Improving Wójcik's eavesdropping attack on the ping–pong protocol

doi:10.1016/j.physleta.2004.10.025

Physics Letters A

Volume 333, Issues 1–2, 29 November 2004, Pages 46-50

https://doi.org/10.1016/j.physleta.2004.10.025 Get rights and content

Abstract

The eavesdropping scheme proposed by Wójcik [Phys. Rev. Lett. 90 (2003) 157901] on the ping–pong protocol [Phys. Rev. Lett. 89 (2002) 187902] is improved by constituting a new set of attack operations. The improved scheme only induces half of the eavesdropping-induced channel loss in Wójcik's scheme, therefore, in a larger domain of the quantum channel transmission efficiency η, i.e., $[0, 75 %]$ , the eavesdropper Eve can attack all the transmitted bits. The improvement of the ping–pong protocol security produced by Wójcik's is also suitable for our eavesdropping attack.

Section snippets

Acknowledgments

Zhang thanks to Prof. Baiwen Li for his encouragement. We would like to thank the referee very much for his/her valuable opinions on this Letter. This work is funded by the National Science Foundation of China under No. 10304022.

References (25)

W.Y. Hwang et al.
Phys. Lett. A
(1998)
C.H. Bennett et al.
N. Gisin et al.
Rev. Mod. Phys.
(2002)
A.K. Ekert
Phys. Rev. Lett.
(1991)
C.H. Bennett
Phys. Rev. Lett.
(1992)
C.H. Bennett et al.
Phys. Rev. Lett.
(1992)
L. Goldenberg et al.
Phys. Rev. Lett.
(1995)
B. Huttner et al.
Phys. Rev. A
(1995)
M. Koashi et al.
Phys. Rev. Lett.
(1997)
P. Xue et al.
Phys. Rev. A
(2002)

S.J.D. Phoenix et al.

J. Mod. Opt.

(1995)

H. Bechmann-Pasquinucci et al.

Phys. Rev. A

(1999)

Cited by (121)

Ethical hacking for IoT: Security issues, challenges, solutions and recommendations
2023, Internet of Things and Cyber-Physical Systems
In recent years, attacks against various Internet-of-Things systems, networks, servers, devices, and applications witnessed a sharp increase, especially with the presence of 35.82 billion IoT devices since 2021; a number that could reach up to 75.44 billion by 2025. As a result, security-related attacks against the IoT domain are expected to increase further and their impact risks to seriously affect the underlying IoT systems, networks, devices, and applications. The adoption of standard security (counter) measures is not always effective, especially with the presence of resource-constrained IoT devices. Hence, there is a need to conduct penetration testing at the level of IoT systems. However, the main issue is the fact that IoT consists of a large variety of IoT devices, firmware, hardware, software, application/web-servers, networks, and communication protocols. Therefore, to reduce the effect of these attacks on IoT systems, periodic penetration testing and ethical hacking simulations are highly recommended at different levels (end-devices, infrastructure, and users) for IoT, and can be considered as a suitable solution. Therefore, the focus of this paper is to explain, analyze and assess both technical and non-technical aspects of security vulnerabilities within IoT systems via ethical hacking methods and tools. This would offer practical security solutions that can be adopted based on the assessed risks. This process can be considered as a simulated attack(s) with the goal of identifying any exploitable vulnerability or/and a security gap in any IoT entity (end devices, gateway, or servers) or firmware.
Game-theoretic perspective of Ping-Pong protocol
2018, Physica A: Statistical Mechanics and its Applications
We analyse Ping-Pong protocol from the point of view of a game. The analysis helps us in understanding the different strategies of a sender and an eavesdropper to gain the maximum payoff in the game. The study presented here characterizes strategies that lead to different Nash equilibriums. We further demonstrate the condition for Pareto optimality depending on the parameters used in the game. Moreover, we also analysed LM05 protocol and compared it with PP protocol from the point of view of a generic two-way QKD game with or without entanglement. Our results provide a deeper understanding of general two-way QKD protocols in terms of the security and payoffs of different stakeholders in the protocol.
Secure data-sharing using distributed environmental matching keys
2017, Pervasive and Mobile Computing
Citation Excerpt :
Besides, important parameters are hidden in the trusted device to avoid them from being cracked. Based on our security analyses, the proposed system is able to resist machine-specific data leakage [10], replay attack [11], eavesdropping attack [12], impersonation attack [13], forgery attack, and known-key attack. The contributions of this paper are as follows.
In the past decade, with the development of data-sharing on cloud storage, people can access their personal or commercial data stored in different systems or devices anytime and anywhere. However, the shared data is distributed over many cloud storages. This may increase the risk of unauthorized access or even insider threats. Many commercial cloud storages provide data encryption service with extra charge; however, such service often encrypts data by using only one encryption key. When the authorized users of one group would like to access the shared data, they need to own the same decryption key, i.e., group key, which may rise the risk of data leakage, especially when the key is hacked. Multi-key encryption is another way to protect the shared data. But it is hard to manage multiple keys and share them with other authorized users, especially in a cloud environment. To provide a secure and effective data sharing method in a cloud environment, in this paper, we construct a secure cloud data encryption protocol, named the Environmental Matching key based Data- Sharing protocol (EMaDS in short). The EMaDS encrypts shared data by using one encryption key which combines several environmental matching keys derived from authorized user’s password and a trust device’s hardware/software configuration. Our security analyses show that the EMaDS is able to resist machine-specific data leakage, replay attack, eavesdropping attack, impersonation attack, forgery attack, and known-key attack. Besides, the mathematical proof also shows the probability with which to generate the same environmental matching key by using the same trusted device is less than $\frac{1}{w^{m} \times w!}$ , where w is the number of parameters of a trusted device, and m is the number of parameters chosen for generating environmental matching key. When the trusted device is different, it is absolutely impossible to generate the same environmental matching key. These analyses conclude that the EMaDS is very suitable for group data sharing under heterogeneous environments and is practically useful in business.
An efficient modification to the Ping-Pong Protocol to enhance the Security
2023, AIP Conference Proceedings
The Evolution of Quantum Secure Direct Communication: On the Road to the Qinternet
2023, arXiv
Security of a High Dimensional Two-Way Quantum Key Distribution Protocol
2022, Advanced Quantum Technologies

View all citing articles on Scopus

View full text

Improving Wójcik's eavesdropping attack on the ping–pong protocol

Abstract

Section snippets

Acknowledgments

Phys. Lett. A

Rev. Mod. Phys.

Phys. Rev. Lett.

Phys. Rev. Lett.

Phys. Rev. Lett.

Phys. Rev. Lett.

Phys. Rev. A

Phys. Rev. Lett.

Phys. Rev. A

J. Mod. Opt.

Phys. Rev. A