How much security does Y-00 protocol provide us?

Nishioka, Takahiro; Hasegawa, Tetsuya; Ishizuka, Hirotaka; Imafuku, Kentaro; Imai, Hideki

doi:10.1016/j.physleta.2004.04.083

Cited by 22 publications

(17 citation statements)

References 9 publications

(14 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Generally, only search-complexity based security will be quantitatively described in this paper. Finally, we rebut the claims in [5,6] that αη security is equivalent to that of a standard stream cipher and that αη is nonrandom.…”

Section: Introductionmentioning

confidence: 82%

“…In Section 4, we describe the αη system in detail, show its quantum random cipher characteristics, and highlight its advantages. In Section 5, we respond to the criticisms on αη made by Nishioka et al [5,6] in a further elaboration of the quantitative random cipher character of αη.…”

Section: Introductionmentioning

confidence: 95%

“…Since the features of αη direct encryption are subtle and complex enough, we take the approach in this paper of discussing just the αη encryption system in its own right, and analyze quantitatively its random cipher feature. Doing so will hopefully also avert many possible confusions with αη-Key Generation, such as those in [5,6]. In particular, we will set up in detail the proper framework to understand and analyze the security issues involved.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Quantum-noise randomized ciphers

et al. 2006

View full text Add to dashboard Cite

We review the notion of a classical random cipher and its advantages. We sharpen the usual description of random ciphers to a particular mathematical characterization suggested by the salient feature responsible for their increased security. We describe a concrete system known as ␣ and show that it is equivalent to a random cipher in which the required randomization is affected by coherent-state quantum noise. We describe the currently known security features of ␣ and similar systems, including lower bounds on the unicity distances against ciphertext-only and known-plaintext attacks. We show how ␣ used in conjunction with any standard stream cipher such as the Advanced Encryption Standard provides an additional, qualitatively different layer of security from physical encryption against known-plaintext attacks on the key. We refute some claims in the literature that ␣ is equivalent to a nonrandom stream cipher.

show abstract

Section: Introductionmentioning

confidence: 82%

Section: Introductionmentioning

confidence: 95%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Quantum-noise randomized ciphers

et al. 2006

View full text Add to dashboard Cite

show abstract

“…In fact, there have been some criticisms against Y-00 based on such an indirect measurement [21], but they are wrong. Here we analyze the subjects related to those criticisms.…”

Section: B Indirect Measurementmentioning

confidence: 99%

Quantum stream cipher by the Yuen 2000 protocol: Design and experiment by an intensity-modulation scheme

et al. 2005

View full text Add to dashboard Cite

This paper shall investigate Yuen protocol, so called Y-00, which can realize a randomized stream cipher with high bit rate(Gbps) for long distance(several hundreds km). The randomized stream cipher with randomization by quantum noise based on Y-00 is called quantum stream cipher in this paper, and it may have security against known plaintext attacks which has no analog with any conventional symmetric key ciphers. We present a simple cryptanalysis based on an attacker's heterodyne measurement and the quantum unambiguous measurement to make clear the strength of Y-00 in real communication. In addition, we give a design for the implementation of an intensity modulation scheme and report the experimental demonstration of 1 Gbps quantum stream cipher through 20 km long transmission line.

show abstract

“…The detailed analysis and estimation are shown in [2], [7], [6], [10] and so on. In many cases, the attack by Algorithm A is either a correlation attack or a fast correlation attack, and the target PRNG is an M sequence generator.…”

Section: Analytical Evaluationmentioning

confidence: 99%