PUF-AQKD: A Hardware-Assisted Quantum Key Distribution Protocol for Man-in-the-Middle Attack Mitigation

IF 6.3 Q1 ENGINEERING, ELECTRICAL & ELECTRONIC

IEEE Open Journal of the Communications Society Pub Date : 2025-03-30 DOI:10.1109/OJCOMS.2025.3575206

Ashutosh Bhatia;Sainath Bitragunta;Kamlesh Tiwari

{"title":"PUF-AQKD: A Hardware-Assisted Quantum Key Distribution Protocol for Man-in-the-Middle Attack Mitigation","authors":"Ashutosh Bhatia;Sainath Bitragunta;Kamlesh Tiwari","doi":"10.1109/OJCOMS.2025.3575206","DOIUrl":null,"url":null,"abstract":"The Quantum Key Distribution (QKD) protocol utilizes quantum mechanics principles for cryptographic key exchange, ensuring absolute secrecy. Current QKD techniques are susceptible to man-in-the-middle (MITM) attacks due to the absence of an inherent mechanism for identity verification within the quantum channel. For authentication, these systems rely on classical or post-quantum cryptography, which diminishes the perfect security advantage provided by QKD. We present a Physical Unclonable Function (PUF)-based authenticated QKD protocol (PUF-AQKD), which avoids the necessity for authenticated classical channels and is useful in mitigating MITM attacks. The fundamental concept of PUF-AQKD is to implement a phase shift in the basis used for polarizing the transmitted qubits. The phase shift is dictated by PUFs, which are anticipated to result in analogous (correlated) responses for devices manufactured under similar conditions but dissimilar responses in different conditions. An adversary lacking a correlated PUF response shared by Alice and Bob would inadvertently increase the Quantum Bit Error Rates (QBER) observed at Bob’s end. We present a mathematical model to assess the efficacy of the proposed PUF-AQKD method and perform simulations utilizing the NetSquid simulator. The mathematical analysis and simulation findings indicate that PUF-AQKD can efficiently identify eavesdroppers, even during incomplete measurements, without the necessity of an authorized classical channel.","PeriodicalId":33803,"journal":{"name":"IEEE Open Journal of the Communications Society","volume":"6 ","pages":"4923-4942"},"PeriodicalIF":6.3000,"publicationDate":"2025-03-30","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=11018517","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Open Journal of the Communications Society","FirstCategoryId":"1085","ListUrlMain":"https://ieeexplore.ieee.org/document/11018517/","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"ENGINEERING, ELECTRICAL & ELECTRONIC","Score":null,"Total":0}

引用次数: 0

Abstract

The Quantum Key Distribution (QKD) protocol utilizes quantum mechanics principles for cryptographic key exchange, ensuring absolute secrecy. Current QKD techniques are susceptible to man-in-the-middle (MITM) attacks due to the absence of an inherent mechanism for identity verification within the quantum channel. For authentication, these systems rely on classical or post-quantum cryptography, which diminishes the perfect security advantage provided by QKD. We present a Physical Unclonable Function (PUF)-based authenticated QKD protocol (PUF-AQKD), which avoids the necessity for authenticated classical channels and is useful in mitigating MITM attacks. The fundamental concept of PUF-AQKD is to implement a phase shift in the basis used for polarizing the transmitted qubits. The phase shift is dictated by PUFs, which are anticipated to result in analogous (correlated) responses for devices manufactured under similar conditions but dissimilar responses in different conditions. An adversary lacking a correlated PUF response shared by Alice and Bob would inadvertently increase the Quantum Bit Error Rates (QBER) observed at Bob’s end. We present a mathematical model to assess the efficacy of the proposed PUF-AQKD method and perform simulations utilizing the NetSquid simulator. The mathematical analysis and simulation findings indicate that PUF-AQKD can efficiently identify eavesdroppers, even during incomplete measurements, without the necessity of an authorized classical channel.

查看原文本刊更多论文

PUF-AQKD：用于中间人攻击缓解的硬件辅助量子密钥分发协议

量子密钥分发（QKD）协议利用量子力学原理进行加密密钥交换，确保绝对保密。由于量子通道内缺乏固有的身份验证机制，当前的QKD技术容易受到中间人（MITM）攻击。对于身份验证，这些系统依赖于经典或后量子加密，这削弱了QKD提供的完美安全优势。提出了一种基于物理不可克隆函数（PUF）的身份验证QKD协议（PUF- aqkd），该协议避免了对经过身份验证的经典通道的需要，有助于减轻MITM攻击。PUF-AQKD的基本概念是在用于偏振传输量子位的基中实现相移。相移是由puf决定的，预计在相似条件下制造的设备会产生类似（相关）响应，但在不同条件下会产生不同的响应。如果对手缺乏Alice和Bob共享的相关PUF响应，则无意中会增加Bob端观察到的量子比特误码率（QBER）。我们提出了一个数学模型来评估PUF-AQKD方法的有效性，并利用NetSquid模拟器进行了模拟。数学分析和仿真结果表明，PUF-AQKD可以有效地识别窃听者，即使在不完全测量期间，也不需要授权的经典信道。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

IEEE Open Journal of the Communications Society Multiple-

CiteScore

13.70

自引率

3.80%

发文量

审稿时长

10 weeks

期刊介绍： The IEEE Open Journal of the Communications Society (OJ-COMS) is an open access, all-electronic journal that publishes original high-quality manuscripts on advances in the state of the art of telecommunications systems and networks. The papers in IEEE OJ-COMS are included in Scopus. Submissions reporting new theoretical findings (including novel methods, concepts, and studies) and practical contributions (including experiments and development of prototypes) are welcome. Additionally, survey and tutorial articles are considered. The IEEE OJCOMS received its debut impact factor of 7.9 according to the Journal Citation Reports (JCR) 2023. The IEEE Open Journal of the Communications Society covers science, technology, applications and standards for information organization, collection and transfer using electronic, optical and wireless channels and networks. Some specific areas covered include: Systems and network architecture, control and management Protocols, software, and middleware Quality of service, reliability, and security Modulation, detection, coding, and signaling Switching and routing Mobile and portable communications Terminals and other end-user devices Networks for content distribution and distributed computing Communications-based distributed resources control.