Quantum crypto detectors cracked by researchers

Summary:Norwegian and German researchers have demonstrated a way to eavesdrop on communications by dazzling photon detectors

Researchers at Norwegian and German institutes claim to have successfully cracked the quantum cryptography equipment used to cloak high-sensitive communications by banks and defence agencies.

The researchers said they had remotely controlled the photon detectors used in commercially available photodiode quantum cryptography systems. This allowed them to eavesdrop on communications, the researchers said.

"The security of quantum cryptography relies on quantum physics but not only [on that]… It must also be properly implemented," said Gerd Leuchs of the University of Erlangen-Nürnberg in a statement on Sunday. "This fact was often overlooked in the past."

Quantum cryptography relies on Heisenberg's uncertainty principle – that observation of quantum particles alters their behaviour – to reveal eavesdropping. Quantum key distribution (QKD) uses entangled quantum bits to exchange secure keys to a cipher.

In the attack, the researchers used bright illumination to dazzle the photon detectors. The detectors were fooled by classical laser pulses superimposed over the quantum signal, the researchers said in a letter to Nature Photonics. According to the researchers, the attack will work for most QKD systems that use avalanche photodiodes, which are semiconductors that convert light to electricity. Most QKD systems use avalanche photodiodes.

The subverted QKD systems were the id3110 Clavis2 by vendor ID Quantique, and the QPN 5505, from MagiQ Technologies. The researchers said on a how-to page that they had disclosed their findings to the affected vendors seven months ago.

ID Quantique has developed and tested a countermeasure, according to the researchers.

The research team — Lars Lydersen, Carlos Wiechers, Christoffer Wittmann, Dominique Elser, Johannes Skaar, and Vadim Makarov — are from the Norwegian University of Science and Technology (NTNU), the University of Erlangen-Nürnberg, and the Max Planck Institute for the Science of Light in Erlangen.

Topics: Security

About

Tom is a technology reporter for ZDNet.com, writing about all manner of security and open-source issues.Tom had various jobs after leaving university, including working for a company that hired out computers as props for films and television, and a role turning the entire back catalogue of a publisher into e-books.Tom eventually found tha... Full Bio

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Related Stories

The best of ZDNet, delivered

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
Subscription failed.