Abstract
Quantum computing represents an emerging threat to the public key infrastructure underlying transport layer security (TLS) widely used in the Internet. This paper describes how QKD symmetric keys can be used with TLS to provide quantum computing resistant security for existing Internet applications. We also implement and test a general hybrid key delivery architecture with QKD over long distance fibers between secure sites, and wireless key distribution over short distance within each site. Finally we show how this same capability can be extended to a TLS cipher scheme with perfect security.
Similar content being viewed by others
Notes
The link between a and c can be any that supports some QKD protocol. Keys 1 and 3 are derived and used in the same manner as in the example for Key2.
QKD has the notion of a QKD trusted repeater that chains together QKD point-to-point links, thereby overcoming the optical limit. A 3rd party trusted repeater seems at odds with security requirements necessitating QKD in the first place.
References
Bacco, D., Vagniluca, I., Da Lio, B., et al. (2019). Field trial of a three-state quantum key distribution scheme in the Florence metropolitan area. EPJ Quantum Technol., 6, 5.
Bennett, C, H. & Brassard, G. (1984) Quantum cryptography: Public key distribution and coin tossing. In Proc. Int. Conf. on Computers, Systems and Signal Processing 175–179
“Deprecating Secure Sockets Layer Version 3.0” (n.d.) https://tools.ietf.org/html/rfc7568.
Deutsch, D., et al. (n.d., 1996). Quantum privacy amplification and the security of quantum cryptography over noisy channels. Physical Review Letters, 77, 2818–2821 https://arxiv.org/abs/quant-ph/9604039v1.
Herrero-Collantes, M., et al. Quantum Random Number Generators. https://arxiv.org/pdf/1604.03304.pdf
https://csrc.nist.gov/Projects/post-quantum-cryptography/Post-Quantum-Cryptography-Standardization
https://en.wikipedia.org/wiki/Bell_state#Creating_Bell_states
https://www.idquantique.com/quantum-safe-security/products/clavis3-qkd-platform-rd/
Huberman, B., & Lund, B. (2020). A quantum router for the entangled web. Information Systems Frontier, 22, 37–43 https://arxiv.org/abs/1903.04535.
IBM’s Test-Tube Quantum Computer Makes History (n.d.); First Demonstration Of Shor's Historic Factoring Algorithm. https://www.sciencedaily.com/releases/2001/12/011220081620.htm.
Jiang, S., Britt, K, A., McCaskey, A, J., Humble, T, S. & Kais, S., (2018). Quantum annealing for prime factorization. Published online December 5. https://www.nature.com/articles/s41598-018-36058-z.
Kozlowski, W. & Wehner, S., (2019) Towards Large-Scale Quantum Networks. NANOCOM '19: Proceedings of the Sixth Annual ACM International Conference on Nanoscale Computing and Communication September 2019. 3:1–7. https://doi.org/10.1145/3345312.3345497.
Liao, S.-K., et al. (2017). Satellite-to-ground quantum key distribution. Nature, 549, 43.
Nielsen, M, A. & Chuang, I, L., (2012) Quantum Computation and Quantum Information 10th Edition, section 12.6.3. Cambridge University Press https://doi.org/10.1017/CBO9780511976667.
“Pre-Shared Key Ciphersuites for Transport Layer Security (TLS)” (n.d.) https://tools.ietf.org/html/rfc4279.
“Quantum Key Distribution (QKD) (n.d.) Protocol and data format of REST-based key delivery API”, https://www.etsi.org/deliver/etsi_gs/QKD/001_099/014/01.01.01_60/gs_qkd014v010101p.pdf.
Shannon, C. E. (1949). Communication theory of secrecy systems. Bell system technical journal, 28, 656–715 Online version http://pages.cs.wisc.edu/~rist/642-spring-2014/shannon-secrecy.pdf.
The beginning of the end for encryption schemes? (n.d.) http://news.mit.edu/2016/quantum-computer-end-encryption-schemes-0303.
“The Transport Layer Security (TLS) Protocol Version 1.3” (n.d.) RFC 8446, https://tools.ietf.org/html/rfc8446.
Author information
Authors and Affiliations
Corresponding author
Additional information
Publisher’s Note
Springer Nature remains neutral with regard to jurisdictional claims in published maps and institutional affiliations.
Rights and permissions
About this article
Cite this article
Hubermann, B.A., Lund, B. & Wang, J. Quantum Secured Internet Transport. Inf Syst Front 22, 1561–1567 (2020). https://doi.org/10.1007/s10796-020-10086-5
Accepted:
Published:
Issue Date:
DOI: https://doi.org/10.1007/s10796-020-10086-5