The universal composable security of quantum key distribution

Michael Ben-Or; Michal Horodecki; Debbie W. Leung; Dominic Mayers; Jonathan Oppenheim

doi:10.1007/978-3-540-30576-7_21

The universal composable security of quantum key distribution

Michael Ben-Or^*, Michal Horodecki, Debbie W. Leung, Dominic Mayers, Jonathan Oppenheim

^*Corresponding author for this work

The Rachel and Selim Benin School of Engineering and Computer Science

Research output: Contribution to journal › Conference article › peer-review

172 Scopus citations

Abstract

The existing unconditional security definitions of quantum key distribution (QKD) do not apply to joint attacks over QKD and the subsequent use of the resulting key. In this paper, we close this potential security gap by using a universal composability theorem for the quantum setting. We first derive a composable security definition for QKD. We then prove that the usual security definition of QKD still implies the composable security definition. Thus, a key produced in any QKD protocol that is unconditionally secure in the usual definition can indeed be safely used, a property of QKD that is hitherto unproven. We propose two other useful sufficient conditions for composability. As a simple application of our result, we show that keys generated by repeated runs of QKD degrade slowly.

Original language	English
Pages (from-to)	386-406
Number of pages	21
Journal	Lecture Notes in Computer Science
Volume	3378
DOIs	https://doi.org/10.1007/978-3-540-30576-7_21
State	Published - 2005
Event	Second Theory of Cryptography Conference, TCC 2005 - Cambridge, MA, United States Duration: 10 Feb 2005 → 12 Feb 2005

Access to Document

10.1007/978-3-540-30576-7_21

Cite this

@article{6d6405d6515a458da47c5143f1e13240,

title = "The universal composable security of quantum key distribution",

abstract = "The existing unconditional security definitions of quantum key distribution (QKD) do not apply to joint attacks over QKD and the subsequent use of the resulting key. In this paper, we close this potential security gap by using a universal composability theorem for the quantum setting. We first derive a composable security definition for QKD. We then prove that the usual security definition of QKD still implies the composable security definition. Thus, a key produced in any QKD protocol that is unconditionally secure in the usual definition can indeed be safely used, a property of QKD that is hitherto unproven. We propose two other useful sufficient conditions for composability. As a simple application of our result, we show that keys generated by repeated runs of QKD degrade slowly.",

author = "Michael Ben-Or and Michal Horodecki and Leung, {Debbie W.} and Dominic Mayers and Jonathan Oppenheim",

year = "2005",

doi = "10.1007/978-3-540-30576-7_21",

language = "אנגלית",

volume = "3378",

pages = "386--406",

journal = "Lecture Notes in Computer Science",

issn = "0302-9743",

publisher = "Springer Science and Business Media Deutschland GmbH",

note = "Second Theory of Cryptography Conference, TCC 2005 ; Conference date: 10-02-2005 Through 12-02-2005",

}

TY - JOUR

T1 - The universal composable security of quantum key distribution

AU - Ben-Or, Michael

AU - Horodecki, Michal

AU - Leung, Debbie W.

AU - Mayers, Dominic

AU - Oppenheim, Jonathan

PY - 2005

Y1 - 2005

N2 - The existing unconditional security definitions of quantum key distribution (QKD) do not apply to joint attacks over QKD and the subsequent use of the resulting key. In this paper, we close this potential security gap by using a universal composability theorem for the quantum setting. We first derive a composable security definition for QKD. We then prove that the usual security definition of QKD still implies the composable security definition. Thus, a key produced in any QKD protocol that is unconditionally secure in the usual definition can indeed be safely used, a property of QKD that is hitherto unproven. We propose two other useful sufficient conditions for composability. As a simple application of our result, we show that keys generated by repeated runs of QKD degrade slowly.

AB - The existing unconditional security definitions of quantum key distribution (QKD) do not apply to joint attacks over QKD and the subsequent use of the resulting key. In this paper, we close this potential security gap by using a universal composability theorem for the quantum setting. We first derive a composable security definition for QKD. We then prove that the usual security definition of QKD still implies the composable security definition. Thus, a key produced in any QKD protocol that is unconditionally secure in the usual definition can indeed be safely used, a property of QKD that is hitherto unproven. We propose two other useful sufficient conditions for composability. As a simple application of our result, we show that keys generated by repeated runs of QKD degrade slowly.

UR - http://www.scopus.com/inward/record.url?scp=24144445587&partnerID=8YFLogxK

U2 - 10.1007/978-3-540-30576-7_21

DO - 10.1007/978-3-540-30576-7_21

M3 - ???researchoutput.researchoutputtypes.contributiontojournal.conferencearticle???

AN - SCOPUS:24144445587

SN - 0302-9743

VL - 3378

SP - 386

EP - 406

JO - Lecture Notes in Computer Science

JF - Lecture Notes in Computer Science

T2 - Second Theory of Cryptography Conference, TCC 2005

Y2 - 10 February 2005 through 12 February 2005

ER -

The universal composable security of quantum key distribution

Abstract

Access to Document

Other files and links

Fingerprint

Cite this