Experimental investigation of practical unforgeable quantum money

Bozzio, Mathieu; Orieux, Adeline; Vidarte, Luis Trigo; Zaquine, Isabelle; Kerenidis, Iordanis; Diamanti, Eleni

doi:10.1038/s41534-018-0058-2

Cited by 42 publications

(43 citation statements)

References 32 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Furthermore, Selby and Sikora [30] analyzed unforgeable money in the Generalized Probabilistic Theories. We should also point out experimental results in the quantum money field were presented by three groups of Bartkiewicz et al [31], Bozzio et al [32], and Guan et al [33] respectively. Although the theoretical schemes are secure, in the case of real-life, more practical implementation, new vectors of attack could appear.…”

Section: Private-key Quantum Moneymentioning

confidence: 78%

See 1 more Smart Citation

Semi-device-independent quantum money

Horodecki

Stankiewicz

2020

New J. Phys.

View full text Add to dashboard Cite

The seminal idea of quantum money, not forgeable due to laws of Quantum Mechanics, proposed by Stephen Wiesner, has laid the foundations for the Quantum Information Theory in the early '70s.Recently, several other schemes for quantum currencies have been proposed, all, however, relying on the assumption that the quantum source device, acts according to its specification. This makes several known quantum money protocols vulnerable to the so-called hardware Trojan horse attacks. We, therefore, study the following problem: to what extent quantum money schemes can be made independent from the inner working of source and verification-devices used by the honest parties (bank and mint) in creating and processing the quantum money? Drawing inspirations from the semi-device-independent quantum key distribution protocol, we introduce the first scheme of quantum money with this assumption partially relaxed, along with the proof of its unforgeability. Finally, we formulate and discuss a quantum analog of the Oresme-Copernicus-Gresham's law of economy, that may hold in the future.

show abstract

Section: Private-key Quantum Moneymentioning

confidence: 78%

“…It is also worth to notice that, recently, the first experimental implementation of quantum money schemes were performed [31][32][33]. It indicates that real-life implementation of quantum money could potentially be achievable using near-future technologies.…”

Section: How Close We Are To Practice?mentioning

confidence: 97%

Semi-device-independent quantum money

Horodecki

Stankiewicz

2020

New J. Phys.

View full text Add to dashboard Cite

show abstract

“…An example of such fundamental limitation is the no-cloning theorem, 1,2 which guaranties security of quantum money. 3,4 In a recent paper, Bozzio et al 5 reported on an implementaion of a QM scheme based on QRGs. 6,7 While this result brings QM closer to practical implementation, here we demonstrate that QRG-based QM schemes are still vulnerable to a new kind of attack (for some typical attacks see Ref.…”

Section: Introductionmentioning

confidence: 99%

“…For the purpose of our research we have experimentally recreated the original scheme of Ref. [ 5]. Its working principle can be described as follows: the bank encodes QM (as a quantum token) using a secret sequence of qubit pairs chosen from the list of eight options: (1) where |0 , |1 are logical qubit states, and |± = 1 √ 2 (|0 ± |1 ) stand for their superpositions.…”

Section: Introductionmentioning

confidence: 99%

Experimentally attacking quantum money schemes based on quantum retrieval games

Jiráková

Bartkiewicz

Cernoch

et al. 2019

Sci Rep

View full text Add to dashboard Cite

The concept of quantum money (QM) was proposed by Wiesner in the 1970s. Its main advantage is that every attempt to copy QM unavoidably leads to imperfect counterfeits. In the Wiesner’s protocol, quantum banknotes need to be delivered to the issuing bank for verification. Thus, QM requires quantum communication which range is limited by noise and losses. Recently, Bozzio et al. (2018) have demonstrated experimentally how to replace challenging quantum verification with a classical channel and a quantum retrieval game (QRG). This brings QM significantly closer to practical realisation, but still thorough analysis of the revised scheme QM is required before it can be considered secure. We address this problem by presenting a proof-of-concept attack on QRG-based QM schemes, where we show that even imperfect quantum cloning can, under some circumstances, provide enough information to break a QRG-based QM scheme.

show abstract

“…An alternative protocol with verification using classical communication was first proposed in [7] and extended to practical, noise-tolerant schemes in [8][9][10].Although quantum key distribution protocols have been widely studied and implemented [11], quantum money has not yet seen the same experimental progress, essentially because of the difficulty in implementing efficient quantum storage devices [12]. However, the experimental interest in quantum money has grown recently, with demonstration of forgery of quantum banknotes [13] and implementation of weak coherent state-based quantum credit card schemes, secure in a trusted terminal scenario [14,15], in the prospect of near-future implementations with a quantum memory. These require new security proofs tackling the optimal cloning of coherent states, differing from qubit-based quantum money and also quantum key distribution proofs.In quantum cryptography, semi-device-independent frameworks have been developed in order to limit the needed assumptions to ensure security.…”

mentioning

confidence: 99%

Semi-device-independent quantum money with coherent states

Bozzio

Diamanti²,

Grosshans

2019

Phys. Rev. A

Self Cite

View full text Add to dashboard Cite

The no-cloning property of quantum mechanics allows unforgeability of quantum banknotes and credit cards. Quantum credit card protocols involve a bank, a client and a payment terminal, and their practical implementation typically relies on encoding information on weak coherent states of light. Here, we provide a security proof in this practical setting for semi-device-independent quantum money with classical verification, involving an honest bank, a dishonest client and a potentially untrusted terminal. Our analysis uses semidefinite programming in the coherent state framework and aims at simultaneously optimizing over the noise and losses introduced by a dishonest party. We discuss secure regimes of operation in both fixed and randomized phase settings, taking into account experimental imperfections. Finally, we study the evolution of protocol security in the presence of a decohering optical quantum memory and identify secure credit card lifetimes for a specific configuration.In contrast to classical physics, quantum mechanical systems have a no-cloning property [1]: it is impossible to make a perfect copy of a quantum object in an unknown state. This property was used by Wiesner in his proposal to mint unforgeable quantum money [2], giving birth to the field of quantum cryptography [3][4][5]. The original idea involved a bank encoding a secret classical key into a sequence of two-level quantum states (qubits) stored in a quantum memory and handed to a client. The secret key specifies the basis in which each qubit is encoded, ensuring that a forger ignoring the basis in which to measure it will destroy information. This will then trigger incorrect measurement outcomes when the bank will verify the validity of the banknote. Such a scheme may be impractical over long distances due to a potentially lossy and noisy transmission of the quantum states between the client and the bank. It was also shown to be vulnerable to adaptive attacks, where a counterfeiter can use the same banknote several times [6]. An alternative protocol with verification using classical communication was first proposed in [7] and extended to practical, noise-tolerant schemes in [8][9][10].Although quantum key distribution protocols have been widely studied and implemented [11], quantum money has not yet seen the same experimental progress, essentially because of the difficulty in implementing efficient quantum storage devices [12]. However, the experimental interest in quantum money has grown recently, with demonstration of forgery of quantum banknotes [13] and implementation of weak coherent state-based quantum credit card schemes, secure in a trusted terminal scenario [14,15], in the prospect of near-future implementations with a quantum memory. These require new security proofs tackling the optimal cloning of coherent states, differing from qubit-based quantum money and also quantum key distribution proofs.In quantum cryptography, semi-device-independent frameworks have been developed in order to limit the needed assumptions to ensure secur...

show abstract

Experimental investigation of practical unforgeable quantum money

Cited by 42 publications

References 32 publications

Semi-device-independent quantum money

Semi-device-independent quantum money

Experimentally attacking quantum money schemes based on quantum retrieval games

Semi-device-independent quantum money with coherent states

Contact Info

Product

Resources

About