Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

Quantum Key Distribution: Bridging Theoretical Security Proofs, Practical Attacks, and Error Correction for Quantum-Augmented Networks

Nitin Jha, Abhishek Parakh, Mahadevan Subramaniam

TL;DR

This article surveys Quantum Key Distribution (QKD), emphasizing the gap between theoretical security proofs and practical deployments in noisy, device-limited environments. It classifies protocols into foundational BB84, three-stage QSDC, CV-QKD, Twin-field QKD, and Device-Independent QKD, and analyzes security proofs, attack surfaces (PNS, Trojan-Horse, jamming), and mitigation strategies, including quantum error correction codes (QECCs). It then surveys QECCs (CSS, Shor, Steane, surface codes, and bosonic binomial codes) and their role in robust, long-distance, fault-tolerant QKD, particularly within the context of quantum-augmented networks (QuANets). The paper connects protocol design, security analyses, and QECC-enabled architectures to offer practical guidance for building secure, scalable quantum networks, while highlighting open challenges in finite-key security, device independence, and hardware-aware countermeasures.

Abstract

Quantum Key Distribution (QKD) is revolutionizing cryptography by promising information-theoretic security through the immutable laws of quantum mechanics. Yet, the challenge of transforming these idealized security models into practical, resilient systems remains a pressing issue, especially as quantum computing evolves. In this review, we critically dissect and synthesize the latest advancements in QKD protocols and their security vulnerabilities, with a strong emphasis on rigorous security proofs. We actively categorize contemporary QKD schemes into three key classes: uncertainty principle-based protocols (e.g., BB84), hybrid architectures that enable secure direct communication (eg, three-stage protocol), and continuous-variable frameworks. We further include two modern classes of QKD protocols, namely Twin-field QKD and Device-Independent QKD, both of which were developed to have practical implementations over the last decade. Moreover, we highlight important experimental breakthroughs and innovative mitigation strategies, including the deployment of advanced Quantum Error Correction Codes (QECCs), that significantly enhance channel fidelity and system robustness. By mapping the current landscape, from sophisticated quantum attacks to state-of-the-art error correction methods, this review fills an important gap in the literature. To bring everything together, the relevance of this review concerning quantum augmented networks (QuANets) is also presented. This allows the readers to gain a comprehensive understanding of the security promises of quantum key distribution from theoretical proofs to experimental validations.

Quantum Key Distribution: Bridging Theoretical Security Proofs, Practical Attacks, and Error Correction for Quantum-Augmented Networks

TL;DR

This article surveys Quantum Key Distribution (QKD), emphasizing the gap between theoretical security proofs and practical deployments in noisy, device-limited environments. It classifies protocols into foundational BB84, three-stage QSDC, CV-QKD, Twin-field QKD, and Device-Independent QKD, and analyzes security proofs, attack surfaces (PNS, Trojan-Horse, jamming), and mitigation strategies, including quantum error correction codes (QECCs). It then surveys QECCs (CSS, Shor, Steane, surface codes, and bosonic binomial codes) and their role in robust, long-distance, fault-tolerant QKD, particularly within the context of quantum-augmented networks (QuANets). The paper connects protocol design, security analyses, and QECC-enabled architectures to offer practical guidance for building secure, scalable quantum networks, while highlighting open challenges in finite-key security, device independence, and hardware-aware countermeasures.

Abstract

Quantum Key Distribution (QKD) is revolutionizing cryptography by promising information-theoretic security through the immutable laws of quantum mechanics. Yet, the challenge of transforming these idealized security models into practical, resilient systems remains a pressing issue, especially as quantum computing evolves. In this review, we critically dissect and synthesize the latest advancements in QKD protocols and their security vulnerabilities, with a strong emphasis on rigorous security proofs. We actively categorize contemporary QKD schemes into three key classes: uncertainty principle-based protocols (e.g., BB84), hybrid architectures that enable secure direct communication (eg, three-stage protocol), and continuous-variable frameworks. We further include two modern classes of QKD protocols, namely Twin-field QKD and Device-Independent QKD, both of which were developed to have practical implementations over the last decade. Moreover, we highlight important experimental breakthroughs and innovative mitigation strategies, including the deployment of advanced Quantum Error Correction Codes (QECCs), that significantly enhance channel fidelity and system robustness. By mapping the current landscape, from sophisticated quantum attacks to state-of-the-art error correction methods, this review fills an important gap in the literature. To bring everything together, the relevance of this review concerning quantum augmented networks (QuANets) is also presented. This allows the readers to gain a comprehensive understanding of the security promises of quantum key distribution from theoretical proofs to experimental validations.

Paper Structure

This paper contains 28 sections, 31 equations, 3 figures, 5 tables.

Table of Contents

  1. Introduction
  2. Scope of this Review
  3. Quantum Key Distribution
  4. Bennett-Brassard 1984 (BB84) Protocol
  5. Three-stage Protocol
  6. Continuous Variable (CV) Protocols
  7. Twin-field QKD Protocols
  8. Device Independent (DI) QKD
  9. Attacks on QKD
  10. Photon Number Splitting (PNS) Attack
  11. Related works on PNS-attack
  12. Trojan Horse Attack
  13. Related works to Trojan Horse attacks
  14. Jamming Attack
  15. Related works on Jamming attacks
  16. ...and 13 more sections

Figures (3)

  • Figure 1: A schematic representation of a general QKD scenario. Alice is the sender, Bob is the receiver, and Eve is the eavesdropper present in the setup. A two-way classical communication channel and a quantum channel connect Alice and Bob. Eve can perform an eavesdropper attack on either or both of the channels to gain maximum knowledge without getting exposed.
  • Figure 2: A schematic representation of a PNS attack conducted by an eavesdropper with infinite computational power. (Redrawn from pnsieee).
  • Figure 3: Schematic representation of the principle behind the Trojan horse attack. Eve occupies a section of the quantum channel (i.e., spatial, temporal, and frequency modes) to access Alice's apparatus. Eve uses an additional light source, modulates it, and then analyzes the backscattered signal with a detector. She can use features specific to her auxiliary source, such as its phase, in her detection configuration. Eve might occasionally have to intercept a portion of the valid signal to improve the quantum channel and make up for the loss. (Re-drawn from gisin2006)