News Analysis   More News Analysis

Quantum Crypto Gets a Chance

no ratings

Quantum cryptography is starting to emerge in commercial form, but it's far from being a major part of the industry. In fact, even if it works as promised, the technology applies only to specialized situations and needs.

Products are finally coming to market, though, the culmination of more than a decade of research. Both ID Quantique in Geneva and MagiQ Technologies Inc. recently launched products in this market for the esoteric stuff.

Quantum cryptography doesn't replace all of cryptography. It handles only one aspect, known as the key exchange. The key is the number that allows anyone to crack the code, so obviously, cryptography doesn't work unless the key is kept secret.

"Quantum cryptography" refers to a way of sending that key. It's done with individual photons and exploits the principles of quantum mechanics. Anyone tapping the line to observe the photons will disrupt the process, and both the sender and receiver will know they've got an intruder. Once the key is received, the rest of the security process is handled normally: Data is encrypted using conventional electronics and sent along the usual copper or fiber route.

The key to quantum key exchange lies in having a detector sensitive enough to work at the individual photon level. That's the product ID Quantique has concentrated on, along with a hardware-based random-number generator (see Quantum Cipher Sent by Fiber).

MagiQ's trick was to take advantage of commercially available parts and bundle them into a box, the first time that's been attempted for the commercial market. MagiQ is developing its own photonics as well, but for now, the photonic detector inside its box comes from another company, as do the electronics that perform the encryption and data handling (see MagiQ Demos Quantum Cryptography and Startup Says Quantum Crypto Is Real).

This wasn't practical before now, due to the price. "One of the optical components we use costs $500. Three or four years ago, it would have cost $15,000," says Bob Gelfond, MagiQ CEO.

Price hasn't been the only barrier, though. Tom Hausken, an optical components analyst for Strategies Unlimited, actually had a look at quantum crypto about 10 years ago as a staff member at Congress. He helped conduct an analysis that ultimately deemed the technology impractical. At the time, it couldn't cover long distances and required polarization-maintaining fiber.

Distance is a problem because the farther the photon travels, the greater the chance of it getting absorbed or scattered. In other words, it might not reach the other side. But researchers have gotten photons to survive longer and longer trips. Mitsubishi Electric Corp. reported transmissions of 87 kilometers a year ago, and NEC Corp. (Nasdaq: NIPNY; Tokyo: 6701) boasted of a 100km, single-photon transmission in July (see Mitsubishi Creates Quantum Crypto and NEC Transmits Quanta).

And most efforts these days don't need specialized fiber. "We're really focused on using standard telecom fiber. The better the fiber, the better the distance, but -- standard fiber," says Grégoire Ribordy, CEO of ID Quantique.

But there's another troublesome factor: The quantum key exchange has to take place on a dedicated fiber; you can't have other traffic piling its way in there and mucking up the single-photon transmission. For that reason, the technology is still aimed at "a very restricted class of networks," Ribordy says, conceding that "it's not going to replace the existing technology" any time soon.

But here, MagiQ claims to have still more tricks up its sleeve, including a way to send the quantum key distribution across ordinary DWDM links. That technology won't emerge any time soon, however, and Gelfond isn't giving any hints about the timeline.

Despite all the progress, there's a chance quantum cryptography might never have its day. For one thing, it's debatable whether companies need the "unbreakable" security of quantum crypto. "The greatest threats to computer security are: fire and water damage, system failures, insiders, worms, and viruses. Taps are way down the list, so far as we know," Hausken writes in an email.

It's certain that quantum cryptography will continue to advance, due especially to government interest. Both ID Quantique and MagiQ also report seeing interest from the financial community. But Hausken and others doubt whether the concept matters much to the greater commercial world.

He's also a bit leery about whether the technology is really ready for commercialization. After hearing about MagiQ's box last week, he noted that security is an area that's important but still tends to be overhyped.

"Sometimes there are companies that exploit the public's ignorance of a subject for personal gain. It's no different than food supplements or skincare products, I guess. So I'm not saying that anyone is a shyster. Let's call it opportunism," Hausken writes.

— Craig Matsumoto, Senior Editor, Light Reading
Newest Comments First       Display in Chronological Order
DarkWriting
User Ranking
Tuesday November 18, 2003 2:13:00 PM
"Sometimes there are companies that exploit the public's ignorance of a subject for personal gain. It's no different than food supplements or skincare products, I guess. So I'm not saying that anyone is a shyster. Let's call it opportunism," Hausken writes.

This guy is typical of the business sentiment today. Nobody is guilty of committing fraud, they are all just good businessmen. You see this everyday on the business talk shows on CNBC and CNN (Kudlow and Cramer, Wall Street Week). Nobody is culpable per the business community, Wall Street, VCs, Public companies, the government (SEC) etc. The behaviour is pervasive. Expect more Enrons folks. Elliot Spitzer for President!

DW
vermillion
User Ranking
Monday November 17, 2003 11:51:55 AM
This saying is getting old on Light Reading, but it is important not to focus too much on the technology, and to look at this from a business perspective.

MagiQ is not selling technology _per_se_.

What these guys are selling is "peace of mind for the ultra-paranoid."

Both the business community and military intelligence/homeland security interests care a lot about information security, risk management, and predictability.

The "ultra-paranoid" have to fear that someone will quietly develop a working quantum computer and put it to work at key cracking, so that computational complexity alone would become ineffective as the basis of encryption.

So the question becomes, isn't $50K or $100K per 100 km a small price to pay in sensitive applications, if that provides insurance against someone quietly developing a quantum computer and cracking your encryption _without_your_knowledge_?

MagiQ doesn't need a mass market to succeed. They can take industry standard components at relatively low cost and build them into a slick quantum key distribution box at a huge mark-up. If they can make it to 1000 units per year, they would have revenues of $50M on a single product, which is fantastic for a start-up.

I predict that they will tap into a rich vein of post- 9/11 paranoia and will make out like bandits!

-v
vermillion
User Ranking
Monday November 17, 2003 11:37:39 AM
neomeso writes:
"How do they know the transmission was indeed sent using a light signal that provides the "unbreakable" security? In other words, how do they know with absolute certainty that the system is not malfunctioning and actually producing a classical state that can be tapped just when they send the key?"

--
One guess would be that they have to sometimes deliberately start with what they assume is a single photon and artificially eavesdrop on the link, ensuring that they always detect that eavesdropping event.

i.e. I guess they have to go for some kind of practical compromises, since I think they may have a commercial receiver that functions as a single photon detector, but I doubt that they have a true single photon source...just an attentuated source that produces less than one photon in the link on a time-averaged basis.

If they work with an average of much less than one photon in the link, and they may simply rely on frequent key changes to diminish the risk due to those very rare random events where 2 or more photons are in the pipe.


-v
vermillion
User Ranking
Monday November 17, 2003 11:32:04 AM
no ratings
whyiswhy writes:
"Although I agree and understand the common algorithms are robust from the physisists' POV, they presume a lot of physical security and/or metrics for the optical link.


I can tell you without a doubt the link, and thus the key, can be compromised, if that is the only method you use."

WRONG! If they use single photons, then the Heisenberg Uncertainty Principle guarantees that an eavesdropper or other interference would be detected.

So the link can certainly be interrupted, but the point is that the parties exchanging keys know when that occurs and track occurences.

-v
whyiswhy
User Ranking
Friday November 14, 2003 1:54:26 PM
no ratings
Although I agree and understand the common algorithms are robust from the physisists' POV, they presume a lot of physical security and/or metrics for the optical link.

I can tell you without a doubt the link, and thus the key, can be compromised, if that is the only method you use.

The easiest and cheapest way to get secure key exchange is to send parts of the key over different media, via different routes. The final part of the key can go over ordinary email, at whatever BW you like, up to the design limit.

"The" key requires all the parts to work.

So the issue is key design, not link design.

-Why
vishala
User Ranking
Friday November 14, 2003 12:00:48 AM
The article seems to downplay the the importance of quantum crypto.Why quantum crypto. alone ,quantum computing itself is the future.(miniaturization will lead us to a quantum world..no doubt!).Article was saying security is not that much a big issue.As more and more financial transactions are being done using e-methods these days,u can no way say security is not that much a big problem for commercial world.Again the need to hav a dedicated channel for key exchange-as the article says before long we will be able to sent them in a DWDM channel..

anyway hats off to MagicQ..hope its only a beginning..
neomeso
User Ranking
Thursday November 13, 2003 11:55:03 AM
no ratings
How do they know the transmission was indeed sent using a light signal that provides the "unbreakable" security? In other words, how do they know with absolute certainty that the system is not malfunctioning and actually producing a classical state that can be tapped just when they send the key?

For general discussion, is there more than one scheme? Or do these companies all use the same essential scheme?
LIGHT READING MARKET PLACE
Network Tool Guide
Fix Issues Faster. Choose the Right Portable Network Tools in Our Online Guide.
The Time is Now for FCoE
Join Cisco and its partners for a live informative webcast on 12/10/09
Master Your Asset Retrieval
OnProcess helps leading companies return inventory faster, saving $$Millions
TruePulse Buys&Sell Central Office Equip
Nortel, Cisco, Alcatel, Lucent, Tellabs, Calix, Occam & Anda: GigE, DWDM, SONET
Used and Refurbished Cisco Routers
Purchase Your Routers From Network Liquidators. Savings of Up to 90% with a Lifetime Warranty!
The blogs and comments are the opinions only of the writers and do not reflect the views of Light Reading. They are no substitute for your own research and should not be relied upon for trading or any other purpose.
Most Popular
Read
White Papers SPONSORED CONTENT
Featured
Podcasts SPONSORED CONTENT
Services Transformation - by Alcatel-Lucent Communications service providers want to be able to bring new services to...
Rural Ops Bridge the Digital Divide - by Tellabs Tellabs helps IOCs build triple play networks
Driving Network Transformation - by Alcatel-Lucent In order to deal with competitive pressures, the change in service models...
Back(haul) to the Future - by Tellabs Tellabs works with Vodafone to meet growing mobile broadband demands.
MRS Logistica - by Tellabs Tellabs helps MRS Logistica transform its existing, largely outdated TDM networks to IP.
Carrier Ethernet Offers an Enterprising Solution - by Tellabs What is VPLS and how does it work? Tellabs takes a closer look.
Swisscom’s Network Makeover - by Tellabs Fresh off the launch of 7.2 Mbps HSDPA, Swisscom sees 3G as an opportunity to launch a unifying ...
Telecom in Namibia - by Tellabs Tellabs helps Telecom Namibia with next-gen challenges
Companies
Alcatel-Lucent (5872), AT&T (1948), BellSouth (848), BT (1287), Cablevision (615), Cisco (5297), Comcast (1910), Cox Communications (858), Deutsche Telekom (807), eBay (Skype) (345), Ericsson (1617), France Telecom (964), Google (489), Huawei (1045), Intel (1127), Juniper (2022), Microsoft (1115), Motorola (1486), Nokia Siemens Networks (2645), Nortel (3956), NTT (173), Siemens (1359), Sprint (1059), Telefonica (439), Time Warner Cable (969), Verizon (2587), Vodafone (510), Yahoo (339)

Broadband
Access equipment (2169), Access technologies (2378), Broadband loop carriers / multiservice access nodes (388), Cable modem termination systems (CMTSs) (1104), Cable TV chips (286), DSL (2425), DSL chips (227), DSLAMs (703), Free-space optics (35), FTTx (3265), Gaming consoles (58), Gaming servers (22), Media adapters (23), Municipal networks (106), PON (1364), PON chips (217), Satellite (497), WiMax (880), Wireless LAN (354)

Cable Digital
Cable Modems (681), Cable/MSO equipment (2802), CableLabs (470), Compression (MPEG-2 and MPEG-4) (279), Docsis (1046), Embedded multimedia terminal adapters (E-MTAs) (213), Head-ends (233), PacketCable (129), QAM (307)

Chips, Components & Subsystems
ASICs & FPGAs (101), ATCA (480), ATM chips (13), Comm chips (2360), Dispersion compensators (149), Lasers (920), Modulators (163), Mux/demuxes (299), Network processors (933), Optical amplifiers (349), Optical channel monitors (92), Optical components (2824), Speciality fiber (94), Switches & OADMs (397), Transceivers (1247), Transmission fiber (419), Variable optical attenuators (139)

Ethernet
10-Gbit/s Ethernet switches (1454), Access devices (272), ATM switches (333), Circuit emulation (16), Converged access (103), Ethernet chips (573), Ethernet equipment (2212), Ethernet over copper (231), Ethernet PONs (160), Ethernet services (1909), Ethernet technologies (568), Multipoint (131), Multiservice edge equipment (143), Multiservice provisioning platforms (622), Multiservice switches (389), PBT (Provider Backbone Transport) (256), Point-to-point (139), Pseudowire (Layer 2 tunnels) (132)

IP & Convergence
B-RASs (229), Cell/WLAN (77), Compression equipment (13), Core routers (1294), DNS (56), Edge routers (1686), ENUM (53), Fixed/Mobile Convergence (485), GMPLS (76), IMS (1088), IMS Control Layer (27), IMS Service Layer (27), IP equipment (1224), IP software (381), IP technologies (1482), IPv6 (99), Layer 3 VPNs (194), MPLS (687), MPLS (1774), Multicast (36), P2P (258), Pseudowire (Layer 2 tunnels) (132), QOS (350), SIP (396), Traffic managers (808), Wireline/Wireless (59)

Mobile/Wireless
3G Evolution (175), Broadcast (Mobile TV, etc.) (189), Carrier WiFi (226), CDMA (3G) (367), Core Network (173), EV-DO (126), Femtocells (30), Fixed Wireless (Microwave, etc.) (71), Fourth Generation (4G) Wireless (70), GSM/EDGE (430), HSDPA/HSUPA (321), IMS Core (47), Long-Term Evolution (LTE) (188), Mobile Advertising (24), Mobile Music (31), Mobile TV (130), Mobile Video (65), Mobile WiMax/WiBro (92), Mobile/Wireless (5877), Packet Core (61), Radio Access Network (236), TD-SCDMA (Chinese 3G) (67), Transmission (38), Ultra-Mobile Broadband (UMB) (8), UMTS(3G) (340), Voice Core (21), WiMax (880), Wireless Backhaul (272), Wireless Chips (191), Wireless LAN (354)

Optical Networking
40-Gbit/s transmission (452), Core optical switches (760), CWDM (289), DWDM (1842), Long-haul WDM equipment (654), Metro optical switches, ROADMs (1173), Metro WDM equipment (773), Multiservice provisioning platforms & add/drop muxes (375), Optical equipment (2191), Optical switches & crossconnects (398), Optical technologies (417), Sonet/SDH (1036), Sonet/SDH chips (351), Wavelength services (305)

Security
Anti-virus (29), Denial-of-service attacks (44), Encryption (97), Endpoint security (22), Firewalls (61), Intrusion detection & prevention (45), IPSec VPN (801), Security (1835), SSL VPN (862), URL filtering (12), User authentication (24)

Services Software
Activation (415), Billing systems (761), Content/software downloads (231), Customer relationship management (231), Data Integrity (61), Element management systems (36), Fault management (69), Inventory management (153), Mediation systems (204), Messaging (231), Middleware (72), Mobile location (41), OSS (2584), Performance monitoring (335), Policy control (269), Provisioning (553), Revenue assurance & fraud management (334), Service delivery platforms (SDPs) (328), Service management (220), Service-oriented architectures (310), Services (2480), Web gateways (56), Web services (124), XML (51)

Test & Measurement (Sponsored by Etaliq Inc)
Access equipment Access test & measurement equipment (126), Comm chips Comm chips test & measurement equipment (29), Ethernet equipment Ethernet test & measurement equipment (170), IP equipment IP test & measurement equipment (122), MPLS MPLS test & measurement equipment (14), Optical components Optical components test & measurement equipment (113), Optical equipment Optical test & measurement equipment (886), OSS OSS test & measurement (1059), Sonet/SDH Sonet/SDH test & measurement equipment (1599), Test & measurement (1755), VOIP equipment VOIP test & measurement equipment (145)

Video (Sponsored by Ericsson Televisionary)
Broadcast (Mobile TV, etc.) (189), Broadcast video equipment (including encoding) (730), Content delivery network (CDN) (394), Content protection (270), DVRs (665), Internet Video (840), IPTV (3461), Middleware & business support systems (845), Set-top boxes (1624), Stored video servers (379), TV (3581), Video equipment (2448), Video services (4130), Video software (1349), Videophone (185), VOD (2635)

VOIP
Application servers (186), Centrex (198), Conferencing (78), Contact centers (38), Enhanced voice (34), Enterprise (637), Media gateways (357), Messaging (73), Presence management (43), Residential (835), Session border controllers (398), Signaling gateways (104), Softswitches (1090), VOIP chips (167), VOIP equipment (3423), VOIP services (3768), VOIP software (620), VOIP VPNs (28), Wholesale (220)