Quantum man-in-the-middle attack on the calibration process of quantum key distribution

Quantum key distribution (QKD) protocol has been proved to provide unconditionally secure key between two remote legitimate users in theory. Key distribution signals are transmitted in a quantum channel which is established by the calibration process to meet the requirement of high count rate and low error rate. All QKD security proofs implicitly assume that the quantum channel has been established securely. However, the eavesdropper may attack the calibration process to break the security assumption of QKD and provide precondition to steal information about the final key successfully. In this paper, we reveal the security risk of the calibration process of a passive-basis-choice BB84 QKD system by launching a quantum man-in-the-middle attack which intercepts all calibration signals and resends faked ones. Large temporal bit-dependent or basis-dependent detector efficiency mismatch can be induced. Then we propose a basis-dependent detector efficiency mismatch (BEM) based faked states attack on a single photon BB84 QKD to stress the threat of BEM. Moreover, the security of single photon QKD systems with BEM is studied simply and intuitively. Two effective countermeasures are suggested to remove the general security risk of the calibration process.

• Publication year

  2018

• Venue

  Scientific Reports

• Publication date

  2018-03-09

• Fields of study

  Medicine, Physics, Computer Science

• Identifiers
  DOI 10.1038/s41598-018-22700-3arXiv 1803.04407PMID 29523828PMCID 5845025
• External record

  Open on Semantic Scholar

• Source metadata

  Semantic Scholar, PubMed

• No claims are published for this paper.

• No concepts are published for this paper.

• Quantum Cryptography

  2019cited by this paper
• Security proof of quantum key distribution with detection-efficiency mismatch

  2017cited by this paper
• Randomness determines practical security of BB84 quantum key distribution

  2015cited by this paper
• Practical Attacks on Decoy State Quantum Key Distribution Systems with Detector Efficiency Mismatch

  2015cited by this paper
• Trojan-horse attacks threaten the security of practical quantum cryptography

  2014cited by this paper
• Hacking on decoy-state quantum key distribution system with partial phase randomization

  2014cited by this paper
• Effect of imperfect Faraday mirrors on the security of a Faraday–Michelson quantum cryptography system

  2013cited by this paper
• Source attack of decoy-state quantum key distribution using phase information

  2013cited by this paper
• Partially random phase attack to the practical two-way quantum-key-distribution system

  2012cited by this paper
• Long-term performance of the SwissQuantum quantum key distribution network in a field environment

  2011cited by this paper
• Proof-of-principle experiment of a modified photon-number-splitting attack against quantum key distribution

  2011cited by this paper
• Attacking a practical quantum-key-distribution system with wavelength-dependent beam-splitter and multiwavelength sources

  2011cited by this paper
• Controlling a superconducting nanowire single-photon detector using tailored bright illumination

  2011cited by this paper
• Device calibration impacts security of quantum key distribution.

  2011influential reference
• Quantum eavesdropping without interception: an attack exploiting the dead time of single-photon detectors

  2011cited by this paper
• Passive Faraday-mirror attack in a practical two-way quantum-key-distribution system

  2011cited by this paper
• Measurement-device-independent quantum key distribution.

  2011cited by this paper
• Experimental demonstration of phase-remapping attack in a practical quantum key distribution system

  2010cited by this paper
• Thermal blinding of gated detectors in quantum cryptography.

  2010cited by this paper
• Continuous operation of high bit rate quantum key distribution

  2010cited by this paper
• After-gate attack on a quantum cryptosystem

  2010cited by this paper
• Hacking commercial quantum cryptography systems by tailored bright illumination

  2010cited by this paper
• DECOY STATE QUANTUM KEY DISTRIBUTION

  2010cited by this paper
• Focus on Quantum Cryptography: Theory and Practice

  2009cited by this paper
• Simple security proof of quantum key distribution based on complementarity

  2009cited by this paper
• Security of quantum key distribution with arbitrary individual imperfections

  2009cited by this paper
• Controlling an actively-quenched single photon detector with bright light.

  2008cited by this paper
• Security of quantum key distribution with bit and basis dependent detector flaws

  2008cited by this paper
• The security of practical quantum key distribution

  2008cited by this paper
• [The theory and the practice...].

  2007cited by this paper
• Quantum hacking: Experimental demonstration of time-shift attack against practical quantum-key-distribution systems

  2007influential reference
• Controlling passively quenched single photon detectors by bright light

  2007cited by this paper
• Breaking a quantum key distribution system through a timing side channel.

  2007cited by this paper
• Faked states attack using detector efficiency mismatch on SARG04, phase-time, DPSK, and Ekert protocols

  2007cited by this paper
• Unconditional security of quantum key distribution and the uncertainty principle

  2006cited by this paper
• Phase-Remapping Attack in Practical Quantum Key Distribution Systems

  2006cited by this paper
• Trojan-horse attacks on quantum-key-distribution systems

  2005cited by this paper
• Effects of detector efficiency mismatch on security of quantum cryptosystems

  2005cited by this paper
• Faked states attack on quantum cryptosystems

  2005cited by this paper
• Time-shift attack in practical quantum cryptosystems

  2005cited by this paper
• Beating the photon-number-splitting attack in practical quantum cryptography.

  2004cited by this paper
• Decoy state quantum key distribution.

  2004cited by this paper
• Quantum key distribution with high loss: toward global secure communication.

  2002cited by this paper
• Security of quantum key distribution with imperfect devices

  2002influential reference
• Simple proof of security of the BB84 quantum key distribution protocol

  2000cited by this paper
• Quantum cryptography with coherent states

  1995cited by this paper
• Secret key agreement by public discussion from common information

  1993cited by this paper
• Broadcast channels with confidential messages

  1978cited by this paper

• DRL-assisted quantum attack mitigation in resource allocation of CV-QKD over optical networks

  2025cites this paper
• Twin-Field Quantum Key Distribution: Protocols, Security, and Open Problems

  2025cites this paper
• Enhancing Security Using Quantum Blockchain in Consumer IoT Networks

  2025cites this paper
• Quantum-Resistant Networks using Post-Quantum Cryptography

  2025cites this paper
• Dynamic Switched Quantum Key Distribution Network with PUF-based authentication

  2025cites this paper
• System design and realisation towards optimising secure key bits in free space QKD

  2025cites this paper
• Guarding security of quantum key distribution using blind calibration.

  2025cites this paper
• Pulsed laser attack at 1061 nm potentially compromises quantum key distribution

  2025cites this paper
• Hybrid Authentication Protocols for Advanced Quantum Networks

  2025cites this paper
• A survey on quantum-safe blockchain security infrastructure

  2025cites this paper
• Scalable Quantum Key Distribution via Software-Defined Network over USNET

  2025cites this paper
• Automatically identifying imperfections and attacks in practical quantum key distribution systems via machine learning

  2024cites this paper
• Quantum Error Correction Based Entanglement Routing in Socially-Aware Quantum Networks

  2024cites this paper
• Towards Robust Quantum Communication: A Taxonomy of Vulnerabilities and Attacks over a decade in Quantum Key Distribution

  2024cites this paper
• Software defined network implementation of multi-node adaptive novel quantum key distribution protocol

  2024cites this paper
• Toward a Quantum Information System Cybersecurity Taxonomy and Testbed: Exploiting a Unique Opportunity for Early Impact

  2024cites this paper
• Socially-Aware Opportunistic Routing with Path Segment Selection in Quantum Networks

  2023cites this paper
• Let's do it right the first time: Survey on security concerns in the way to quantum software engineering

  2023cites this paper
• Mitigating Man-In-The-Middle Attack Using Quantum Key Distribution

  2023cites this paper
• Lightweight blockchain-based technique for detection and prevention man in the middle attacks in mobile edge computing environment

  2023influential citation
• Quantum Communication Countermeasures

  2023cites this paper
• Socially-Aware Concurrent Entanglement Routing in Satellite-Assisted Multi-Domain Quantum Networks

  2023cites this paper
• Preparing a commercial quantum key distribution system for certification against implementation loopholes

  2023cites this paper
• Enhancing Protocol Privacy With Blind Calibration of Quantum Devices

  2022cites this paper
• Quantum Man-in-the-middle Attacks: a Game-theoretic Approach with Applications to Radars

  2022cites this paper
• Blind Calibration of Quantum Devices over Noisy Quantum Channels

  2022cites this paper
• Model checking QCTL plus on quantum Markov chains

  2022cites this paper
• Security Analysis of Continuous-Variable Measurement-Device-Independent Quantum Key Distribution Systems in Complex Communication Environments

  2022cites this paper
• Quantum Warfare: Definitions, Overview and Challenges

  2021cites this paper
• Faking photon number on a transition-edge sensor

  2021cites this paper
• Quantum technology for military applications

  2021cites this paper
• Data Siphoning Through Advanced Persistent Transmission Attacks At The Physical Layer

  2021cites this paper
• State-of-the-Art Survey of Quantum Cryptography

  2021cites this paper
• Nonclassical Attack on a Quantum Key Distribution System

  2021cites this paper
• Improving the security of multi-party quantum key agreement with five-qubit Brown states

  2020cites this paper
• Advances in quantum cryptography

  2019cites this paper
• Implementation of High Dimensional-QKD using BB84 Protocol in the Security of Aerospace Industry

  2019cites this paper
• A Blockchain-Based Mobile IOT Network Interconnection Security Trusted Protocol Model

  2019cites this paper
• Quantum Data Encryption as a Service on Demand: Eindhoven QKD Network Testbed

  2019cites this paper
• MAN-IN-THE-MIDDLE-ATTACK: UNDERSTANDING IN SIMPLE WORDS

  2019influential citation
• Quantum Cryptography over Multi-Sites Networks

  2018cites this paper
• Exploiting wavelength-dependent beam splitter to attack the calibration of practical quantum key distribution systems

  2018cites this paper
• Practical decoy state quantum key distribution with detector efficiency mismatch

  2018cites this paper