The risk of illegal information access, notably in money transactions, requires more and more advanced cryptographic techniques against criminals and the occasional mischevious teenager.
Quantum cryptography has been regarded as 100-percent protection against attacks on sensitive data traffic but a research team at Linköping University in Sweden has found a hole in even this advanced technology.
When an encrypted message needs to be sent over a computer network, the most difficult problem is how the key should be transmitted. One way is to literally send it by courier (which has its own security risks) or, if it's in your budget, attached to the wrist of James Bond. But the most common way is a "public key," like https:// for online banking and security functions in Web browsers.
A public key is regarded as secure, since enormous calculations are required to break the long strings of data bits - some 2,000 - that make up the key.
Quantum cryptography is considered absolutely secure but very few people use it. It requires special hardware, such as a type of laser that emits polarized light particles (photons) via optic fiber or through the air and some companies and banks in Austria are testing such a system, and trials are even underway with satellite-TV transmission.
In quantum cryptography, security is guaranteed by the laws of quantum mechanics. Quantum-mechanical objects have the peculiar property that they cannot be measured or manipulated without being disturbed. If somebody tries to copy a quantum-cryptographic key in transit, it will make extra 'noise.' An eavesdropper can cause problems, but not extract usable information.
Jan-Åke Larsson, associate professor of applied mathematics at Linköping University, working with his student Jörgen Cederlöf, has shown that not even quantum cryptography is 100-percent secure. There is a theoretical possibility that an unauthorized person can extract the key without being discovered, by simultaneously manipulating both the quantum-mechanical and the regular communication needed in quantum cryptography.
"The concern involves authentication, intended to secure that the message arriving is the same as the one that was sent. We have scrutinized the system as a whole and found that authentication does not work as intended. The security of the current technology is not sufficient," says Jan-Åke Larsson.
In the IEEE Transactions on Information Theory article, the authors propose a change that solves the problem.
"We weren't expecting to find a problem in quantum cryptography, of course, but it is a really complicated system. With our alteration, quantum cryptography will be a secure technology," says Jan-Åke Larsson.
- PHYSICAL SCIENCES
- EARTH SCIENCES
- LIFE SCIENCES
- SOCIAL SCIENCES
Subscribe to the newsletter
Stay in touch with the scientific world!
Know Science And Want To Write?
- How A Former Naturopath Can Help Unravel The Trickery of Alternative Medicine
- Can A New Rule Trigger A Second EU Referendum? Petition Signatures Over 10% Of Total Votes Cast
- Better Brains With Beer
- What Did Earth's Ancient Magnetic Field Look Like?
- Some Celiac Disease May Be Due To Viruses
- Beneficial Bacteria May Protect Breasts From Cancer
- Finding All-Hadronic Top - Again
- "Okay, on the last point first, yes there was fraud detected and 77,000 fraudulent entries..."
- "Yes, your system does sound very complex also :). I don't really understand it in detail and it's..."
- "Well that's America for you,. Having to pay retarded prices for your meds and treatment, You never..."
- "It sounds somewhat familiar. Just has here in the states we elect people to A..."
- "Of life on the island VS life on the mainland. Yeah. I've heard the same from people..."
- Chemistry Can Help Roast the Perfect Coffee Bean
- What Happens To A Soccer Player’s Brain After Missing A Penalty Kick
- It’s Back to Shots for Flu Prevention
- ACSH Applauds Media Awareness of the Fentanyl Crisis
- Counting Bites Examined, to Help Decrease Food Intake
- The Safe And Unsafe Nutty Treats For Your Pup
- How to stop the United Nations from abusing its immunity
- Study examines quality of end life care for patients with different illnesses
- Improvements needed in end-of-life care for patients with organ failure
- Georgetown Institute launches real-time study of smartphone fertility app use
- After Brexit, Italy May Be Next