Insecurity of Detector-Device-Independent Quantum Key Distribution

Sajeed, Shihan; Huang, Anqi; Sun, Shi-Hai; Xu, Feihu; Makarov, Vadim; Curty, Marcos

doi:10.1103/physrevlett.117.250505

Cited by 57 publications

(33 citation statements)

References 48 publications

(134 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Notes added in proof After a completion of a preliminary version of this paper, a recent preprint 181 has been posted on the arXiv that demonstrates the insecurity of DDI-QKD protocol. In addition, it has come to our attention that DI-QKD remains vulnerable to covert channels such as memory attack.…”

Section: Resultsmentioning

confidence: 99%

Practical challenges in quantum key distribution

Diamanti¹,

Lo²,

Qi³

et al. 2016

npj Quantum Inf

647

468

View full text Add to dashboard Cite

Quantum key distribution (QKD) promises unconditional security in data communication and is currently being deployed in commercial applications. Nonetheless, before QKD can be widely adopted, it faces a number of important challenges such as secret key rate, distance, size, cost and practical security. Here, we survey those key challenges and the approaches that are currently being taken to address them. For thousands of years, human beings have been using codes to keep secrets. With the rise of the Internet and recent trends to the Internet of Things, our sensitive personal financial and health data as well as commercial and national secrets are routinely being transmitted through the Internet. In this context, communication security is of utmost importance. In conventional symmetric cryptographic algorithms, communication security relies solely on the secrecy of an encryption key. If two users, Alice and Bob, share a long random string of secret bits-the key-then they can achieve unconditional security by encrypting their message using the standard one-time-pad encryption scheme. The central question then is: how do Alice and Bob share a secure key in the first place? This is called the key distribution problem. Unfortunately, all classical methods to distribute a secure key are fundamentally insecure because in classical physics there is nothing preventing an eavesdropper, Eve, from copying the key during its transit from Alice to Bob. On the other hand, standard asymmetric or public-key cryptography solves the key distribution problem by relying on computational assumptions such as the hardness of factoring. Therefore, such schemes do not provide information-theoretic security because they are vulnerable to future advances in hardware and algorithms, including the construction of a large-scale quantum computer.

show abstract

Section: Resultsmentioning

confidence: 99%

Practical challenges in quantum key distribution

Diamanti¹,

Lo²,

Qi³

et al. 2016

npj Quantum Inf

647

468

View full text Add to dashboard Cite

show abstract

“…The third and final assumptions are different from the scenario of MDI-QKD. They are necessary to prevent particular classes of side channel attacks [ 28 , 29 ]. The third assumption can be considered not impractical, since d -QKD with hybrid encoding has the similar experimental situation to prepare-and-measure QKD protocols like original BB84.…”

Section: Security Analysismentioning

confidence: 99%

“…Detector blinding attack with various blinding power [ 13 ] can threaten d -QKD with hybrid encoding as well as the original DDI-QKD [ 29 ]. However, since the attack requires a prior knowledge about the detectors, it is not compatible with assumption (iv).…”

Section: Security Analysismentioning

confidence: 99%

“…As its scheme is similar to the process of BSM used in MDI-QKD, it was conjectured that DDI-QKD guarantees the same security level with MDI-QKD. However, it has been shown that not all the side channel attacks are protected with DDI-QKD [ 28 , 29 ], and an assumption of the trusted measurement setup is necessary for ensuring its security.…”

Section: Introductionmentioning

confidence: 99%

“…We note that our protocol is more secure than the original BB84 protocol against a side channel attack (but less secure than MDI-QKD). For example, it can detect the basic detector blinding attack [ 12 ] from double clicks of detectors [ 28 , 29 ]. On the other hand, the attained key rate with our protocol is comparable with BB84 protocol, while MDI-QKD has a half of signal sifting rate of BB84 protocol due to the 50% limit of the success probability of the BSM.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Efficient High-Dimensional Quantum Key Distribution with Hybrid Encoding

Park

Lee

et al. 2019

Entropy

View full text Add to dashboard Cite

We propose a schematic setup of quantum key distribution (QKD) with an improved secret key rate based on high-dimensional quantum states. Two degrees-of-freedom of a single photon, orbital angular momentum modes, and multi-path modes, are used to encode secret key information. Its practical implementation consists of optical elements that are within the reach of current technologies such as a multiport interferometer. We show that the proposed feasible protocol has improved the secret key rate with much sophistication compared to the previous 2-dimensional protocol known as the detector-device-independent QKD. arXiv:1901.09478v1 [quant-ph]

show abstract