# Architecture of QKD :

![QKD_arch.jpg](attachment:8eb58ead-2c35-4f82-9845-603341ba2e3c.jpg)

The above diagram represents, the different steps for QKD protocol execution.

In Quantum Data transfer we execute the Quantum Protocol on basically two Hardware Nodes. They are **Transmitter Node** and **Reciever Node**.

- In transmitter node, Quantum States are generated and encoded with some information.
- Then after these states are sent to reciever node through a medium.
- The Quantum states used here are **Photons** (*also known as Flying Qubits*). These photons are used for Quantum Communication.

- The propagation medium can be free-space or fibre cable or anything suitable.

- In reciever node, these Quantum states are demodulated and gets measured.

So in Quantum Data transfer, we essentially perform Quantum communication and the result is a **raw-key** at both the ends. After this some post-processing is performed on output data.
Steps involved in this post-processing are:

1. Shifting
2. Error estimation and Error Correction
3. Analysis of the parameters
4. Privacy Amplification.

After performing all these steps we obtain final key. The length of this **final-key** is subjected to attenuation through the medium of propagation, low detection efficiency, low optical signal strength, system errors, leakage, etc.

In the above snapshot we can see that Quantum Data Tranfer is done inside the Quantum Channnel and Data post-processing is performed in classical channel.

QKD protocol can be categorized into two types on the basis of **nature of protocol**. They are :
1. Prepare & Measure
2. Entanglement Based.

QKD protocol can be categorized into two types on the basis of **Detection Techniques**. They are :
1. Discrete Variable
2. Continuos Variable.

![Quantum_Transmission.png](attachment:62554989-81e8-4a44-a4b7-cc5b7ff6ebc5.png)

When sender prepares the Quantum state (can be single photons or coherent pulses) and reciever perform measurement then it is called ***Prepare and Measure QKD***. Ex: **BB84**, **B92**, **Differential Phase Shift QKD** etc.
- These protocols makes use of uncertaininty principle  to ensure security.

In Entanglement based QKD protocols, during transmission the parties recieve photon from an entangled photon pair and measure its state in **randomly chosen basis**. Ex: **BBM92**. This protocol makes use of non-local correlations to achieve security. 
- If any local variable exists, which can predict the state of the entangled Qubit pair then non-local correlations are not observed.

**Discrete variable:** In this DV technique they employee single photon detection techniques.

**Continuos Variable:** In CV protocol, Information is encoded in Quadratures of Quantized  Electro-Magnetic field. Homodyne and Heterodyne detection techniques are used in suSch cases. Such techniques are routinely applied in classical-optical communications.

# Steps for Post Processing:

## Error Correction :

Process of error correction involves
1. Estimating error rate
2. correcting the error bits.

After recieving the **raw-key** we share a segment of received raw-key with sender and sender calculates the **error %** which is denoted by **e**. If this error rate is **greater than** threshold (theoritical value) then we discard the process. Else we will perform **step-2**.

Shannon's Noiseless coding theorem tells us about minimum number of bits **(k)** publicly exchanged to correct the errors **e**.
$$\lim_{n\rightarrow\infty}\frac{k}{n} = -e\log_{2}e - (1-e)\log_{2}(1-e) \equiv h(e)$$

**NOTE :** Error correcting algorithm should be ideally close to the shannon's limit. $n \rightarrow$ is length of raw-key.
- We have considered shifting parameter as **1**.
- Broadly, error correction algorithm can be **"Unidirectional" or "Bidirectional"**. But "Bidirectional" makes error correction easier to approach the value of shannon's limit.

- Since Error correction happens over a public channel, this leaks some information which is Quantifyable.

These analysis are done to enchance the security of **" final-key "**. 

Further we discard the bits that we shared here to estimate error. This step is very important during the practical implementation, since under the "denial of service" kind of attack one can stall a live **QKD link**.

## Privacy Amplification :

In this step the **error-corrected key** is compressed to **final-secure key** by a **shrinking factor** $\Large\tau$.

The amount of compression must bound the amount of information leaked **during quantum transmission and error correction**. This means here we are checking the leaking information is lower than the specified value or not.

These calculations are performed using methods of generalized privacy amplification theory. This theory makes the worst case assumption that all errors are potentially caused by eavesdropping.

The result of this theory tells us length of **final-key** 
$$r = n\tau -k -t$$
where ,
- $n \rightarrow$ is length of raw key
- $k \rightarrow$ is no. of bits disclosed during error correction
- $t \rightarrow$ is security parameter
- $\tau \rightarrow$ is Shrinking factor

**Idea of QKD is to generate secure, symmetric encryption keys to distant locations. And Security should not be compromised.**

# BB84 QKD Protocol:

![BB84.jpg](attachment:19071e53-2dbb-4e41-aa11-db5ccf5bac26.jpg)

# DPS QKD:

![DPS_QKD.png](attachment:d1929c6e-e29d-4ee5-9885-d70e0dc5d9db.png)

Differential phase shift QKD, was proposed by **Inoue** in 2002.

- Here alice generates a train of Phase-encoded pulses which are attenuated such that the mean photon number is **<1**.
- There after she randomly encodes to one of the two non-orthogonal states.
- These pulses are then transmitted through this Quantum channel and recived by the bob.
- Bob decodes the signal using optical interferometer, where he superimposes the consecutive pulses.
- Based on resulting phase differeneces between the cosecutive pulses a constructive interference occurs at either of these two detectors (*SPD1 or SPD2*).
- This results into giving out a train of binary data as raw-key.

- Now the post-processing starts and ends with generation of secure key.
- But all of these things are correct only when **QBER**(*Quantum Bit error rate*) is less than threshold value. Else the process will be terminated.

For more information kindly go through [this paper](../DPSQKD.pdf)

# CV-QKD:

![CV_QKD.jpg](attachment:ea52c2d4-2031-4434-842e-9f7500c14873.jpg)

The above image describes **Long-distance continuous-variable–quantum key distribution (CV-QKD) system**.

- Alice’s station consists of a **continuous-wave (CW)** laser operating at **1550 nm**, an **in-phase and quadrature (IQ) modulator** with an **automatic bias controller (ABC)** for producing coherent states at sideband frequencies.

- A **digital-to-analog converter (DAC)** with a resolution of **16 bits** and a sampling rate of **1 gigasample/s** was used to drive the **IQ modulator**.

- A **variable optical attenuator (VOA)** was used after the **IQ modulator** to adjust the **modulation variance** of the quantum signal.

- A **Faraday isolator (FI)**, whose forward direction is indicated by the arrow, is used before a **100-km ultralow-loss** fiber channel that constitutes the quantum channel.

- Bob’s station consists of a **polarization controller (PC)** to adjust the polarization of the incoming signal and a **balanced beam splitter** to overlap this signal with a **LO** generated from another **CW laser (unlocked/free-running with respect to Alice’s laser)**.

- The signal was detected and digitized using a **balanced detector (BD)**, followed by an **analog-to-digital converter (ADC)** with a sampling rate of **1 gigasample/s**.

### NOTE : 
**EC** $\large\rightarrow$ electric connection
**SMF** $\large\rightarrow$ single-mode fiber
**PMF** $\large\rightarrow$ polarization-maintaining fiber.

To get more information regarding above diagram please refer [this paper](https://www.science.org/doi/10.1126/sciadv.adi9474).

In CV-QKD, the quantum signals typically consists with light information encoded in quadrature of its electro-magnetic fields. It uses coherent homodyne and heterodyne detection to continuosly retreive the Quadrature value of the light to distill the key.

- This form of QKD promises high key rates for metro network and it appears that there is no need for dedicated optical links as well.

# Counterfactual QKD :

In his classic treatise on quantum mechanics, Dirac famously asserts, **“Each photon then interferes only with itself.Interference between different photons never occurs.”** 

![Mach-Zender_IFM.png](attachment:d2a16cfe-9813-44ba-84a1-4ca44a4769e0.png)

For the explanation kindly go through the paper [Quantum counterfactuality with identical particles by Vinod N. Rao, Anindita Banerjee and R. Srikanth](https://arxiv.org/pdf/2203.10847)

# Potential Attacks by Quantum Adversary :

![PotentialAttacks_on_QKD.png](attachment:9ac0263a-b3a0-4c2c-97ea-f8b3b15d63b2.png)

There are 3 types of attacks that can be performed on QKD by some Quantum Adversary. They are:
1. Incoherent or Individual attack.
2. Collective attack
3. Coherent Attack

Here we consider that the adversary will apply its technique on the **Quantum channel** but it can **only listen and not tamper** the classical channel. Thats why we say in QKD we have secure Classical channel and insecure Quantum Channel.

## Incoherent Attack :

![Incoherent_Attack.jpg](attachment:708bf88b-bde1-4b96-943a-253bc2642830.jpg)

The Basic idea behind incoherent attack is that **eve** is restricted to entangling a Quantum Probe to each qubit independently. The probes are stored in Quantum Memory until the measurement basis are announced then each probe is measured independently.

The examples include 
- Intercept and Resend Attack
- Beam splitter attack
- Photon number splitting attack or
- General individual attacks.

![Attacks_on_QKD.png](attachment:664e4a6a-802a-499f-963d-1218507405e7.png)

The following image shows the explaination of incoherent attack mathematically.

![Incoherent_Attack_mathematical_Explanation.png](attachment:53b1ff4f-19d2-4d15-9a94-8230973090ed.png)

Here Unitary operations performed by **Eve** in computational-basis are highlighted as **(1) and (2)** where as the operations in diagonal basis are highlighted as **(3) and (4)**. Here **eve** has to select the unitary transformation such that the error threshold introduced by **eve** is less and maximize **eve's** probability to guess the right bit.


## Collective attack :

![Collective_attack.png](attachment:68c5df23-774f-4c16-9f84-89220b82bd97.png)

In collective attack **eve** can entangle their system similar to indivdual attack. However, **eve** can perform a global measurement on all their probes, i.e., a special measurement called **Positive operator valued measurement** on all the probes considering it as single quantum system.

- This will allow eve to take advantage of correlations from classical communication during post processing.

## Coherent attack :

![CoherentAttack.png](attachment:6ba12f42-6bda-463e-a053-e65c57eacf5e.png)

Out of the **3** attacks this is the most potential attack. 

Here **Eve** treats the entire transmission as one system. **Eve** entangles their system with probe of huge dimensionality with alice's transmitted photons. So it is extremely difficult to establish security against these type of attacks. 