Quantum key distribution: Bridging theoretical security proofs, practical attacks, and error correction for quantum-augmented networks

Quantum key distribution technology refers to a method to share keys between communication parties by transmitting quantum states in public channels. Although unconditional security is the main advantage of QKD, its application prospect has been controversial in practical implementation due to the potential security risks caused by device imperfections. Fortunately, the measurement device independent quantum key distribution protocol removes the vulnerability of all measurement devices and greatly improves the practical security of the quantum key distribution system. However, the security key rate of this protocol is still lower than that of other quantum key distribution protocols. At present, using high-dimensional coding to improve the performance of the quantum key distribution protocol has been proved in theory and experiment, and recently, it has been proposed to use high-dimensional coding to improve the performance of measurement device independent quantum key distribution protocol, but because these protocols have higher requirements for the laboratory equipment performance, that the high-dimensional encoding is applied to the aforementioned protocol still has many difficulties in practical application. In this paper, we propose a hybrid coding based on the polarization and two-degree phase of freedom measurement device independent quantum key distribution protocol. In the first place in an ideal case, we introduce in detail the protocol decoding rules, then introduce 4intensity decoy-state method to solve the problem of actual light source multiphoton, in addition we also consider the statistical fluctuation effect under the condition of limited code length, channel loss, actual dark count of single photon detector and detection efficiency problem. Finally, the optimal security code rate and its corresponding optimal parameters are obtained by full parameter optimization method, And the numerical simulation results show that the security key rate of this protocol is increased by 50% by considering the practical implementation. We point out that compared with other measurement device independent quantum key distribution protocol, the proposed agreement requires local users only to have a phase encoding device and a polarization coding device, and 4 single photon detectors for detecting side. The proposed device can use the existing experimental condition, beyond that, compared with the time encoding based high dimensional measurement device independent quantum key distribution protocol, the proposed protocol possesses the advantage that the rate of system security key can be increased without increasing the repetition frequency of users. It is proved that this protocol has great application value in the future field of quantum communication, especially, in the field of quantum network communication.

Although some ideal quantum key distribution protocols have been proved to be secure, there have been some demonstrations that practical quantum key distribution implementations were hacked due to some real-life imperfections. Among these attacks, detector side channel attacks may be the most serious. Recently, a measurement device independent quantum key distribution protocol [Phys. Rev. Lett. 108 (2012) 130503] was proposed and all detector side channel attacks are removed in this scheme. Here a new security proof based on quantum information theory is given. The eavesdropper's information of the sifted key bits is bounded. Then with this bound, the final secure key bit rate can be obtained.

Authentication plays a critical role in the security of quantum key distribution (QKD) protocols. We propose using Polynomial Hash and its variants for authentication of variable length messages in QKD protocols. Since universal hashing is used not only for authentication in QKD but also in other steps in QKD like error correction and privacy amplification, and also in several other areas of quantum cryptography, Polynomial Hash and its variants as the most efficient universal hash function families can be used in these important steps and areas, as well. We introduce and analyze several efficient variants of Polynomial Hash and, using deep results from number theory, prove that each variant gives an ε-almost-Δ-universal family of hash functions. We also give a general method for transforming any such family to an ε-almost-strongly universal family of hash functions. The latter families can then, among other applications, be used in the Wegman–Carter MAC construction which has been shown to provide a universally composable authentication method in QKD protocols. As Polynomial Hash has found many applications, our constructions and results are potentially of interest in various areas.

There is a large gap between theory and practice in quantum key distribution (QKD) because real devices do not satisfy the assumptions required by the security proofs. Here, we close this gap by introducing a simple and practical measurement-device-independent-QKD type of protocol, based on the transmission of coherent light, for which we prove its security against any possible imperfection and/or side channel from the quantum communication part of the QKD devices. Our approach only requires to experimentally characterize an upper bound of one single parameter for each of the pulses sent, which describes the quality of the source. Moreover, unlike device-independent (DI) QKD, it can accommodate information leakage from the users' laboratories, which is essential to guarantee the security of QKD implementations. In this sense, its security goes beyond that provided by DI QKD, yet it delivers a secret key rate that is various orders of magnitude greater than that of DI QKD.

We show how weak nonlinearities can be used in a device-independent quantum key distribution (QKD) protocol using generalized two-mode Schr\odinger cat states. The QKD protocol is therefore shown to be secure against collective attacks and for some coherent attacks. We derive analytical formulas for the optimal values of the Bell parameter, the quantum bit error rate, and the device-independent secret key rate in the noiseless lossy bosonic channel. Additionally, we give the filters and measurements which achieve these optimal values. We find that, over any distance in this channel, the quantum bit error rate is identically zero, in principle, and the states in the protocol are always able to violate a Bell inequality. The protocol is found to be superior in some regimes to a device-independent QKD protocol based on polarization entangled states in a depolarizing channel. Finally, we propose an implementation for the optimal filters and measurements.

A unique quantum key distribution (QKD) protocol, called DPS (differential-phase-shift) QKD, has been proposed and developed at NTT and Osaka University, which utilizes a coherent pulse train instead of individual photons as in traditional QKD protocols such as BB84. Its security is based on the fact that every phase difference of a highly-attenuated coherent pulse train cannot be fully measured. This protocol has features of simple setup, potential for a high key creation rate, and robustness against photon-number-splitti ng attack. This paper presents recent research activities on DPS-QKD. Keywords: Quantum key distribution, coherent pulses, eavesdropping. 1. INTRODUCTION Quantum key distribution (QKD) is being studied, aiming at unconditionally secured communications, where a secret key for ciphering and deciphering a message is safely shared by two legitimate parties based on quantum mechanics. The pioneering QKD protocol, called BB84, was proposed by Bennett and Brassard in 1984, which has been mainly investigated in QKD researches since then. While BB84 is the most widespread QKD protocol, the authors proposed and have developed another type of QKD protocol, called DPS (Differential-phase-shift) QKD.

We analyze the security and feasibility of a protocol for Quantum Key Distribution (QKD), in a context where only one of the two parties trusts his measurement apparatus. This scenario lies naturally between standard QKD, where both parties trust their measurement apparatuses, and Device-Independent QKD (DI-QKD), where neither does, and can be a natural assumption in some practical situations. We show that the requirements for obtaining secure keys are much easier to meet than for DI-QKD, which opens promising experimental opportunities. We clarify the link between the security of this one-sided DI-QKD scenario and the demonstration of quantum steering, in analogy to the link between DI-QKD and the violation of Bell inequalities.

Cryptography is crucial to communication security. In 1984, a well-known QKD (quantum key distribution) protocol, BB84, was published by Bennett and Brassard. The BB84 Protocol was followed by the QKD protocols published by Ekert (1991) (E91) and Bennett (1992) (B92). Some authors proved security of the theoretical QKD protocols in different theoretical frameworks by defining security of QKD protocols differently. My argument is that the previous proofs of security are neither unique nor exhaustive for each theoretical QKD protocol, which means that proof of security of the theoretical QKD protocols has not been completed or achieved. The non-uniqueness and the non-exhaustiveness of the proofs will lead to more proofs. However, a coming “proof” of security of the theoretical QKD protocols is possible to be a disproof. The research by quantum mechanics in this paper disproves security of the theoretical QKD protocols, by establishing the theoretical framework of quantum mechanical proof, defining security of QKD protocols, establishing the quantum state of the final key of the theoretical protocols from their information leakages, and applying Grover’s fast quantum mechanical algorithm for database search to the quantum state of the final key to result in the Insecurity Theorem. This result is opposite to those of the previous proofs where the theoretical QKD protocols were secure. It is impossible for Alice and Bob to protect their communications from information leakage by stopping or canceling the protocols. The theoretical QKD keys are conventional and basically insecure. Disproof of security of the theoretical QKD protocols is logical.

Quantum computing (QC) is an emerging area that yearly improves and develops more advances in the number of qubits and the available infrastructure for public users. Nowadays, the main cloud service providers (CSP) are implementing different mechanisms to support access to their quantum computers, which can be used to perform small experiments, test hybrid algorithms and prove quantum theories. Recent research work have discussed the low capacity of using quantum computers in a single CSP to perform quantum computation that are needed to solve different experiments for real world problems. Thus, there are needs for computing powers in the form of qubits from multi-cloud environment. Quantum computing in a multi-cloud environment requires security of the communicating channels. A well known algorithm in quantum cryptography for this purpose is the quantum key distribution (QKD) protocol. This enables the sender and receiver of a message to know when a third party eavesdropped any data from the insecure quantum channel. To address the low capacity issue, this research develops and tests the use of heterogeneous quantum computers located on different CSP to distribute quantum calculations between them by leveraging the channel security provided by the QKD protocol. The achieved results show over 88.1% of correct distributed quantum computation results without error correction methods, 96.8% of correct distributed quantum computation results using error correction methods and over 98.8% correct authorisation detection in multi-cloud environments. This demonstrates that quantum calculations can be distributed between different CSP while securing the channel with the QKD protocol at the same time.

Quantum key distribution (QKD) is based on the laws of quantum mechanics to enable provably secure communication. Despite its theoretical security promise, practical QKD systems are vulnerable to serious attacks, including side‐channel attacks and detector loopholes, and assumes a trusted device characterisation. Device‐independent quantum key distribution (DIQKD) overcomes these limitations by relying solely on observed nonlocal correlations, certified through Bell inequality violations, thereby removing assumptions about the internal workings of the measurement devices. In this paper, we first review the foundational principles underlying DIQKD, including Bell tests and security definitions. We then examine a range of protocol designs, including CHSH‐based schemes, and non‐local game frameworks, alongside with their security proofs. We also assess recent experimental implementations and discuss source architectures, detection technologies and finite‐key analyses. Finally, we identify current open problems, such as noise tolerance, generation rates and integration with quantum networks and outline promising directions for future research to realize robust high‐performance DIQKD.

Abstract: This book, Quantum Networks and Secure Communication, presents a comprehensive and interdisciplinary investigation into the foundations, architectures, protocols, and security mechanisms underpinning quantum communication networks. Rooted in the principles of quantum mechanics—entanglement, superposition, and the no-cloning theorem—the text develops a conceptual framework that redefines secure data transmission by exploring how quantum states can be reliably distributed across spatially separated nodes. The work begins by establishing theoretical constructs including quantum bits (qubits), quantum teleportation, and entanglement distribution, and proceeds to analyze practical implementations of Quantum Key Distribution (QKD) through discrete-variable and continuous-variable protocols. The methodological approach combines analytical modeling, system simulation, and empirical evaluations of existing global deployments such as China’s Micius satellite, Europe’s OpenQKD, and the U.S. Quantum Internet Blueprint. By integrating cryptographic theory with quantum physics and network engineering, the book identifies key vulnerabilities—including photon number splitting and quantum hacking—and examines countermeasures such as decoy-state methods and device-independent QKD. Key findings emphasize the superiority of quantum-based security over classical cryptography in adversarial environments and underscore the implementation challenges of scalability, synchronization, and interoperability. The book concludes by mapping out future directions toward a fully realized quantum internet, offering regulatory, ethical, and governance perspectives. This work serves as a critical resource for advancing the understanding and application of quantum-secure networks in both academic and policy-making arenas. Keywords Quantum networks, quantum communication, quantum key distribution, entanglement, no-cloning theorem, secure communication, QKD protocols, device-independent QKD, photon number splitting, quantum hacking, quantum internet, quantum cryptography, network architecture, quantum repeaters, quantum interoperability, quantum memory, integrated photonics, post-quantum security, quantum authentication, entanglement distribution, quantum network deployment.

Similar to device-independent quantum key distribution (DI-QKD), semi-device-independent quantum key distribution (SDI-QKD) provides secure key distribution without any assumptions about the internal workings of the QKD devices. The only assumption is that the dimension of the Hilbert space is bounded. But SDI-QKD can be implemented in a one-way prepare-and-measure configuration without entanglement compared with DI-QKD. We propose a practical SDI-QKD protocol with four preparation states and three measurement bases by considering the maximal violation of dimension witnesses and specific processes of a QKD protocol. Moreover, we prove the security of the SDI-QKD protocol against collective attacks based on the min-entropy and dimension witnesses. We also show a comparison of the secret key rate between the SDI-QKD protocol and the standard QKD.

Quantum cryptography is based on the discovery that the laws of quantum mechanics allow levels of security that are impossible to replicate in a classical world [2, 8, 12]. Can such levels of security be guaranteed even when the quantum devices on which the protocol relies are untrusted? This fundamental question in quantum cryptography dates back to the early nineties when the challenge of achieving device independent quantum key distribution, or DIQKD, was first formulated [9]. We answer this challenge affirmatively by exhibiting a robust protocol for DIQKD and rigorously proving its security. The protocol achieves a linear key rate while tolerating a constant noise rate in the devices. The security proof assumes only that the devices can be modeled by the laws of quantum mechanics and are spatially isolated from each other and any adversary's laboratory. In particular, we emphasize that the devices may have quantum memory. All previous proofs of security relied either on the use of many independent pairs of devices [6, 4, 7], or on the absence of noise [10, 1].

Covert communication methods are used in the communication with high security level. When it turns to quantum communication, covertness is also an important concern which is firstly discussed by Arrazola and Scarani (Phys Rev Lett, 117:250503, 2016). To make quantum key distribution (QKD) protocol more suitable in the scenarios need high security, we propose a covert QKD protocol with decoy-state method in this paper. The secure key rate and covertness of the covert decoy-state QKD are proved. We compare the performance of the covert decoy-state QKD with those of the original decoy-state QKD and covert QKD without decoy states in numerical simulations. It shows that (1) the covert decoy-state QKD can have a performance comparable to the original decoy-state QKD protocol besides its covertness; (2) the covert decoy-state QKD can have a considerable improvement of transmission distance over covert QKD without decoy states at the cost of a small change of covertness parameter. Furthermore, the statistical fluctuation due to the finite length of data is also taken into account based on the Gaussian analysis method.

Device-independent security is the gold standard for quantum cryptography: not only is security based entirely on the laws of quantum mechanics, but it holds irrespective of any a priori assumptions on the quantum devices used in a protocol, making it particularly applicable in a quantum-wary environment. While the existence of device-independent protocols for tasks such as randomness expansion and quantum key distribution has recently been established, the underlying proofs of security remain very challenging, yield rather poor key rates, and demand very high-quality quantum devices, thus making them all but impossible to implement in practice. We introduce a technique for the analysis of device-independent cryptographic protocols. We provide a flexible protocol and give a security proof that provides quantitative bounds that are asymptotically tight, even in the presence of general quantum adversaries. At a high level our approach amounts to establishing a reduction to the scenario in which the untrusted device operates in an identical and independent way in each round of the protocol. This is achieved by leveraging the sequential nature of the protocol, and makes use of a newly developed tool, the "entropy accumulation theorem" of Dupuis et al. As concrete applications we give simple and modular security proofs for device-independent quantum key distribution and randomness expansion protocols based on the CHSH inequality. For both tasks we establish essentially optimal asymptotic key rates and noise tolerance. In view of recent experimental progress, which has culminated in loophole-free Bell tests, it is likely that these protocols can be practically implemented in the near future.