SlideShare a Scribd company logo

Continuous variable quantum key distribution finite key analysis of composable security against coherent attacks

W
wtyru1989

This document summarizes a talk on the finite-key security analysis of continuous variable quantum key distribution against coherent attacks. The analysis computes the key length that is secure for achievable experimental parameters. It uses an uncertainty relation proof of security, which provides an advantage over previous proofs by being one-sided device independent and avoiding state tomography or additional measurements. The talk outlines the security definitions, experimental setup and protocol, finite-key rates, and security analysis method.

Technology
1 of 32
Downloaded 27 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
Institute for Theoretical Physics Quantum Information Group Continuous Variable Quantum Key Distribution: Finite-Key Analysis of Composable Security against Coherent Attacks Fabian Furrer Leibniz Universität Hannover PRL 109, 100502 Joint work with T. Franz, R. F. Werner (Leibniz Universität Hannover) M. Berta, A. Leverrier, V.B. Scholz, (ETH Zurich) M. Tomamichel (CQT Singapore) Qcrypt 2012, Singapore, 14.09.2012
Security of a QKD Protocol Security Analysis Constraints: -Key length  Information theoretic -Certification  Experimental of security ? Experimental Secure implementation Key Minimizing the assumption and maximizing the key length! FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 2
Security of a QKD Protocol Constraints:  Information theoretic  Asymptotic key rate vs. finite uses of QM channel (finite-key effects)  Notion of security: composable?  Limitation on attacks: collective (tensor product) or coherent (general)?  ...  Experimental / Implementation  Model of the measurement devices  Model of the quantum source  ... FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 3
Contribution: Security analysis for continuous variable (CV) protocol based on the distribution of two-mode squeezed states (EPR states) measured via homodyne detection. FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 4
Contribution: Security analysis for continuous variable (CV) protocol based on the distribution of two-mode squeezed states (EPR states) measured via homodyne detection. What’s New: Computation of key length secure against coherent attacks for achievable experimental parameters. Security proof based on Uncertainty relation (c.f. Tomamichel et al., Nat. Comm. 3, 634 ,2012) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 5
Discrete Variables vs. Continuous Variables Implementation -Encoding in finite-dimensional -Encoding in infinite-dimensional systems (e.g., polarization of photon) systems (bosonic modes) [1] -Gaussian States -Quadratures of EM-field: Homodyne or Heterodyne detection Advantage: - Compatible with standard telecom technology - high repetition rates for homodyne - efficient state preparation [1] Weedbrook et al., Reviews of Modern Physics 84, 621 (2012) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 6
Security Analysis for CV QKD Protocols Challenge: infinite dimensions Finite-Key Analysis: - Leverrier et al, Phys. Rev. A 81, 062343 (2010) - Berta, FF, Scholz, arXiv:1107.5460 (2011) Lifting proofs from collective to coherent (general) attacks:  Exponential de Finetti [Renner & Cirac, PRL 102, 110504 (2009)] Problem: Bad bounds, feasible only in the asymptotic limit Post-selection technique, Recent: Leverrier et al., arXiv:1208.4920 (Talk on Monday) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 7
Security Analysis for CV QKD Protocols Challenge: infinite dimensions Finite-Key Analysis: - Leverrier et al, Phys. Rev. A 81, 062343 (2010) - Berta, FF, Scholz, arXiv:1107.5460 (2011) Lifting proofs from collective to coherent (general) attacks:  Exponential de Finetti [Renner & Cirac, PRL 102, 110504 (2009)] Problem: Bad bounds, feasible only in the asymptotic limit Post-selection technique, Recent: Leverrier et al., arXiv:1208.4920 (Talk on Monday) Uncertainty Relation (direct) : This Talk! Advantage:  one-sided device independent  no tomography  no additional measurements FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 8
Outline 1. Security Definition and Finite-key length formula 2. Experimental Set Up and Protocol 3. Finite-Key Rates 4. (Security Analysis) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 9
General QKD Protocol Eve Bob Part 1: Alice 1) Distribution of quantum Distribution & Measurements state 2) Measurements 3) Parameter estimation 4) Output: Raw keys or abort FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 10
General QKD Protocol Eve Bob Part 1: Alice 1) Distribution of quantum Distribution & Measurements state 2) Measurements 3) Parameter estimation 4) Output: Raw keys classical post processing or abort Part 2: 1) Error correction 2) Privacy amplification Output: Key FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 11
Security Definitions (trace distance) A protocol which outputs the state is secure if it is:  correct :  secret: where is the uniform distribution over all keys. Composable Secure* * R. Renner, PhD Thesis (ETH 2005) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 12
Classical Post Processing 1) Error Correction: Alice and Bob broadcast bits to match their strings. 2) Privacy amplification via two-universal hash functions: ... apply random hash function from two-universal family onto bits Key length FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 13
Classical Post Processing 1) Error Correction: Alice and Bob broadcast bits to match their strings. 2) Privacy amplification via two-universal hash functions: ... apply random hash function from two-universal family onto bits Key length Secure key of length: Smooth min-entropy R. Renner, PhD Thesis (2005), M. Tomamichel et al. IEEE Trans. Inf. Theory, 57 (8) (2011), M. Berta, FF, V.B. Scholz, arXiv1107.5460 (infinite-dimensional side-information) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 14
Classical Post Processing 1) Error Correction: Alice and Bob broadcast bits to match their strings. 2) Privacy amplification via two-universal hash functions: ... apply random hash function from two-universal family onto bits Key length Secure key of length: Smooth min-entropy R. Renner, PhD Thesis (2005), M. Tomamichel et al. IEEE Trans. Inf. Th, 57 (8) (2011), M. Berta, FF, V.B. Scholz, arXiv1107.5460 (infinite-dimensional side-information) Use parameter estimation to bound min-entropy! FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 15
Experimental Set Up Source: two-mode squeezed state (EPR state) Measurements: homodyne detection, randomly either amplitude or phase (synchronized via LO) Entanglement based! Cerf, N. J., M. Levy, and G. van Assche, 2001, Phys. Rev. A 63, 052311 FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 16
Measurements Source: Correlated outcomes if both measure two-mode squeezed amplitude or phase: state Measurements: homodyne detection, randomly either amplitude or phase (synchronized via LO) Entanglement based! FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 17
Measurements Binning of the Outcome Range:  Spacing parameter:  Cutoff parameter: Outcome Range: FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 18
Protocol 1. Performing 2N measurements 2. Sifting: approx. N data points left 3. Parameter estimation: pick random sample of k data points and check correlation: Hamming distance: 4. Classical post-processing on remaining strings : FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 19
Protocol 1. Performing 2N measurements 2. Sifting: approx. N data points left 3. Parameter estimation: pick random sample of k data points and check correlation: Hamming distance: 4. Classical post-processing on remaining strings : A secret key of length can be extracted FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 20
Protocol 1. Performing 2N measurements 2. Sifting: approx. N data points left 3. Parameter estimation: pick random sample of k data points and check correlation: Hamming distance: 4. Classical post-processing on remaining strings : A secret key of length Statistical correction can be extracted Monotonic function Complementarity of amplitude and phase measurement: depending on spacing parameter FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 21
Finite-Key Length The key is ...  composable secure  provides security against coherent attacks Experimental constraints:  Alice’s measurements are modeled by projections onto spectrum of quadrature operator for amplitude and phase (parameter: )  subsequent measurements commute  trusted source in Alice’s lab of Gaussian states (can be relaxed)  No assumptions about Bob’s measurements: one-sided device independent FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 22
Finite-Key Rates Key Rate depending on symmetric losses for two-mode squeezed state  input squeezing/antisqueezing 11dB/16dB *  error correction efficiency of 95% * T. Eberle et al., arXiv:1110.3977  excess noise of 1% *  additional symmetric losses of ... 0% 4% 6% Plot: FF et al., PRL 109, 100502 (2012) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 23
Key Rate versus Losses Key rate versus losses for N=10^9 sifted signal: Asymptotic optimal rate with perfect error correction Coherent attacks Gaussian collective attacks symmetric losses Plot: FF et al., PRL 109, 100502 (2012) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 24
Security Analysis Based on Uncertainty Relation Extractable key length: Goal: bound for Key ingredient: Uncertainty relation with side-information* * Tomamichel & Renner, Phys. Rev. Lett. 106, 110506 (2011) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 25
Entropic Uncertainty Relation with Side Information : Amplitude Eve : Phase Alice Bob FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 26
Entropic Uncertainty Relation with Side Information : Amplitude Eve : Phase Alice Bob uncertainty Eve has about uncertainty of Bob about outcome of Alice outcome of Alice complementary of the M. Tomamichel , PhD Thesis, measurements M. Berta, FF, V.B. Scholz, arXiv1107.5460 (2011) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 27
Entropic Uncertainty Relation with Side Information : Amplitude Eve : Phase Alice Bob Data processing inequality M. Tomamichel et al., Phys. Rev. Lett. 106,110506 (2011), M. Tomamichel , PhD Thesis (2012); M. Berta, FF, V.B. Scholz, arXiv1107.5460 (2011) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 28
Entropic Uncertainty Relation with Side Information : Amplitude Eve : Phase Alice Bob Data processing inequality Correlation betw. Alice & Bob M. Tomamichel et al., Phys. Rev. Lett. 106,110506 (2011), M. Tomamichel , PhD Thesis (2012); M. Berta, FF, V.B. Scholz, arXiv1107.5460 (2011) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 29
Correlation between Alice & Bob Correlation between Alice and Bob can be bounded in terms of the Hamming distance of a random sample via Combining with Uncertainty Relation: FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 30
Conclusion Advantage:  one-sided device independent (e.g. local oscillator included)  direct approach (no additional measurements compared to post- selection approach)  no state tomography  robust under small deviations of experimental parameters Problems:  very sensitive to noise  asymptotically not optimal: Uncertainty relation not tight for the Gaussian states used in the protocol Implementation in Leibniz University in Hannover: Crypto on Campus: T. Eberle, V. Händchen, J. Duhme, T. Franz, R. F. Werner, and R. Schnabel FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 31
Thank you for your attention! FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 32

More Related Content

PDF
Experimental demonstration of continuous variable quantum key distribution ov...
wtyru1989
 
PDF
YSChen: Dissertation Defense
National Taiwan University (NTU), Taipei, Taiwan
 
PDF
1103.0305
nk179
 
PDF
Contribution of Non-Scrambled Chroma Information in Privacy-Protected Face Im...
Ghent University Global Campus
 
PDF
Master thesispresentation
Matthew Urffer
 
PDF
CUHK System for the Spoken Web Search task at Mediaeval 2012
MediaEval2012
 
PDF
IEEE ECE main projects list 2012 13
Vision Solutions
 
PDF
IRJET- A Reliable and Robust Video Watermarking Scheme Over Cloud
IRJET Journal
 
Experimental demonstration of continuous variable quantum key distribution ov...
wtyru1989
 
YSChen: Dissertation Defense
National Taiwan University (NTU), Taipei, Taiwan
 
1103.0305
nk179
 
Contribution of Non-Scrambled Chroma Information in Privacy-Protected Face Im...
Ghent University Global Campus
 
Master thesispresentation
Matthew Urffer
 
CUHK System for the Spoken Web Search task at Mediaeval 2012
MediaEval2012
 
IEEE ECE main projects list 2012 13
Vision Solutions
 
IRJET- A Reliable and Robust Video Watermarking Scheme Over Cloud
IRJET Journal
 

What's hot (7)

PDF
Scrambling For Video Surveillance
Kobi Magnezi
 
PDF
Non-Lethal Weapons Reference Book 2011
Sarp Online
 
PDF
Essentials of jitter part 3 webinar slides
teledynelecroy
 
PDF
Secure Scan Design Using Redundant Scan Register
IDES Editor
 
PDF
Design of Optimal Linear Phase FIR High Pass Filter using Improved Particle S...
IDES Editor
 
PDF
IDS Survey on Entropy
Raj Kamal
 
PDF
Stefano Giordano
GoWireless
 
Scrambling For Video Surveillance
Kobi Magnezi
 
Non-Lethal Weapons Reference Book 2011
Sarp Online
 
Essentials of jitter part 3 webinar slides
teledynelecroy
 
Secure Scan Design Using Redundant Scan Register
IDES Editor
 
Design of Optimal Linear Phase FIR High Pass Filter using Improved Particle S...
IDES Editor
 
IDS Survey on Entropy
Raj Kamal
 
Stefano Giordano
GoWireless
 
Ad

Similar to Continuous variable quantum key distribution finite key analysis of composable security against coherent attacks (20)

PDF
Continuous variables quantum cryptography
wtyru1989
 
PDF
Security of continuous variable quantum key distribution against general attacks
wtyru1989
 
PDF
Quantum key distribution with continuous variables at telecom wavelength
wtyru1989
 
PDF
Post processing for quantum key distribution
wtyru1989
 
PDF
Computer Science Final Project
Jordi Muntada Gómez
 
PDF
Quantum Cryptography and Possible Attacks
Arinto Murdopo
 
PPT
Quantum crypto
ganeshkarthick
 
PDF
COMPUTATIONAL PERFORMANCE OF QUANTUM PHASE ESTIMATION ALGORITHM
cscpconf
 
PDF
COMPUTATIONAL PERFORMANCE OF QUANTUM PHASE ESTIMATION ALGORITHM
csitconf
 
PPTX
Quantum Cryptography & Key Distribution.pptx
Daniel938043
 
PDF
The Security of Practical Quantum Key Distribution
XequeMateShannon
 
PPT
Introduction to quantum cryptography.ppt
NishmikaPothana
 
PPT
Matt Purkeypile's Doctoral Dissertation Defense Slides
mpurkeypile
 
PPT
Diqkd vidick
kore80
 
PPTX
Quantum Information Technology
Fenny Thakrar
 
PPTX
Quantum
saba majeed
 
PPTX
Quantam cryptogrphy ppt (1)
deepu427
 
PDF
Quantum Knowledge Proofs and Post Quantum Cryptography - A Primer
Gokul Alex
 
PPT
Introduction to quantum cryptography
Anand Kairamkonda
 
PPT
Janusz Kowalik: quantum cryptography
Information Security Awareness Group
 
Continuous variables quantum cryptography
wtyru1989
 
Security of continuous variable quantum key distribution against general attacks
wtyru1989
 
Quantum key distribution with continuous variables at telecom wavelength
wtyru1989
 
Post processing for quantum key distribution
wtyru1989
 
Computer Science Final Project
Jordi Muntada Gómez
 
Quantum Cryptography and Possible Attacks
Arinto Murdopo
 
Quantum crypto
ganeshkarthick
 
COMPUTATIONAL PERFORMANCE OF QUANTUM PHASE ESTIMATION ALGORITHM
cscpconf
 
COMPUTATIONAL PERFORMANCE OF QUANTUM PHASE ESTIMATION ALGORITHM
csitconf
 
Quantum Cryptography & Key Distribution.pptx
Daniel938043
 
The Security of Practical Quantum Key Distribution
XequeMateShannon
 
Introduction to quantum cryptography.ppt
NishmikaPothana
 
Matt Purkeypile's Doctoral Dissertation Defense Slides
mpurkeypile
 
Diqkd vidick
kore80
 
Quantum Information Technology
Fenny Thakrar
 
Quantum
saba majeed
 
Quantam cryptogrphy ppt (1)
deepu427
 
Quantum Knowledge Proofs and Post Quantum Cryptography - A Primer
Gokul Alex
 
Introduction to quantum cryptography
Anand Kairamkonda
 
Janusz Kowalik: quantum cryptography
Information Security Awareness Group
 
Ad

More from wtyru1989 (20)

PDF
Quantum optical measurement
wtyru1989
 
PPTX
Gaussian discord imperial
wtyru1989
 
PPT
Entropic characteristics of quantum channels and the additivity problem
wtyru1989
 
PPT
Manipulating continuous variable photonic entanglement
wtyru1989
 
PDF
The gaussian minimum entropy conjecture
wtyru1989
 
PDF
The security of quantum cryptography
wtyru1989
 
PDF
Entanglement of formation
wtyru1989
 
PDF
Bound entanglement is not rare
wtyru1989
 
PDF
Continuous variable quantum entanglement and its applications
wtyru1989
 
PDF
Relative entropy and_squahed_entanglement
wtyru1989
 
PDF
Lect12 photodiode detectors
wtyru1989
 
PDF
Towards a one shot entanglement theory
wtyru1989
 
PDF
Postselection technique for quantum channels and applications for qkd
wtyru1989
 
PDF
Encrypting with entanglement matthias christandl
wtyru1989
 
PDF
Qkd and de finetti theorem
wtyru1989
 
PDF
Dic rd theory_quantization_07
wtyru1989
 
PDF
Lattices, sphere packings, spherical codes
wtyru1989
 
PDF
Em method
wtyru1989
 
PDF
标量量化
wtyru1989
 
PPT
Fully understanding cmrr taiwan-2012
wtyru1989
 
Quantum optical measurement
wtyru1989
 
Gaussian discord imperial
wtyru1989
 
Entropic characteristics of quantum channels and the additivity problem
wtyru1989
 
Manipulating continuous variable photonic entanglement
wtyru1989
 
The gaussian minimum entropy conjecture
wtyru1989
 
The security of quantum cryptography
wtyru1989
 
Entanglement of formation
wtyru1989
 
Bound entanglement is not rare
wtyru1989
 
Continuous variable quantum entanglement and its applications
wtyru1989
 
Relative entropy and_squahed_entanglement
wtyru1989
 
Lect12 photodiode detectors
wtyru1989
 
Towards a one shot entanglement theory
wtyru1989
 
Postselection technique for quantum channels and applications for qkd
wtyru1989
 
Encrypting with entanglement matthias christandl
wtyru1989
 
Qkd and de finetti theorem
wtyru1989
 
Dic rd theory_quantization_07
wtyru1989
 
Lattices, sphere packings, spherical codes
wtyru1989
 
Em method
wtyru1989
 
标量量化
wtyru1989
 
Fully understanding cmrr taiwan-2012
wtyru1989
 

Recently uploaded (20)

PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PPTX
SOPHOS-XG Firewall Administrator PPT.pptx
AgnesMunisi
 
PDF
1 - Historical Antecedents, Social Consideration.pdf
tuazon2030627
 
PPTX
Chapter 5: Probability Theory and Statistics
RandyFin
 
PDF
August Patch Tuesday
Ivanti
 
PDF
Enhancing emotion recognition model for a student engagement use case through...
IAESIJAI
 
PDF
Web App vs Mobile App What Should You Build First.pdf
KodekX
 
PDF
ENT215_Completing-a-large-scale-migration-and-modernization-with-AWS.pdf
ssuser28425f
 
PDF
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
Hindi spoken digit analysis for native and non-native speakers
IAESIJAI
 
PDF
A comparative study of natural language inference in Swahili using monolingua...
IAESIJAI
 
PPTX
cloud_computing_Infrastucture_as_cloud_p
mainakbhattacharya20
 
PPTX
A Presentation on Artificial Intelligence
memembruh336
 
PDF
A comparative analysis of optical character recognition models for extracting...
IAESIJAI
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PDF
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
SOPHOS-XG Firewall Administrator PPT.pptx
AgnesMunisi
 
1 - Historical Antecedents, Social Consideration.pdf
tuazon2030627
 
Chapter 5: Probability Theory and Statistics
RandyFin
 
August Patch Tuesday
Ivanti
 
Enhancing emotion recognition model for a student engagement use case through...
IAESIJAI
 
Web App vs Mobile App What Should You Build First.pdf
KodekX
 
ENT215_Completing-a-large-scale-migration-and-modernization-with-AWS.pdf
ssuser28425f
 
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
Approach and Philosophy of On baking technology
30anthuong17
 
Hindi spoken digit analysis for native and non-native speakers
IAESIJAI
 
A comparative study of natural language inference in Swahili using monolingua...
IAESIJAI
 
cloud_computing_Infrastucture_as_cloud_p
mainakbhattacharya20
 
A Presentation on Artificial Intelligence
memembruh336
 
A comparative analysis of optical character recognition models for extracting...
IAESIJAI
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 

Continuous variable quantum key distribution finite key analysis of composable security against coherent attacks

  • 1. Institute for Theoretical Physics Quantum Information Group Continuous Variable Quantum Key Distribution: Finite-Key Analysis of Composable Security against Coherent Attacks Fabian Furrer Leibniz Universität Hannover PRL 109, 100502 Joint work with T. Franz, R. F. Werner (Leibniz Universität Hannover) M. Berta, A. Leverrier, V.B. Scholz, (ETH Zurich) M. Tomamichel (CQT Singapore) Qcrypt 2012, Singapore, 14.09.2012
  • 2. Security of a QKD Protocol Security Analysis Constraints: -Key length  Information theoretic -Certification  Experimental of security ? Experimental Secure implementation Key Minimizing the assumption and maximizing the key length! FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 2
  • 3. Security of a QKD Protocol Constraints:  Information theoretic  Asymptotic key rate vs. finite uses of QM channel (finite-key effects)  Notion of security: composable?  Limitation on attacks: collective (tensor product) or coherent (general)?  ...  Experimental / Implementation  Model of the measurement devices  Model of the quantum source  ... FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 3
  • 4. Contribution: Security analysis for continuous variable (CV) protocol based on the distribution of two-mode squeezed states (EPR states) measured via homodyne detection. FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 4
  • 5. Contribution: Security analysis for continuous variable (CV) protocol based on the distribution of two-mode squeezed states (EPR states) measured via homodyne detection. What’s New: Computation of key length secure against coherent attacks for achievable experimental parameters. Security proof based on Uncertainty relation (c.f. Tomamichel et al., Nat. Comm. 3, 634 ,2012) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 5
  • 6. Discrete Variables vs. Continuous Variables Implementation -Encoding in finite-dimensional -Encoding in infinite-dimensional systems (e.g., polarization of photon) systems (bosonic modes) [1] -Gaussian States -Quadratures of EM-field: Homodyne or Heterodyne detection Advantage: - Compatible with standard telecom technology - high repetition rates for homodyne - efficient state preparation [1] Weedbrook et al., Reviews of Modern Physics 84, 621 (2012) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 6
  • 7. Security Analysis for CV QKD Protocols Challenge: infinite dimensions Finite-Key Analysis: - Leverrier et al, Phys. Rev. A 81, 062343 (2010) - Berta, FF, Scholz, arXiv:1107.5460 (2011) Lifting proofs from collective to coherent (general) attacks:  Exponential de Finetti [Renner & Cirac, PRL 102, 110504 (2009)] Problem: Bad bounds, feasible only in the asymptotic limit Post-selection technique, Recent: Leverrier et al., arXiv:1208.4920 (Talk on Monday) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 7
  • 8. Security Analysis for CV QKD Protocols Challenge: infinite dimensions Finite-Key Analysis: - Leverrier et al, Phys. Rev. A 81, 062343 (2010) - Berta, FF, Scholz, arXiv:1107.5460 (2011) Lifting proofs from collective to coherent (general) attacks:  Exponential de Finetti [Renner & Cirac, PRL 102, 110504 (2009)] Problem: Bad bounds, feasible only in the asymptotic limit Post-selection technique, Recent: Leverrier et al., arXiv:1208.4920 (Talk on Monday) Uncertainty Relation (direct) : This Talk! Advantage:  one-sided device independent  no tomography  no additional measurements FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 8
  • 9. Outline 1. Security Definition and Finite-key length formula 2. Experimental Set Up and Protocol 3. Finite-Key Rates 4. (Security Analysis) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 9
  • 10. General QKD Protocol Eve Bob Part 1: Alice 1) Distribution of quantum Distribution & Measurements state 2) Measurements 3) Parameter estimation 4) Output: Raw keys or abort FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 10
  • 11. General QKD Protocol Eve Bob Part 1: Alice 1) Distribution of quantum Distribution & Measurements state 2) Measurements 3) Parameter estimation 4) Output: Raw keys classical post processing or abort Part 2: 1) Error correction 2) Privacy amplification Output: Key FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 11
  • 12. Security Definitions (trace distance) A protocol which outputs the state is secure if it is:  correct :  secret: where is the uniform distribution over all keys. Composable Secure* * R. Renner, PhD Thesis (ETH 2005) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 12
  • 13. Classical Post Processing 1) Error Correction: Alice and Bob broadcast bits to match their strings. 2) Privacy amplification via two-universal hash functions: ... apply random hash function from two-universal family onto bits Key length FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 13
  • 14. Classical Post Processing 1) Error Correction: Alice and Bob broadcast bits to match their strings. 2) Privacy amplification via two-universal hash functions: ... apply random hash function from two-universal family onto bits Key length Secure key of length: Smooth min-entropy R. Renner, PhD Thesis (2005), M. Tomamichel et al. IEEE Trans. Inf. Theory, 57 (8) (2011), M. Berta, FF, V.B. Scholz, arXiv1107.5460 (infinite-dimensional side-information) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 14
  • 15. Classical Post Processing 1) Error Correction: Alice and Bob broadcast bits to match their strings. 2) Privacy amplification via two-universal hash functions: ... apply random hash function from two-universal family onto bits Key length Secure key of length: Smooth min-entropy R. Renner, PhD Thesis (2005), M. Tomamichel et al. IEEE Trans. Inf. Th, 57 (8) (2011), M. Berta, FF, V.B. Scholz, arXiv1107.5460 (infinite-dimensional side-information) Use parameter estimation to bound min-entropy! FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 15
  • 16. Experimental Set Up Source: two-mode squeezed state (EPR state) Measurements: homodyne detection, randomly either amplitude or phase (synchronized via LO) Entanglement based! Cerf, N. J., M. Levy, and G. van Assche, 2001, Phys. Rev. A 63, 052311 FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 16
  • 17. Measurements Source: Correlated outcomes if both measure two-mode squeezed amplitude or phase: state Measurements: homodyne detection, randomly either amplitude or phase (synchronized via LO) Entanglement based! FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 17
  • 18. Measurements Binning of the Outcome Range:  Spacing parameter:  Cutoff parameter: Outcome Range: FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 18
  • 19. Protocol 1. Performing 2N measurements 2. Sifting: approx. N data points left 3. Parameter estimation: pick random sample of k data points and check correlation: Hamming distance: 4. Classical post-processing on remaining strings : FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 19
  • 20. Protocol 1. Performing 2N measurements 2. Sifting: approx. N data points left 3. Parameter estimation: pick random sample of k data points and check correlation: Hamming distance: 4. Classical post-processing on remaining strings : A secret key of length can be extracted FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 20
  • 21. Protocol 1. Performing 2N measurements 2. Sifting: approx. N data points left 3. Parameter estimation: pick random sample of k data points and check correlation: Hamming distance: 4. Classical post-processing on remaining strings : A secret key of length Statistical correction can be extracted Monotonic function Complementarity of amplitude and phase measurement: depending on spacing parameter FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 21
  • 22. Finite-Key Length The key is ...  composable secure  provides security against coherent attacks Experimental constraints:  Alice’s measurements are modeled by projections onto spectrum of quadrature operator for amplitude and phase (parameter: )  subsequent measurements commute  trusted source in Alice’s lab of Gaussian states (can be relaxed)  No assumptions about Bob’s measurements: one-sided device independent FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 22
  • 23. Finite-Key Rates Key Rate depending on symmetric losses for two-mode squeezed state  input squeezing/antisqueezing 11dB/16dB *  error correction efficiency of 95% * T. Eberle et al., arXiv:1110.3977  excess noise of 1% *  additional symmetric losses of ... 0% 4% 6% Plot: FF et al., PRL 109, 100502 (2012) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 23
  • 24. Key Rate versus Losses Key rate versus losses for N=10^9 sifted signal: Asymptotic optimal rate with perfect error correction Coherent attacks Gaussian collective attacks symmetric losses Plot: FF et al., PRL 109, 100502 (2012) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 24
  • 25. Security Analysis Based on Uncertainty Relation Extractable key length: Goal: bound for Key ingredient: Uncertainty relation with side-information* * Tomamichel & Renner, Phys. Rev. Lett. 106, 110506 (2011) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 25
  • 26. Entropic Uncertainty Relation with Side Information : Amplitude Eve : Phase Alice Bob FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 26
  • 27. Entropic Uncertainty Relation with Side Information : Amplitude Eve : Phase Alice Bob uncertainty Eve has about uncertainty of Bob about outcome of Alice outcome of Alice complementary of the M. Tomamichel , PhD Thesis, measurements M. Berta, FF, V.B. Scholz, arXiv1107.5460 (2011) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 27
  • 28. Entropic Uncertainty Relation with Side Information : Amplitude Eve : Phase Alice Bob Data processing inequality M. Tomamichel et al., Phys. Rev. Lett. 106,110506 (2011), M. Tomamichel , PhD Thesis (2012); M. Berta, FF, V.B. Scholz, arXiv1107.5460 (2011) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 28
  • 29. Entropic Uncertainty Relation with Side Information : Amplitude Eve : Phase Alice Bob Data processing inequality Correlation betw. Alice & Bob M. Tomamichel et al., Phys. Rev. Lett. 106,110506 (2011), M. Tomamichel , PhD Thesis (2012); M. Berta, FF, V.B. Scholz, arXiv1107.5460 (2011) FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 29
  • 30. Correlation between Alice & Bob Correlation between Alice and Bob can be bounded in terms of the Hamming distance of a random sample via Combining with Uncertainty Relation: FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 30
  • 31. Conclusion Advantage:  one-sided device independent (e.g. local oscillator included)  direct approach (no additional measurements compared to post- selection approach)  no state tomography  robust under small deviations of experimental parameters Problems:  very sensitive to noise  asymptotically not optimal: Uncertainty relation not tight for the Gaussian states used in the protocol Implementation in Leibniz University in Hannover: Crypto on Campus: T. Eberle, V. Händchen, J. Duhme, T. Franz, R. F. Werner, and R. Schnabel FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 31
  • 32. Thank you for your attention! FF, Continuous Variable QKD: Finite-Key Analysis against Coherent Attacks, Singapore, 14.09.2012 Seite 32