physical Review Applied

Abstract:Measurement-device-independent quantum key distribution (MDI QKD) is a promising method for remote key sharing that can eliminate all detector side-channel attacks. However, current security proofs often overlook the potential information leakages from the legitimate users' devices. In a quantum version of Trojan-horse attack (THA), a malicious eavesdropper can inject bright light into the sources of a MDI QKD system and then analyze the back-reflected light to obtain their setting choices, thereby compromising the final security. Here, we derive the finite-key security bounds of decoy-state MDI QKD in the presence of THA, which significantly outperform previous analyses in terms of the secret-key rate and transmission distance. Specifically, we analyze a symmetric three-intensity decoy-state MDI QKD protocol and an efficient four-intensity decoy-state MDI QKD protocol. Our results represent a fundamental step in guaranteeing the implementation security of quantum communication systems. https://doi.org/10.1103/PhysRevApplied.19.044022 © 2023 American Physical Society

physics, applied

Ivan S. Sushchev,Daniil S. Bulavkin,Kirill E. Bugai,Anna S. Sidelnikova,Dmitriy A. Dvoretskiy

DOI: https://doi.org/10.1103/physrevapplied.22.034032

IF: 4.6

2024-09-14

Physical Review Applied

Abstract:This paper presents a theoretical and experimental demonstration of a security analysis of a Trojan-horse attack (THA) on a real-world quantum key distribution (QKD) system. We show that the upper bound on the information leakage depends solely on the fidelity between the states of the adversary. We find the lower bound for fidelity between THA states in both the polarization- and phase-coding BB84 protocols, considering both pure and mixed states. Our bounds depend only on the mean photon number per pulse available to an adversary. We also present an experimental analysis of a QKD system, including optical time-domain reflectometry measurements with centimeter resolution and spectral transmittance measurements for optical defense elements ranging from 1100 to 1800 nm with a noise floor lower than −100 dB. Finally, by considering the optimal attack, we obtain the value of the mean photon number per pulse available to an adversary and calculate the key leakage that needs to be eliminated during the privacy amplification procedure. https://doi.org/10.1103/PhysRevApplied.22.034032 Published by the American Physical Society under the terms of the Creative Commons Attribution 4.0 International license. Further distribution of this work must maintain attribution to the author(s) and the published article's title, journal citation, and DOI. Published by the American Physical Society

physics, applied

Weilong Wang,Kiyoshi Tamaki,Marcos Curty

DOI: https://doi.org/10.1088/1367-2630/aad839

2018-08-17

New Journal of Physics

Abstract:Security proofs of quantum key distribution (QKD) typically assume that the devices of the legitimate users are perfectly shielded from the eavesdropper. This assumption is, however, very hard to meet in practice, and thus the security of current QKD implementations is not guaranteed. Here, we fill this gap by providing a finite-key security analysis for QKD which is valid against arbitrary information leakage from the state preparation process of the legitimate users. For this, we extend the techniques introduced by Tamaki et al (2016 New J. Phys. 18 065008) to the finite-key regime, and we evaluate the security of a leaky decoy-state BB84 protocol with biased basis choice, which is one of the most implemented QKD schemes today. Our simulation results demonstrate the practicability of QKD over long distances and within a reasonable time frame given that the legitimate users’ devices are sufficiently isolated.

physics, multidisciplinary

Guillermo Currás-Lorenzo,Margarida Pereira,Go Kato,Marcos Curty,Kiyoshi Tamaki

2024-07-23

Abstract:Quantum key distribution (QKD) can theoretically achieve the Holy Grail of cryptography, information-theoretic security against eavesdropping. However, in practice, discrepancies between the mathematical models assumed in security proofs and the actual functioning of the devices used in implementations prevent it from reaching this goal. Device-independent QKD is currently not a satisfactory solution to this problem, as its performance is extremely poor and most of its security proofs assume that the user devices leak absolutely no information to the outside. On the other hand, measurement-device-independent (MDI) QKD can guarantee security with arbitrarily flawed receivers while achieving high performance, and the remaining challenge is ensuring its security in the presence of source imperfections. So far, all efforts in this regard have come at a price; some proofs are suitable only for particular source imperfections, while others severely compromise the system's performance, i.e., its communication speed and distance. Here, we overcome these crucial problems by presenting a security proof in the finite-key regime against coherent attacks that can incorporate general encoding imperfections and side channels while achieving much higher performances than previous approaches. Moreover, our proof requires minimal state characterization, which facilitates its application to real-life implementations.

Quantum Physics

M. Lucamarini,I. Choi,M. B. Ward,J. F. Dynes,Z. L. Yuan,A. J. Shields,M. B. Ward,J. F. Dynes,Z. L. Yuan,A. J. Shields

DOI: https://doi.org/10.1103/physrevx.5.031030

2015-09-09

Physical Review X

Abstract:In the quantum version of a Trojan-horse attack, photons are injected into the optical modules of a quantum key distribution system in an attempt to read information direct from the encoding devices. To stop the Trojan photons, the use of passive optical components has been suggested. However, to date, there is no quantitative bound that specifies such components in relation to the security of the system. Here, we turn the Trojan-horse attack into an information leakage problem. This allows us to quantify the system security and relate it to the specification of the optical elements. The analysis is supported by the experimental characterization, within the operation regime, of reflectivity and transmission of the optical components most relevant to security.

physics, multidisciplinary

Nitin Jain,Birgit Stiller,Imran Khan,Vadim Makarov,Christoph Marquardt,Gerd Leuchs

DOI: https://doi.org/10.1109/JSTQE.2014.2365585

2014-12-19

Abstract:An eavesdropper Eve may probe a quantum key distribution (QKD) system by sending a bright pulse from the quantum channel into the system and analyzing the back-reflected pulses. Such Trojan-horse attacks can breach the security of the QKD system if appropriate safeguards are not installed or if they can be fooled by Eve. We present a risk analysis of such attacks based on extensive spectral measurements, such as transmittance, reflectivity, and detection sensitivity of some critical components used in typical QKD systems. Our results indicate the existence of wavelength regimes where the attacker gains considerable advantage as compared to launching an attack at 1550 nm. We also propose countermeasures to reduce the risk of such attacks.

Quantum Physics

Scott Vinay,Pieter Kok

DOI: https://doi.org/10.48550/arXiv.1801.06496

2018-01-19

Quantum Physics

Abstract:The discrete-variable QKD protocols based on BB84 are known to be secure against an eavesdropper, Eve, intercepting the flying qubits and performing any quantum operation on them. However, these protocols may still be vulnerable to side-channel attacks. We investigate the Trojan-Horse side-channel attack where Eve sends her own state into Alice's apparatus and measures the reflected state to estimate the key. We prove that the separable coherent state is optimal for Eve amongst the class of multi-mode Gaussian attack states. We describe how Alice may defend against this by adding thermal noise to the system and give an analytic expression of the resulting secret key rate. We also provide a bound on the secret key rate in the case where Eve may use any separable state, and describe an active defense system based on optical modulators.

Xoel Sixto,Álvaro Navarrete,Margarida Pereira,Guillermo Currás-Lorenzo,Kiyoshi Tamaki,Marcos Curty

2024-11-21

Abstract:Most security proofs of quantum key distribution (QKD) assume that there is no unwanted information leakage about the state preparation process. However, this assumption is impossible to guarantee in practice, as QKD systems can leak information to the channel due to device imperfections or the active action of an eavesdropper. Here, we solve this pressing issue by introducing a security proof in the presence of information leakage from all state preparation settings for arguably the most popular QKD scheme, namely the decoy-state BB84 protocol. The proof requires minimal experimental characterization, as only a single parameter related to the isolation of the source needs to be determined, thus providing a clear path for bridging the gap between theory and practice. Moreover, if information about the state of the side channels is available, this can be readily incorporated into the analysis to further improve the resulting performance.

Quantum Physics

Friederike Jöhlinger,Henry Semenenko,Philip Sibson,Djeylan Aktas,John Rarity,Chris Erven,Siddarth Joshi,Imad Faruque

2024-08-30

Abstract:The security proofs of the Quantum Key Distribution (QKD) protocols make certain assumptions about the operations of physical systems. Thus, appropriate modelling of devices to ensure that their operations are consistent with the models assumed in the security proof is imperative. In this paper, we explore the Trojan horse attack (THA) using Measurement Device Independent (MDI) QKD integrated photonic chips and how to avoid some of the security vulnerabilities using only on-chip components. We show that a monitor photodiode paired appropriately with enough optical isolation, given the sensitivity of the photodiode, can detect high power sniffing attacks. We also show that the placement of amplitude modulators with respect to back reflecting components and their switching time can be used to thwart a THA.

Quantum Physics

Théo Lejeune,François Damanet

2024-10-05

Abstract:The most important characteristic of a Quantum Key Distribution (QKD) protocol is its security against third-party attacks, and the potential countermeasures available. While new types of attacks are regularly developed in the literature, they rarely involve the use of weak continuous measurement. Here, we design a new attack scheme called $\textit{Deep-learning-based continuous attack}$ (DLCA) that exploits continuous measurement together with the powerful pattern recognition capacities of deep recurrent neural networks. We show that, when applied to the BB84 protocol, our attack can be difficult to notice while still allowing the spy to extract significant information about the states of the qubits sent in the quantum communication channel. Finally, we study how the spy can exploit quantum feedback to further cover their tracks. Our attack scheme, while still at the early stages of a toy model, constitutes a potential threat which is worthwhile to be investigated, also as it could be applied to different QKD protocols and generalized in many different ways.

Quantum Physics

Hao Tan,Wei Li,Likang Zhang,Kejin Wei,Feihu Xu

DOI: https://doi.org/10.1103/physrevapplied.15.064038

IF: 4.6

2021-06-15

Physical Review Applied

Abstract:Silicon photonics offers a stable, miniaturized platform for quantum key distribution (QKD). As such, the chip-based system is vital for a wider adoption of QKD in the near future. However, the practical security issues presented in this alternative platform have not been fully studied. Here, we theoretically and experimentally evaluate the security of a chip-based QKD system under a powerful source attack, namely, Trojan-horse attack. We analyze the finite-key security of two prominent QKD protocols—BB84 and measurement-device-independent QKD—with the information leakage from both the polarization modulator and the intensity modulator integrated on a silicon photonic chip. Furthermore, we prove that our chip-based measurement-device-independent QKD system is feasibly resistant to the Trojan-horse attack by adding 232-dB isolation to the chip. In this sense, our work provides a guideline for the secure implementation of a leaky transmitter chip in the QKD system.

physics, applied

Tingting Luo,Qiang Liu,Xiaoran Sun,Chunfeng Huang,Ye Chen,Zhenrong Zhang,Kejin Wei

DOI: https://doi.org/10.1103/physreva.109.042608

2024-01-01

Abstract:Quantum key distribution (QKD), which theoretically provides unconditional secure communication, has developed rapidly in the past decades. However, the practical QKD systems still have vulnerabilities due to device imperfections. Polarization-encoding systems are one of the most important branches in the field of QKD. To date, a variety of polarization-encoding schemes have been proposed to meet the requirements of high speed and robust modulation, but the security analysis of these schemes is often ignored. In this paper, we experimentally and theoretically evaluated the security of three typical polarization encoders against the Trojan horse attack (THA), which is recognized as one of the critical quantum attacks. We built a system to implement the THA and collected the reflection from QKD configuration with different encoders. According to the experimental results, we further analyzed the secure key rate and the resistance against THAs of the system while BB84 or measurement-device-independent QKD was applied. Our paper plays an important guiding role in the design of polarization encoders and the construction of secure QKD systems with realistic devices.

Guillermo Currás-Lorenzo,Shlok Nahar,Norbert Lütkenhaus,Kiyoshi Tamaki,Marcos Curty

DOI: https://doi.org/10.1088/2058-9565/ad141c

2024-01-08

Abstract:The performance of quantum key distribution (QKD) is severely limited by multiphoton emissions, due to the photon-number-splitting attack. The most efficient solution, the decoy-state method, requires that the phases of all transmitted pulses are independent and uniformly random. In practice, however, these phases are often correlated, especially in high-speed systems, which opens a security loophole. Here, we address this pressing problem by providing a security proof for decoy-state QKD with correlated phases that offers key rates close to the ideal scenario. Our work paves the way towards high-performance secure QKD with practical laser sources, and may have applications beyond QKD.

Quantum Physics

Akihiro Mizutani,Marcos Curty,Charles Ci Wen Lim,Nobuyuki Imoto,Kiyoshi Tamaki

DOI: https://doi.org/10.1088/1367-2630/17/9/093011

2015-04-30

Abstract:In recent years, the gap between theory and practice in quantum key distribution (QKD) has been significantly narrowed, particularly for QKD systems with arbitrarily awed optical receivers. The status for QKD systems with imperfect light sources is however less satisfactory, in the sense that the resulting secure key rates are often overly-dependent on the quality of state preparation. This is especially the case when the channel loss is high. Very recently, to overcome this limitation, Tamaki et al proposed a QKD protocol based on the so-called rejected data analysis, and showed that its security|in the limit of infinitely long keys|is almost independent of any encoding flaw in the qubit space, being this protocol compatible with the decoy state method. Here, as a step towards practical QKD, we show that a similar conclusion is reached in the finite-key regime, even when the intensity of the light source is unstable. More concretely, we derive security bounds for a wide class of realistic light sources and show that the bounds are also efficient in the presence of high channel loss. Our results strongly suggest the feasibility of long distance provably-secure communication with imperfect light sources.

Quantum Physics

Marcos Curty,Tobias Moroder,Xiongfeng Ma,Hoi-Kwong Lo,Norbert Lutkenhaus

DOI: https://doi.org/10.1103/PhysRevA.79.032335

IF: 2.971

2009-01-01

Physical Review A

Abstract:The use of decoy states in quantum key distribution (QKD) has provided a method for substantially increasing the secret key rate and distance that can be covered by QKD protocols with practical signals. The security analysis of these schemes, however, leaves open the possibility that the development of better proof techniques or better classical postprocessing methods might further improve their performance in realistic scenarios. In this paper, we derive upper bounds on the secure key rate for decoy-state QKD. These bounds are based basically only on the classical correlations established by the legitimate users during the quantum communication phase of the protocol. The only assumption about the possible postprocessing methods is that double click events are randomly assigned to single click events. Further, we consider only secure key rates based on the uncalibrated device scenario which assigns imperfections such as detection inefficiency to the eavesdropper. Our analysis relies on two preconditions for secure two-way and one-way QKD. The legitimate users need to prove that there exists no separable state (in the case of two-way QKD) or that there exists no quantum state having a symmetric extension (one-way QKD) that is compatible with the available measurements results. Both criteria have been previously applied to evaluate single-photon implementations of QKD. Here we use them to investigate a realistic source of weak coherent pulses. The resulting upper bounds can be formulated as a convex optimization problem known as a semidefinite program which can be efficiently solved. For the standard four-state QKD protocol, they are quite close to known lower bounds, thus showing that there are clear limits to the further improvement of classical postprocessing techniques in decoy-state QKD.

Hua-Lei Yin,Zeng-Bing Chen

DOI: https://doi.org/10.1038/s41598-019-53435-4

IF: 4.6

2019-01-01

Scientific Reports

Abstract:Long-distance quantum key distribution (QKD) has long time seriously relied on trusted relay or quantum repeater, which either has security threat or is far from practical implementation. Recently, a solution called twin-field (TF) QKD and its variants have been proposed to overcome this challenge. However, most security proofs are complicated, a majority of which could only ensure security against collective attacks. Until now, the full and simple security proof can only be provided with asymptotic resource assumption. Here, we provide a composable finite-key analysis for coherent-state-based TF-QKD with rigorous security proof against general attacks. Furthermore, we develop the optimal statistical fluctuation analysis method to significantly improve secret key rate in high-loss regime. The results show that coherent-state-based TF-QKD is practical and feasible, with the potential to apply over nearly one thousand kilometers.

P. Gonzalez,L. Rebon,T. Ferreira da Silva,M. Figueroa,C. Saavedra,M. Curty,G. Lima,G. B. Xavier,W. A. T. Nogueira

DOI: https://doi.org/10.1103/PhysRevA.92.022337

2015-08-19

Abstract:Side-channel attacks currently constitute the main challenge for quantum key distribution (QKD) to bridge theory with practice. So far two main approaches have been introduced to address this problem, (full) device-independent QKD and measurement-device-independent QKD. Here we present a third solution that might exceed the performance and practicality of the previous two in circumventing detector side-channel attacks, which arguably is the most hazardous part of QKD implementations. Our proposal has, however, one main requirement: the legitimate users of the system need to ensure that their labs do not leak any unwanted information to the outside. The security in the low-loss regime is guaranteed, while in the high-loss regime we already prove its robustness against some eavesdropping strategies.

Quantum Physics

yanlin tang,hualei yin,xiongfeng ma,chihang fred fung,yang liu,hailin yong,tengyun chen,chengzhi peng,zengbing chen,jianwei pan

DOI: https://doi.org/10.1103/PhysRevA.88.022308

IF: 2.971

2013-01-01

Physical Review A

Abstract:Quantum key distribution (QKD) utilizes the laws of quantum mechanics to achieve information-theoretically secure key generation. This field is now approaching the stage of commercialization, but many practical QKD systems still suffer from security loopholes due to imperfect devices. In fact, practical attacks have successfully been demonstrated. Fortunately, most of them only exploit detection-side loopholes, which are now closed by the recent idea of measurement-device-independent QKD. On the other hand, little attention is paid to the source, which may still leave QKD systems insecure. In this work, we propose and demonstrate an attack that exploits a source-side loophole existing in qubit-based QKD systems using a weak coherent state source and decoy states. Specifically, by implementing a linear-optics unambiguous state discrimination measurement, we show that the security of a system without phase randomization-which is a step assumed in conventional security analyses but sometimes neglected in practice-can be compromised. We conclude that implementing phase randomization is essential to the security of decoy-state QKD systems under current security analyses.