Vadim Makarov

Quantum key distribution (QKD) protocol has been proven to be informationally-theoretical security. Unfortunately, due to device imperfections in practice, QKD systems have exposed various vulnerabilities that are exploited by an eavesdropper to conduct quantum hackings, such as laser-seeding attacks, blinding attacks, etc. Most of these attacks currently remain only at the stage of possibility verification or white-box testing. In this paper, we propose and implemented plug-and-play attack on a QKD system as a black box, whose interface and access for the public are the only known information. Through this attack, we actively modified the gate positions and synchronization parameters of the QKD system during the calibration procedure, allowing the attack operate during the whole lifetime of the system running without being noticed. Furthermore, the implemented hacking system only connects to the quantum channel but has no access to the inside of QKD engine, which takes minutes to optimize the hacking parameters to start the eavesdropping. This work illustrates Eve's capability to successfully eavesdrop on keys from QKD systems under current conditions in a more intuitive and concrete way.

In this work, we demonstrate a new kind of attack on laser sources in quantum key distribution systems - the optical-pumping attack. We investigated its influence on a single distributed feedback laser diode and an optically injection-locked source configuration. The spectral dependency of this attack was also examined. We managed to increase the energy of emitted pulses using attackers light at several wavelengths. The developed optical-pumping attack should be considered as a possible threat to the security of QKD systems because the increase of pulse energy leads to overestimation of secret key rate between Alice and Bob, giving more information about secret key to Eve.

Chip-based quantum key distribution (QKD) systems offer improved efficiency but may also introduce previously unrecognized security vulnerabilities. In this work, we identify and experimentally characterize cross-polarization-intensity (CPI) correlations in a real-world chip-based QKD system. Moreover, we introduce a security analysis that incorporates CPI correlations and apply it to evaluate the performance of an integrated high-speed QKD system. Our results emphasize the need for rigorous security assessments in chip-based QKD implementations.

Our study shows that the rate of random number generation by QRNG based on interference of laser pulses is significantly more limited than expected. An increase in generation speed requires shortening the duration of laser pulses. However, the interference of short laser pulses from a single laser diode is problematic due to jitter and phase modulation (chirp). The optically injection-locked configuration proposed by L. C. Comandar for MDI QKD does not have the above disadvantages and therefore enables the design of QRNG with a high speed of random number generation.

Quantum key distribution (QKD) technology allows sharing secret keys between two parties over an insecure channel. But there are vulnerabilities in the technical implementation of systems. Laser seeding attack is one of the examples of imperfections in QKD systems. Recent works have demonstrated that Eve can manipulate output power of Alice's laser. This leads to an increase of the average photon number, emitted by Alice. But this attack can be prevented by using passive fiber-optic elements such as isolators or DWDM-filters. In this work, we demonstrate a new kind of attack namely, the optical pumping attack. This attack utilises imperfections in passive optic elements that are used in QKD systems to prevent other types of attack. Eve can use source at different wavelength to seed Alice laser, 1064 nm for example. This radiation would be absorbed by crystal within laser and create additional population inversion to inversion created by bias current, that drives Alice laser. This pumping would change average photon number at the output of Alice, leading to wrong estimation of lower bound on the secret key rate. This creates a side-channel for Eve for obtaining key information. In this work we performed this kind of attack for several wavelengths: 1064 nm, 1310 nm, 1480 nm and 2000 nm, measured changing of pulse energy, average output power and pulse shape under attacks at different wavelengths. Finally, we provide theoretical estimation of required isolation at the tested wavelengths to protect the source against the optical-pumping attack.

The decoy-state method is a prominent approach to enhance the performance of quantum key distribution (QKD) systems that operate with weak coherent laser sources. Current experimental decoy-state QKD setups increase their secret key rate by raising the repetition rate of the transmitter, which can lead to correlations between subsequently emitted optical pulses. This phenomenon leaks information about the encoding settings, including the intensities of the generated signals, thus invalidating a basic premise of decoy-state QKD. Here, we experimentally characterize intensity correlations between the nearest-neigbouring optical pulses in two commercial prototypes of decoy-state BB84 QKD systems and show that they significantly reduce the asymptotic key rate. In addition, we study intensity correlations between pulses spaced further apart (higher-order correlations) and find that, in contrast to what has been conjectured, their impact on the intensity of the generated signals can be much higher than that of the nearest-neighbour (first-order) correlations.

We report recent advances in the development of certification for quantum key distribution (QKD) systems. We give an example of a commercial QKD system that we have analysed for possible loopholes, improved to close the vulnerabilities identified, and designed a set of tests for that can be used by a certification lab [arXiv:2310.20107]. We explain some of the testbenches in this lab, such as an ultrawide spectral characterisation testbench, automated detector testing, and laser damage testbench that verifies the quality of a power limiter. This work is in line with the requirements of the ISO standard for QKD and paves the way for the creation of certification services.

We propose an original device that can protect quantum key distribution (QKD) systems from the effects of intense laser radiation. Carbon nanomaterials dispersed in a polymer can be used as a fuse that interrupts key distribution when Eve tries to hack the system by high-power laser emission. Moreover, it saves system components from laser damage.