Lizhou Qin,Bin Liu,Fei Gao,Wei Huang,Bingjie Xu,Yang Li

DOI: https://doi.org/10.1016/j.physa.2023.129427

IF: 3.778

2023-12-07

Physica A Statistical Mechanics and its Applications

Abstract:Quantum private query (QPQ) is a communication protocol established under the condition of mutual distrust between communication parties, which is used to solve the symmetrically private information retrieval problem in the quantum field. However, most of the existing QPQ protocols are based on the ideal light source. In practice, the multi-photon pulse generated by the transmitter will bring great security problems. We analyze the actual security of QPQ protocol in two-way communication, and find that database security and user privacy will be seriously threatened under multi-photon pulse. So we adopt the decoy state method to solve the actual security problem of QPQ protocol in view of the user side as the light source. The results show that the decoy state method is suitable for QPQ protocol of two-way communication, and can effectively defend against multi-photon pulse attacks.

physics, multidisciplinary

Li Liu,Fen-Zhuo Guo,Qiao-Yan Wen

DOI: https://doi.org/10.1007/s11128-021-03329-0

IF: 1.965

2021-11-19

Quantum Information Processing

Abstract:Quantum-key-distribution (QKD)-based quantum private queries (QPQs) are the most practical protocols for the symmetrically private information retrieval problem. But these protocols cannot resist joint-measurement (JM) attack. Recently, Wei et al. proposed a QPQ protocol with good performance in resisting JM attack (RJM-QPQ) (Phys. Rev. A 93, 042318 (2016)). However, due to the imperfections of ideal single-photon source, one has to consider the security of this protocol under weak coherent pulses sources (WCPS). In this paper, after analyzing the security loophole of RJM-QPQ protocol under WCPS, we propose a QPQ protocol with decoy-state method (DS-QPQ). Compared to the RJM-QPQ protocol, DS-QPQ has better performance under WCPS. It can also resist the JM attack. Furthermore, it improves database security, user privacy and efficiency. Moreover, DS-QPQ retains the good characters of QKD-based QPQs, e.g., it is loss tolerant and robust against quantum memory attack.

physics, multidisciplinary,quantum science & technology, mathematical

Liang-Yuan Zhao,Zhen-Qiang Yin,Wei Chen,Yong-Jun Qian,Chun-Mei Zhang,Guang-Can Guo,Zheng-Fu Han

DOI: https://doi.org/10.1038/srep39733

2017-01-04

Abstract:Quantum private queries (QPQ) is an important cryptography protocol aiming to protect both the user's and database's privacy when the database is queried privately. Recently, a variety of practical QPQ protocols based on quantum key distribution (QKD) have been proposed. However, for QKD-based QPQ the user's imperfect detectors can be subjected to some detector- side-channel attacks launched by the dishonest owner of the database. Here, we present a simple example that shows how the detector-blinding attack can damage the security of QKD-based QPQ completely. To remove all the known and unknown detector side channels, we propose a solution of measurement-device-independent QPQ (MDI-QPQ) with single- photon sources. The security of the proposed protocol has been analyzed under some typical attacks. Moreover, we prove that its security is completely loss independent. The results show that practical QPQ will remain the same degree of privacy as before even with seriously uncharacterized detectors.

Bin Liu,Fei Gao,Wei Huang,Qiao-yan Wen

DOI: https://doi.org/10.1007/s11433-015-5714-3

2015-11-17

Abstract:In this paper, we present a quantum-key-distribution (QKD)-based quantum private query (QPQ) protocol utilizing single-photon signal of multiple optical pulses. It maintains the advantages of the QKD-based QPQ, i.e., easy to implement and loss tolerant. In addition, different from the situations in the previous QKD-based QPQ protocols, in our protocol, the number of the items an honest user will obtain is always one and the failure probability is always zero. This characteristic not only improves the stability (in the sense that, ignoring the noise and the attack, the protocol would always succeed), but also benefits the privacy of the database (since the database will no more reveal additional secrets to the honest users). Furthermore, for the user's privacy, the proposed protocol is cheat sensitive, and for security of the database, we obtain an upper bound for the leaked information of the database in theory.

Quantum Physics

Hongfeng Zhu,Liwei Wang,Chaonan Wang

DOI: https://doi.org/10.1007/s10773-021-04827-8

2021-05-24

International Journal of Theoretical Physics

Abstract:Recently, people are paying more and more attention to privacy-enhanced computing, mostly because of the threat of network information leakage. In order to ensure the security of data in network communication, we have designed privacy-enhanced multi-user quantum private data query using partial quantum homomorphic encryption to facilitate the protection of the personal privacy of the database and users. Many QPQ protocols are based on QKD theory and lack the identity authentication of users. The protocols are vulnerable to external eavesdropping attacks. The identity authentication process of this scheme confirms the real identity of the user and avoids external eavesdropping attacks to a certain extent. The scheme allows the use of universal quantum circuits to perform quantum transformation on the user's arbitrarily encrypted input data, which improves the accuracy of the data query process. In addition, the scheme applies partial quantum homomorphic encryption theory to multi-user quantum private data query, which can realize the function of <i>n</i> users querying data at the same time. We have implemented a security analysis on the scheme and compared with other QPQ protocols, we found that this scheme is safe and effective.

physics, multidisciplinary

Fang Yu,Daowen Qiu,Xiaoming Wang,Qin Li,Lvzhou Li,Jozef Gruska

DOI: https://doi.org/10.48550/arXiv.2005.13382

2020-05-27

Cryptography and Security

Abstract:New quantum private database (with N elements) query protocols are presented and analyzed. Protocols preserve O(logN) communication complexity of known protocols for the same task, but achieve several significant improvements in security, especially concerning user privacy. For example, the randomized form of our protocol has a cheat-sensitive property - it allows the user to detect a dishonest database with a nonzero probability, while the phase-encoded private query protocols for the same task do not have such a property. Moreover, when the database performs the computational basis measurement, a particular projective measurement which can cause a significant loss of user privacy in the previous private query protocols with O(logN) communication complexity, at most half of the user privacy could leak to such a database in our protocol, while in the QPQ protocol, the entire user privacy could leak out. In addition, it is proved here that for large N, the user could detect a cheating via the computational basis measurement, with a probability close to 1/2 using O(\sqrt{N}) special queries. Finally, it is shown here, for both forms of our protocol, basic and randomized, how a dishonest database has to act in case it could not learn user's queries.

Chun-Yan Wei,Xiao-Qiu Cai,Tian-Yin Wang

2024-07-27

Abstract:Quantum private query (QPQ) is the quantum version for symmetrically private retrieval. However, the user privacy in QPQ is generally guarded in the non-realtime and cheat sensitive way. That is, the dishonest database holder's cheating to elicit user privacy can only be discovered after the protocol is finished (when the user finds some errors in the retrieved database item). Such delayed detection may cause very unpleasant results for the user in real-life applications. Current efforts to protect user privacy in realtime in existing QPQ protocols mainly use two techniques, i.e., adding an honesty checking on the database or allowing the user to reorder the qubits. We reexamine these two kinds of QPQ protocols and find neither of them can work well. We give concrete cheating strategies for both participants and show that honesty checking of inner participant should be dealt more carefully in for example the choosing of checking qubits. We hope such discussion can supply new concerns when detection of dishonest participant is considered in quantum multi-party secure computations.

Quantum Physics,Cryptography and Security

Min Xiao,Mengjiao Zhao

DOI: https://doi.org/10.1007/s11128-024-04288-y

IF: 1.965

2024-02-29

Quantum Information Processing

Abstract:Quantum private query (QPQ) can protect both user and database privacy when a user retrieves an entry from a database. Most existing QPQ protocols only support a single user retrieving a database, but in reality, people collaborate with each other to complete a task. Thus, it is necessary for multiple users to simultaneously retrieve a database. So far, all proposed multi-user QPQ protocols are based on high-dimensional quantum states and do not consider external attackers. In this paper, we present a multi-user QPQ protocol with two-way authentication based on Bell state and entanglement swapping technology. Under the premise of ensuring the privacy of users and the database, this protocol enables multiple users to simultaneously retrieve entries from a database. The security analysis demonstrates that the protocol can ensure privacy and resist external attacks.

physics, multidisciplinary,quantum science & technology, mathematical

Xiang-Bin Wang

DOI: https://doi.org/10.1007/3-540-33133-6_8

2006-01-01

Abstract:Unlike from the existing classical protocols, a quantum key distribution (QKD) protocol can help two remote parties do secure private communication with proven security. We study various QKD protocols with special emphasis on security, feasibility and robustness. The security proof of the standard four-state protocol can be done based on the virtual entanglement purification by classical hashing. QKD can be done with unconditional security even when an imperfect source such as the coherent light from a traditional laser device is used. In particular, we show that one can do QKD effectively with a traditional laser device through the decoy-state method, i.e., changing the intensity of each pulse randomly among three values. One can improve the key rate and noise threshold if the channel noise is asymmetric. One can also do QKD more robustly with a two-qubit quantum code given that the channel noise is collective or independent.

Qingquan Peng,Binwu Gao,Konstantin Zaitsev,Dongyang Wang,Jiangfang Ding,Yingwen Liu,Qin Liao,Ying Guo,Anqi Huang,Junjie Wu

DOI: https://doi.org/10.1103/physrevapplied.21.014026

IF: 4.6

2024-01-17

Physical Review Applied

Abstract:Unauthorized light injection has always been a vital threat to the practical security of a quantum-key-distribution (QKD) system. An optical-power limiter (OPL) based on the thermo-optical defocusing effect has been proposed and implemented, limiting the injected hacking light. As a hardware countermeasure, the performance of the OPL under various light-injection attacks will be tested to clarify the security boundary before it is widely deployed. To investigate the security boundary of the OPL in quantum cryptography, we comprehensively test and analyze the behavior of the OPL under continuous-wave (cw) light-injection attacks and pulse-illumination attacks with pulse repetition rates of 0.5 Hz, 40 MHz, and 1 GHz. The test results illuminate the security boundary of the OPL, which allows one to properly employ the OPL in use cases. The methodology of testing and analysis proposed here is applicable to other power-limitation components in a QKD system. https://doi.org/10.1103/PhysRevApplied.21.014026 © 2024 American Physical Society

physics, applied

Liying Han,Yang Li,Hao Tan,Weiyang Zhang,Wenqi Cai,Juan Yin,Jigang Ren,Feihu Xu,Shengkai Liao,Chengzhi Peng

DOI: https://doi.org/10.1103/PhysRevApplied.20.044013

2024-01-02

Abstract:Quantum key distribution (QKD) based on the fundamental laws of quantum physics can allow the distribution of secure keys between distant users. However, the imperfections in realistic devices may lead to potential security risks, which must be accurately characterized and considered in practical security analysis. High-speed optical modulators, being as one of the core components of practical QKD systems, can be used to prepare the required quantum states. Here, we find that optical modulators based on LiNbO3, including phase modulators and intensity modulators, are vulnerable to photorefractive effect caused by external light injection. By changing the power of external light, eavesdroppers can control the intensities of the prepared states, posing a potential threat to the security of QKD. We have experimentally demonstrated the influence of light injection on LiNbO3-based optical modulators and analyzed the security risks caused by the potential green light injection attack, along with the corresponding countermeasures.

Quantum Physics

Xiongfeng Ma

DOI: https://doi.org/10.48550/arxiv.0808.1385

2008-01-01

Abstract:A highly attenuated laser pulse which gives a weak coherent state is widely used in quantum key distribution (QKD) experiments. A weak coherent state has multi-photon components, which opens up a security loophole to the sophisticated eavesdropper. With a small adjustment of the hardware, we prove that the decoy state method can close this loophole and substantially improve the QKD performance. We also propose a few practical decoy state protocols, study statistical fluctuations and perform experimental demonstrations. Moreover, we apply the methods from entanglement distillation protocols based on two-way classical communication to improve the decoy state QKD performance. Furthermore, we study the decoy state methods for other single photon sources, such as triggering parametric down-conversion (PDC) source. We propose a model and post-processing scheme for the entanglement-based QKD with a PDC source. Although the model is proposed to study the entanglement-based QKD, we emphasize that our generic model may also be useful for other non-QKD experiments involving a PDC source. By simulating a real PDC experiment, we show that the entanglement-based QKD can achieve longer maximal secure distance than the single-photon-based QKD schemes. We present a time-shift attack that exploits the efficiency mismatch of two single photon detectors in a QKD system. This eavesdropping strategy can be realized by current technology. We also discuss counter measures against the attack and study the security of a QKD system with efficiency mismatch detectors.

Zhihao Wu,Anqi Huang,Huan Chen,Shi-Hai Sun,Jiangfang Ding,Xiaogang Qiang,Xiang Fu,Ping Xu,Junjie Wu

DOI: https://doi.org/10.48550/arXiv.2002.09146

2020-02-21

Quantum Physics

Abstract:Quantum key distribution (QKD) has been proved to be information-theoretically secure in theory. Unfortunately, the imperfect devices in practice compromise its security. Thus, to improve the security property of practical QKD systems, a commonly used method is to patch the loopholes in the existing QKD systems. However, in this work, we show an adversary's capability of exploiting the imperfection of the patch itself to bypass the patch. Specifically, we experimentally demonstrate that, in the detector under test, the patch of photocurrent monitor against the detector blinding attack can be defeated by the pulse illumination attack proposed in this paper. We also analyze the secret key rate under the pulse illumination attack, which theoretically confirmed that Eve can conduct the attack to learn the secret key. This work indicates the importance of inspecting the security loopholes in a detection unit to further understand their impacts on a QKD system. The method of pulse illumination attack can be a general testing item in the security evaluation standard of QKD.

Liu, Dongmei

DOI: https://doi.org/10.1007/s11128-024-04539-y

IF: 1.965

2024-10-18

Quantum Information Processing

Abstract:Most of the previous quantum private query protocols are based on the BB84 key distribution type and generally use a method that wastes most quantum resources to complete security detection. In order to save resources, this paper proposes a noiseless counterfactual quantum private query protocol with high efficiency. This protocol improves the counterfactual quantum key distribution protocol proposed by Rao and Srikanth (Phys Rev A 104:022424, 2021. https://doi.org/10.1103/PhysRevA.104.022424). The communicating parties randomly select quantum bits with probability f to perform flipping to complete the quantum private query. The detector at the sending end receives the counterfactual bit, which we use for security detection; the detector at the receiving end is called a non-counterfactual bit, which is combined with random bit flipping to realize key transmission, followed by traditional post-processing and private query. Finally, when , the response probability (keys rate) of the non-counterfactual detector at the receiving end can reach a minimum value of 0.5.

physics, multidisciplinary,quantum science & technology, mathematical

Geng Chen,Yuqi Wang,Liya Jian,Yi Zhou,Shiming Liu

DOI: https://doi.org/10.1007/s11128-023-04000-6

IF: 1.965

2023-06-06

Quantum Information Processing

Abstract:In the current era of big data, the privacy of user behavior is as important as the privacy of their data. In this paper, we propose a single ternary quantum homomorphic encryption (QHE) protocol based on qubit rotation, which has high security and flexibility. The user utilizes the classical angle as the key for QHE, and encryption and decryption do not need to be implemented in a specific order. Based on this flexible QHE protocol, we further propose a quantum privacy query (QPQ) protocol. Our protocol uses homologous encryption to send query requests and obtain results after processing with an oracle machine—which exists independently of the database—in one round of communication. Our protocol has advantages in terms of its feasibility and efficiency. In addition to this, our protocol offers new ideas for implementing QPQ.

physics, multidisciplinary,quantum science & technology, mathematical

Qingquan Peng,Binwu Gao,Konstantin Zaitsev,Dongyang Wang,Jiangfang Ding,Yingwen Liu,Qin Liao,Ying Guo,Anqi Huang,Junjie Wu

DOI: https://doi.org/10.1103/PhysRevApplied.21.014026

2023-12-22

Abstract:Unauthorized light injection has always been a vital threat to the practical security of a quantum key distribution (QKD) system. An optical power limiter (OPL) based on the thermo-optical defocusing effect has been proposed and implemented, limiting the injected hacking light. As a hardware countermeasure, the performance of the OPL under various light-injection attacks shall be tested to clarify the security boundary before being widely deployed. To investigate the OPL's security boundary in quantum cryptography, we comprehensively test and analyse the behavior of OPL under continuous-wave (c.w.) light-injection attacks and pulse illumination attacks with pulses' repetition rate at $0.5$-$\hertz$, $40$-$\mega\hertz$, and $1$-$\giga\hertz$. The testing results illuminate the security boundary of the OPL, which allows one to properly employ the OPL in the use cases. The methodology of testing and analysis proposed here is applicable to other power-limitation components in a QKD system.

Quantum Physics

Jyotirmoy Basak,Kaushik Chakraborty

DOI: https://doi.org/10.3934/amc.2024009

2024-03-19

Advances in Mathematics of Communications

Abstract:Quantum Private Query (QPQ) is an unconditional secure mistrustful cryptographic primitive which is assumed to be a probabilistic version of the Oblivious Transfer (OT) schemes or an imperfect version of Symmetric Private Information Retrieval (SPIR) schemes. Recently, Maitra et al. (Phys. Rev. A, 2017) identified that the B92 QKD-based QPQ scheme proposed by Yang et al. (Quant. Inf. Process., 2014) is vulnerable whenever the devices involved in that scheme are dubious and to improve the overall security, they suggested a semi-Device Independent (DI) proposal for that QPQ scheme by introducing a local test at the server's end. In this work, we overcome the limitation of the Maitra et al. proposal by removing trustworthiness from all the (involved) devices, and suggest a full DI proposal for the Yang et al. scheme, exploiting a proper self-testing mechanism of observables along with the local version of the tilted CHSH game. We compare the performance of our proposal with a recent full DI-QPQ scheme (arxiv 1901.03042) and discuss their relative advantages. Additionally, we present a DI proposal for a modified version of the Yang et al. scheme, enabling the client to retrieve maximum raw key bits during the oblivious key generation phase. We evaluate the security of all our proposals with a formal analysis.

computer science, theory & methods,mathematics, applied

Min Hou,Yue Wu

DOI: https://doi.org/10.3390/e26080682

2024-08-13

Abstract:Quantum private comparison (QPC) represents a cryptographic approach that enables two parties to determine whether their confidential data are equivalent, without disclosing the actual values. Most existing QPC protocols utilizing single photons or Bell states are considered highly feasible, but they suffer from inefficiency. To address this issue, we present a novel QPC protocol that capitalizes on the entanglement property of Bell states and local operations to meet the requirements of efficiency. In the proposed protocol, two participants with private inputs perform local operations on shared Bell states received from a semi-honest third party (STP). Afterward, the modified qubits are returned to the STP, who can then determine the equality of the private inputs and relay the results to the participants. A simulation on the IBM Quantum Cloud Platform confirmed the feasibility of our protocol, and a security analysis further demonstrated that the STP and both participants were unable to learn anything about the individual private inputs. In comparison to other QPC protocols, our proposed solution offers superior performance in terms of efficiency.

Pei Zeng,Debayan Bandyopadhyay,José A. Méndez Méndez,Nolan Bitner,Alexander Kolar,Michael T. Solomon,Filip Rozpedek,Tian Zhong,F. Joseph Heremans,David D. Awschalom,Liang Jiang,Junyu Liu

2024-11-02

Abstract:Quantum resistance is vital for emerging cryptographic systems as quantum technologies continue to advance towards large-scale, fault-tolerant quantum computers. Resistance may be offered by quantum key distribution (QKD), which provides information-theoretic security using quantum states of photons, but may be limited by transmission loss at long distances. An alternative approach uses classical means and is conjectured to be resistant to quantum attacks, so-called post-quantum cryptography (PQC), but it is yet to be rigorously proven, and its current implementations are computationally expensive. To overcome the security and performance challenges present in each, here we develop hybrid protocols by which QKD and PQC inter-operate within a joint quantum-classical network. In particular, we consider different hybrid designs that may offer enhanced speed and/or security over the individual performance of either approach. Furthermore, we present a method for analyzing the security of hybrid protocols in key distribution networks. Our hybrid approach paves the way for joint quantum-classical communication networks, which leverage the advantages of both QKD and PQC and can be tailored to the requirements of various practical networks.

Quantum Physics,Artificial Intelligence,Cryptography and Security