"Spooky" Quantum Data Encryption

Hardy writes "Imagine an encrypted communications channel that immediately notifies the parties if they are being bugged. The American Institute of Physics site is running an article about exploiting what Einstein described as the "spooky" action at a distance properties of quantum entangled particles. The entanglement process can generate a completely random sequence of 0s and 1s distributed exclusively to two users at remote locations. Any eavesdropper's attempt to intercept this sequence will alter the message in a detectable way and enabling the users to discard the appropriate parts of the data. This random sequence of digits is then used to scramble the message. This approach solves the problem of distributing a shared key to both parties without it falling into the wrong hands. This diagram might help. "

Quantum Socks

Hopefully, someday the science wizards at DuPont [dupont.com] will make a material using this technology. If you're like me, and have bad laundry karma, you could use Quantum Socks.

"Spooky action at a distance" could be utilized to let you know if a lost sock is worth searching for. The unmatched sock would indicate to you if the other sock has been "intercepted." In theory, someone could take a sock and then make an effort to return it - but lets face it, mankind is not that morally advanced! On the other hand, in the rare case you aquire a sock, it would indicate to you that it was not really your sock.

Obviously, this technology could be applied to a wide range of apparel.

This will advance QM significantly...

The spooks will now devote substantial research to finding a way to observe particles *without* interacting with them.

News?

This was news at least half a year ago. IIRC a couple of Brits already implemented a "quantum-secure" communication channel, if only a mile or so in length. There are some problems with it being used for long distances, though.

In any case, this just gives you eavesdropping-proof communication channels. There are plenty of crypto protocols which work fine when a third party is listening. And, of course, it does nothing about the man-in-the-middle attack.

So: old news, tasty geeky titbit, little practical applications.

Kaa

Re:News?

I do understand, and the link is relevant. Let me point it out:

The probability that two photon pairs are emitted from our down conversion source within the coherence time of the photons is negligibly small. Taken a gross production rate of around 8*10^5 1/s and a coherence time of 1*10^-12 s, the probability for the emission of two pairs within this coherence time is 10^-12*8*10^5 s*1/s = 8*10^-7. This probability is very low and justifies the neglecting of such events.

This applies just as well for the MITM attack as the beam splitter attack. Mallory (or Eve, as I think the ususal example is named), has to communicate with both parties at the same time in order to correctly mimic Bob to Alice, and Alice to Bob. Eve has to take all incoming data, read it, and re-send it (possibly altered) to the intended recipient.

Remember, Eve can't read the data without collapsing the probability states of the entangled photons, so she has to re-generate the data. She can't do this fast enough to accurately mimic the data she originally received.

Hell yeah!

Imagine someone works out how to set up a reliable communications channel using Quantum Entanglement. Something that could be set up so that you get 2 cards which interact with each other over any distance. A quantum modem if you will. All of a sudden you have an untappable, wireless, instantaneous (Presumably high bandwidth) connection to anywhere in the universe where you can get the other card.

Now make a list of who would be hurt by this. The DOJ would scream bloody murder. All the telcos and ISPs would shortly follow. The various TV signal delivery people would lose their respective monopolies -- even if cable companies remained, you could choose any company on the planet. They don't want that. The MPAA and RIAA would file lawsuits because it'd make it much easier to pirate their IP.

Chances are if you tried to file a patent on your spiffy new technology, it'd get squelched by the government in the name of national security and filed away in that warehouse with the burn-for-5-years lightbulbs and the 100 mile per gallon carbeurator. The NSA would probably kidnap you and relocate you to new digs at the bottom of the ocean after providing stylish new cement shoes.

Re:News?

For those too lazy to search for it. Slashdot article on Quantum Encryption [slashdot.org]

Re:So why...

There is error within the procedure. This is inherent within quantum transmissions like this. Take a look at http://www.quantum.univie.ac.at/research/crypto/ and click on the links for the protocols. There is about a 4 percent error in the transmission. Not too bad. All you would have to do is integrate error correction within the message and you will be set.

Re:You're missing the point

The whole point of quantum encryption is that you can transmit the *KEY* or signature just as you would transmit an encrypted message. Normally this can't be done because someone could intercept the key and be able to read all your encrypted messages. This way, if a new key is intercepted, just send a different one until you can be sure that it wasn't intercepted. This looks like it could be the encryption scheme of the furture.

Cool, but useless to most people

This is all very interesting, but it's practical uses are limited by a few factors.

First, the quantum key must be physically transmitted to the receiver. This means that the medium for transmission (in most demonstrations, fiber optics) must be in place between the communicating parties and both parties must have the equipment to detect the value of the key. This equipment must be capable of detecting the polarization of single photons. Not exactly the type of stuff people have just lying around.

Second, there can be no amplification of the signal transmitting the key. Amplification of the signal is equivalent to someone eavesdropping on the key. The usefulness of the key would be destroyed. So forget about using this over normal phone lines or the Internet.

Third, the longer the transmission distance the greater the likeliness of errors in the key. Quantum encryption keys have been successfully transmitted approximately 20 kilometer through fiber optics and 500 meters through the atmosphere, but with about a 2% to 3% error rate. This will probably be acceptable for text messages, but may not be for data streams unless multiple redundent copies of the data or sent, or other error correction techniques are used (adding length to the data transmission). This will work well going from say the White House to the Pentagon, but unless all your secret friends live within 20 kilometers...

Fourth, if transmission speed is a factor for you, quantum encryption poses several problems. Only about 25% of the transmitted quantum key bits will be successfully detected (due to the 4 possible quantum states the photons can be in). This means to have a successful one-time-pad you must generate a key 4 times longer than the message you want to encrypt. Then the receiver has to confirm a sample of the key with the sender to ensure that the key has not been intercepted. Then you can transmit your message with about a 2% error rate.

So this is cool technology, but will really only be useful for military purposes or extremely sensitive corporate secrets.

Re:I seem to remember...

This is part of the premise. I haven't read the article yet, but I did a term paper on the spooky action (aka EPR paradox) last term. That's half of the picture.

The other half is that the two "entangled" particles have a state which allows someone who reads one particle's state to know EXACTLY what state the other particle is in.

You're familiar with the pop contests that put pictures under the cap right? Imagine a contest with two pictures that form a winning pair. Now, assume the you have a large collection of these pairs. You can split the pairs in order, sending one picture to "Alice", and the second to "Bob". When Alice looks under her liner, she knows exactly which picture Bob has.

This system allows you to generate your encrpytion and decryption keys on-the-fly, while entanglement itself includes conclusive proof that someone "checked under the cap" while the picture was en route.

This seems like a far more likely (and practical) use of the entanglement property then IBM's teleportation from a few years ago. (That was for only a small number of particles at a given time. It was really more of a replication that destroyed the original.)

Really used for key exchange

I was at a presentation about this kind of technology several years ago (someone from British Telecom came to give a talk to a bunch of us from University). The basic idea was that you could emit light a photon at a time, and pick this up later on.

If you had a snoop (Eve), the data would be corrupted due to the fact that only one photon existed per data element - later, you could check this and discard any bad data.

You still have to do the actual communication using your favourite strong encryption system. However, this system gets around the problems associated with key distribution over a distance.

You can't just change the laws of physics!

By "impossible" I mean that within the framework of quantum electrodynamics it can *never* happen. Just like within the framework of arithematic you can never add one and one and get three. That's just how it works.

So you might say: "well, the laws of physics are changing so rapidly these days that this will soon be a possibility." But revolutions in physics are rarely, if ever, of the sort where all of the old theory is thrown out and a completely new theory is developed. Instead, discrepencies are discovered in some corner of a theory and new a theory is discovered which is a superset of both the old theory and the new data.

Also, "spooky action at a distance" in the form of quantum entanglement was never "impossible," it was just philosophically objectionable to some people, including Einstein. If you mean that "information can never travel faster than the speed of light in vacuum" when you say "faster than light (FTL)" travel, then you are incorrect if Maxwell's equations are to hold. All know examples of FTL (which are trivial and miss the point) violate some aspect of my previous statement in quotations. As for heavier-than-air flight, no rational scientist in any age who has observed a bird would tell you that it's impossible.

Quantum key theory

It has probably been said a lot before on /. but this is how (I understand that) Quantum Encryption works:

First of all it doesn't send encrypted data. It's just used to send random bits from Alice to Bob. Alice sends for every bit that's 1 a vertical polorised foton and a foton that's turned clockwise 45 for every bit that's 0.

Bob chooses one of two filters for every bit he receives. At random he uses a filter that can either receive a 1 (a filter that's turned counter-clockwise 45) or a filter that can receive a 0 (a filter that's horizontally polorised).

Bob will not receive a foton if he uses the wrong filter, which he will do aproximately half the time. This is because the polarisation direction of the bit and the filter would differ 90.

The interesting thing is that if Bob uses the correct filter, he has only 50 chance that he'll see the foton (can you say 'Quantum effects').

So far Bob knows that:
- he did not receive the bit (because he used the wrong filter or because he had 'bad luck')
- the bit is 1 (by using the correct filter)
- the bit is 0 (by using the correct filter)

Bob should, if knows the value of enough bits (which should be the length of the file to be transimitted), send back the numbers of the bits he received over an unsecure channel.

Alice will then know what Bob is using as a key and she can encrypt the file using XOR. Alice then sends the file over an unsecure channel and Bob can decrypt it.

But what if someone is listening? Let's say that Claude is receiving the bits that Alice send. But Bob will know that Claude is listening because he doesn't receive any bits. The solution would seem that Claude resends the bits to Bob. But there is a problem for Claude here, (s)he did only receive 1/4 of the bits correctly. 37.5% (approximately) will thus be incorrect. In stead of receiving 1/4 of the bits correctly, Bob will only receive 36.5% of 1/4 = 16% of the bits correctly.

But how could Bob and Alice know that not all the bits were received correctly? This is currently solved by sending part of the bits over a quality line (on which Claude could be listening though).

Another problem, letting Bob know that a polorized foton has been send could be solved by sending a pulse of non-polarized light an instance before the polorized foton.

Current results are 48km through optic fiber and 50 meter through the air (3km would do for satelites).