Slashdot Mirror

← Back to Stories (view on slashdot.org)

Commercial Quantum Cryptography System Hacked

Posted by Soulskill on from the superposition-of-safe-and-unsafe dept.

KentuckyFC writes "Any proof that quantum cryptography is perfect relies on idealized assumptions that don't always hold true in the real world. One such assumption is related to the types of errors that creep into quantum messages. Alice and Bob always keep a careful eye on the level of errors in their messages because they know that Eve will introduce errors if she intercepts and reads any of the quantum bits in a message. So a high error rate is a sign that the message is being overheard. But it is impossible to get rid of errors entirely, so Alice and Bob have to tolerate a small level of error. This level is well known. Various proofs show that if the quantum bit error rate is less than 20 percent, then the message is secure. However, these proofs assume that the errors are the result of noise from the environment. Now, physicists have come up with an attack based on the realization that Alice also introduces errors when she prepares the required quantum states to send to Bob. This extra noise allows Eve to intercept some of the quantum bits, read them and then send them on, in a way that raises the error rate to only 19.7 percent. In this kind of 'intercept and resend attack,' the error rate stays below the 20 percent threshold and Alice and Bob are none the wiser, happily exchanging keys while Eve listens in unchallenged. The physicists say they have successfully used their hack on a commercial quantum cryptography system from the Geneva-based startup ID Quantique."

2 of 117 comments (clear)

  1. any lock made by a man by circletimessquare · · Score: 4, Insightful

    can be broken by a man

    depending upon your current situation in life, this is either a wonderfully hopeful or horribly depressing realization

    --
    intellectual property law is philosophically incoherent. it is your moral duty to ignore it or sabotage it
  2. Re:So, quantum cryptography is fundamentally flawe by TheLink · · Score: 4, Insightful

    Thing is nowadays TB drives are quite cheap. Generate a huge OTP, spread it over three drives at A, spread it over another three drives and send all three to B via three different couriers/paths. Add ECC if you want.

    If they all made it safely without interception. You've got your secure channel. 1TB/128kbps = 2 years. 1TB/256kbps = 1 year.

    You could send more than one set of drives. When they all arrive, you tell the "B" let's start with drive set #5.

    --