Quantum Cryptography Systems Commercially Launched

prostoalex writes "NY-based MagiQ has now started commercial shipments of its quantum cryptography systems, which it claims is the first commercially available device of its type. Apparently, 'Quantum cryptography goes a step further than electronic cryptography through its employment of a stream of photons, the quantum properties of which determine the key. The fun part is that if an intruder observes or intercepts the transmission, those properties get changed'." We've previously run stories on advances in quantum cryptography.

Who uses this?

[Dancin_Santa]

This is one of those really cool things that doesn't really have a market ready for it.

Ummm...

[chill]

The setup consists of two rackmount units connected by both optical and Ethernet cables.

So... do the boxes have to be close enough to run the optical cables directly? Can the signal be regenerated or amplified without disturbing the photons? (I doubt it.) How about sending the photon stream through a DWDM switch? (Again, I doubt it.)

If the pair of boxes has to be in the same building, that isn't going to be a big seller. Bob would just walk down and HAND Alice the data.

Nice PR stunt, though.

Oh, I really want to know what telco is finding multiple taps a week to their optical fibers. I really smell bullshit here.

Re:Ummm...

[God!+Awful+2]

If the pair of boxes has to be in the same building, that isn't going to be a big seller. Bob would just walk down and HAND Alice the data.
Nice PR stunt, though.

It's worse than that... it's complete FUD even if the boxes are in different buildings.

- This only works for individual point-to-point links, where the burden of managing pre-shared keys is not that high.
- Quantum cryptography replaces Diffie-Hellman, but it doesn't replace authentication. So you still have to have a pre-shared key or else the attacker can just splice the fiber and do a man-in-the-middle attack.
- They're using this ultra-secure technology for key exchange, but then they still send the rest of the data using AES or 3DES. If someone invents a quantum computer powerful enough to crack 2048 bit DH, they could use it to crack AES instead.

-a

The end of RIAAA

[CreatorOfSmallTruths]

I'll go out on a lim here and say that if all of the internet will slowly become quantom-secure and ip addresses will stop being centrally provided (think about it... a blob of addresses no one central organization provides.. everybody have a dynamic IP and DNSs publicize only those who wants to be publicized...) P2P sharing will stop being a risk to the sharer/sharee.
Goodbye all copyright.

Re:The end of RIAAA

[RMH101]

and i'll go out on a limb and say "bullshit". decentralised, totally secure and anonymous connections worldwide? like that's going to be allowed to happen.

I wonder...

Couldn't the quantum twin effect be used to transmit information without anybody else even seeing that a communication takes place?

hopefully...

[jlemmerer]

...this cool invention does survive the time until it can become widespread. At the moment I cannot really see a market for this system other than at the NSA and similar organisations (anybody got a quantum computer out there at the ready?). But as technology rapidly advances it this crypto mehthod could prove quite useful for enterpises and in the long term to all end unsers. We just have to look out that this technology doesn't disappear too soon (maybe a little bit accelerated by the above named organisations who don't like crypo they can quite easily brak or trapdoor)

The properties get changed?

So what does this mean then? I'm assuming it means that as soon as someone looks at something, it changes so the original information is lost.

In that case, could you launch a DoS attack on quantum crypto systems just by looking at all the data from a specific source? That way, none gets through.

USELESS!!

[logicnazi]

So even if this is really workable quantum cryptography, in which case it would only work on a direct fiber to fiber link. I don't see how it would give any benefit.

From a technical point of view Quantum cryptography is only secure against man in the middle attacks if you have a SEPERATE channell to the remote host that you are absolutely sure in fact goes to the right person. As long as all communication goes over the fiber nothing prevents a spy from splicing his own box into the line and negotiating a key using quantum cryptography for both parties. However, if you have some channell that you know reaches the other source you can just use Diffie-Helman or like protocal to negotiate a shared key without ever broadcasting it on the line.

The only think quantum cryptography does for you is take the public key component out of the equation. However from reading the article this box just uses quantum encryption to negotiate a key for 3-DES or similar. Seems to me that the public key is not the weakest link in the system. Also as it does packet based encryption you can still watch and time packets to observe keystrokes (I believe good ssh and the like programs wait for several seconds to try and send a bunch of keystrokes together, but a box that sits outside the computer can't decode the first layer of encryption to stick the packets together in a meaningfull way...though I could be wrong on this).

From a pragmatic point of view, since this is only going to work on an unbroken single fiber there is some limit to distance here. I'm sure someone else on slashdot knows about how long you can string fiber before you need a repeater or something. Wouldn't it be easier to just routinely check to make sure there is no middle man inserted in the wire (use diffie-helman or similar again so that someone JUST listening can't decode things). Even better, take a key generated on the first computer BY HAND to the other end of the communications loop. Better cheaper security with no new high tech gizmos.

Terrorists

[hajejan]

I know. You didn't want to hear that. But criminals, terrorists and other government agencies are the first to use this type of technology.

Kind of like the whole quantum computing thing. We sit around on projects like distributed.net trying to crack a 64 bit key. Nobody knows if the CIA has a quantum computer already, and nobody knows if they are having a laugh at our efforts, while they are able to crack any key in a matter of hours / days.

In other words: Quantum cryptography, which by the very nature of it is secure from being tapped (read Stephen Neal's "Cryptonomicon" for the light version, or jump in and get some of the real books on cryptography for the heavier stuff, such as "The Code Book" or similar) is a valuabe resource for anyone who wants their data hidden.

H

Nothing quantum here !

[dragonfly28]

Too bad that this is no real quantum crypthography here.

They just use quantum cryptography to generate the keys. In my opinion there are better ways to get a key since the real encryption is still based on standard techniques like DES. Everybody knows that these can be bruteforced....

So the real Quantum Encryption still lies in the future

Running into the fencepost

[jeremycec]

Coming up with better and better encryption schemes is moot at best.

As Bruce Schneier says super-encryption technologies are like a single, indestructible fence post anchoring a much weaker defense curtain. The defense is indestructible only so long as the enemy runs directly into the fence post. However, it's much easier to circumvent the fence post and cut through the fence. Social engineering, poor policies, key theft and other routes make it much easier possible for hackers to get around conventional forms of strong encryption. And quantum computing is no different.

"Quantum cryptography has the potential for making the strongest link, in a series of very weak links, even stronger," Schneier says.