Quantum Key Distribution: Difference between revisions

From Quantum Protocol Zoo
Jump to navigation Jump to search
Line 31: Line 31:
==References==
==References==
#C. Portmann and R. Renner, [https://arxiv.org/abs/1409.3525 Cryptographic security of quantum key distribution}]
#C. Portmann and R. Renner, [https://arxiv.org/abs/1409.3525 Cryptographic security of quantum key distribution}]
#J. Barrett, R. Colbeck, and A. Kent, [ Phys. Rev. Lett., vol. 110, p. 010503, (2013) Memory attacks on device-independent quantum cryptography]
#J. Barrett, R. Colbeck, and A. Kent, [https://journals.aps.org/prl/abstract/10.1103/PhysRevLett.110.010503 Memory attacks on device-independent quantum cryptography]

Revision as of 07:46, 10 December 2018

Functionality

Quantum key distribution is a task that enables two parties, Alice and Bob, to establish a classical secret key by using quantum systems. A classical secret key is a random string of bits known to only Alice and Bob, and completely unknown to any third party, namely an eavesdropper. Such a secret key can for example be used to encrypt a classical message sent over a public channel.

Tags: Two Party, Quantum Enhanced Classical Functionality, Specific Task, unconditional security (information theoretical security), random number generator, key generation, secret key

Protocols

Device-Independent Quantum Key Distribution (DI-QKD) has better security guarantees than BB84 QKD.

Properties

A quantum key distribution protocol is secure if it is correct and secret. Correctness is the statement that Alice and Bob share the same string of bits, namely the secret key, at the end of the protocol. Secrecy is the statement that the eavesdropper is totally ignorant about the final key.

  • Correctness A QKD protocol is -correct if the probability that the final key of Alice differs from the final key of Bob, is smaller than
  • Secrecy A QKD protocol is Failed to parse (SVG (MathML can be enabled via browser plugin): Invalid response ("Math extension cannot connect to Restbase.") from server "https://wikimedia.org/api/rest_v1/":): {\displaystyle \epsilon_{\rm sec}} -secret if for every input state it holds that

Failed to parse (SVG (MathML can be enabled via browser plugin): Invalid response ("Math extension cannot connect to Restbase.") from server "https://wikimedia.org/api/rest_v1/":): {\displaystyle \frac{1}{2}{\|{\rho_{K_AE}}-{\tau_{K_A}\otimes \rho_E}\|}_1\leq \epsilon_{\rm sec},} where is the maximally mixed state in the space of strings , and is the trace norm.

  • A protocol implements a Failed to parse (SVG (MathML can be enabled via browser plugin): Invalid response ("Math extension cannot connect to Restbase.") from server "https://wikimedia.org/api/rest_v1/":): {\displaystyle (n,\epsilon_{\rm corr},\epsilon_{\rm sec},\ell)} -QKD if with Failed to parse (SVG (MathML can be enabled via browser plugin): Invalid response ("Math extension cannot connect to Restbase.") from server "https://wikimedia.org/api/rest_v1/":): {\displaystyle n} rounds it generates an -correct and Failed to parse (SVG (MathML can be enabled via browser plugin): Invalid response ("Math extension cannot connect to Restbase.") from server "https://wikimedia.org/api/rest_v1/":): {\displaystyle \epsilon_{\rm sec}} -secret key of size bits.

Discussion

The security definition presented here, Definition \ref{def:correct} and \ref{def:secret}, are proven to be sufficient to guarantee universal composability for standard QKD in (2). For device-independent quantum key distribution, attacks presented in (1) show that security can be compromised if the same devices are used to implement another instance of the protocol.

  1. BCK (2013) Analyses device independent QKD
  2. PR (2014) discusses security of various QKD schemes composed in other cryptographic protocols.

References

  1. C. Portmann and R. Renner, Cryptographic security of quantum key distribution}
  2. J. Barrett, R. Colbeck, and A. Kent, Memory attacks on device-independent quantum cryptography