Raphael Houlmann

Provably secure and practical quantum key distribution over 307 km of optical fibre

A discrete-variable quantum key distribution system that is capable of distributing a provably-secure cryptographic key over 307 kilometres is demonstrated at a telecom wavelength.

A fast and versatile quantum key distribution system with hardware key distillation and wavelength multiplexing

We present a compactly integrated, 625 MHz clocked coherent one-way quantum key distribution system which continuously distributes secret keys over an optical fibre link. To support high secret key rates, we implemented a fast hardware key distillation engine which allows for key distillation rates up to 4 Mbps in real time. The system employs wavelength multiplexing in order to run over only a single optical fibre. Using fast gated InGaAs single photon detectors, we reliably distribute secret keys with a rate above 21 kbps over 25 km of optical fibre. We optimized the system considering a security analysis that respects finite-key-size effects, authentication costs and system errors for a security parameter of eQKD = 4 × 10−9.

Experimental Bit Commitment Based on Quantum Communication and Special Relativity

Bit commitment is a fundamental cryptographic primitive in which Bob wishes to commit a secret bit to Alice. Perfectly secure bit commitment between two mistrustful parties is impossible through asynchronous exchange of quantum information. Perfect security is however possible when Alice and Bob split into several agents exchanging classical and quantum information at times and locations suitably chosen to satisfy specific relativistic constraints. Here we report on an implementation of a bit commitment protocol using quantum communication and special relativity. Our protocol is based on [A. Kent, Phys. Rev. Lett. 109, 130501 (2012)] and has the advantage that it is practically feasible with arbitrary large separations between the agents in order to maximize the commitment time. By positioning agents in Geneva and Singapore, we obtain a commitment time of 15 ms. A security analysis considering experimental imperfections and finite statistics is presented.

Sine gating detector with simple filtering for low-noise infra-red single photon detection at room temperature

We present and analyze a gated single photon avalanche detector using a sine gating scheme with a simple but effective low-pass filtering technique for fast low-noise single photon detection at telecom wavelength. The detector is characterized by 130 ps short gates applied with a frequency of 1.25 GHz, yields only 70 ps timing jitter and noise probabilities as low as 7·10−7 per gate at 10% detection efficiency. We show that the detector is suitable for high rate quantum key distribution (QKD) and even at room temperature it could allow for QKD over distances larger than 25 km.

Free-running single-photon detection based on a negative feedback InGaAs APD

InGaAs/InP-based semiconductor avalanche photodiodes are usually employed for single-photon counting at telecom wavelength. However they are affected by afterpulsing which limits the diode performance. Recently, Princeton Lightwave has commercialized a diode integrating monolithically a feedback resistor. This solution effectively quenches the avalanche and drastically reduces afterpulsing. Here, we report the development and characterization of a detector module based on this diode, implementing an active hold-off circuit which further reduces the afterpulsing and notably improves the detector performances. We demonstrate free-running operation with 600 Hz dark count rate at 10% detection efficiency. We also improved the standard double-window technique for the afterpulsing characterization. Our algorithm implemented by a FPGA allows one to put the APD in a well-defined initial condition and to measure the impact of the higher order afterpulses.

A high-speed multi-protocol quantum key distribution transmitter based on a dual-drive modulator

We propose a novel source based on a dual-drive modulator that is adaptable and allows Alice to choose between various practical quantum key distribution (QKD) protocols depending on what receiver she is communicating with. Experimental results show that the proposed transmitter is suitable for implementation of the Bennett and Brassard 1984 (BB84), coherent one-way (COW) and differential phase shift (DPS) protocols with stable and low quantum bit error rate. This could become a useful component in network QKD, where multi-protocol capability is highly desirable.

24-Hour Relativistic Bit Commitment

Bit commitment is a fundamental cryptographic primitive in which a party wishes to commit a secret bit to another party. Perfect security between mistrustful parties is unfortunately impossible to achieve through the asynchronous exchange of classical and quantum messages. Perfect security can nonetheless be achieved if each party splits into two agents exchanging classical information at times and locations satisfying strict relativistic constraints. A relativistic multiround protocol to achieve this was previously proposed and used to implement a 2-millisecond commitment time. Much longer durations were initially thought to be insecure, but recent theoretical progress showed that this is not so. In this Letter, we report on the implementation of a 24-hour bit commitment solely based on timed high-speed optical communication and fast data processing, with all agents located within the city of Geneva. This duration is more than 6 orders of magnitude longer than before, and we argue that it could be extended to one year and allow much more flexibility on the locations of the agents. Our implementation offers a practical and viable solution for use in applications such as digital signatures, secure voting and honesty-preserving auctions.

Megahertz-Rate Semi-Device-Independent Quantum Random Number Generators Based on Unambiguous State Discrimination

An approach to quantum random number generation based on unambiguous quantum state discrimination is developed. We consider a prepare-and-measure protocol, where two nonorthogonal quantum states can be prepared, and a measurement device aims at unambiguously discriminating between them. Because the states are nonorthogonal, this necessarily leads to a minimal rate of inconclusive events whose occurrence must be genuinely random and which provide the randomness source that we exploit. Our protocol is semi-device-independent in the sense that the output entropy can be lower bounded based on experimental data and a few general assumptions about the setup alone. It is also practically relevant, which we demonstrate by realizing a simple optical implementation, achieving rates of 16.5 Mbits/s. Combining ease of implementation, a high rate, and a real-time entropy estimation, our protocol represents a promising approach intermediate between fully device-independent protocols and commercial quantum random number generators.

Quantum Random Number Generation for 1.25-GHz Quantum Key Distribution Systems

Security proofs of quantum key distribution (QKD) systems usually assume that the users have access to source of perfect randomness. State-of-the-art QKD systems run at frequencies in the gigahertz range, requiring a sustained gigahertz rate of generation and acquisition of quantum random numbers. In this paper, we demonstrate such a high-speed random number generator. The entropy source is based on an amplified spontaneous emission from an erbium-doped fibre, which is directly acquired using a standard small form-factor pluggable module. The module connects to the field programmable gate array (FPGA) of a QKD system. A real-time randomness extractor is implemented in the FPGA, and achieves a sustained rate of 1.25 Gb/s of provably random bits.

Detector-device-independent quantum key distribution: Security analysis and fast implementation

One of the most pressing issues in quantum key distribution (QKD) is the problem of detector side-channel attacks. To overcome this problem, researchers proposed an elegant “time-reversal” QKD protocol called measurement-device-independent QKD (MDI-QKD), which is based on time-reversed entanglement swapping. However, MDI-QKD is more challenging to implement than standard point-to-point QKD. Recently, an intermediary QKD protocol called detector-device-independent QKD (DDI-QKD) has been proposed to overcome the drawbacks of MDI-QKD, with the hope that it would eventually lead to a more efficient detector side-channel-free QKD system. Here, we analyze the security of DDI-QKD and elucidate its security assumptions. We find that DDI-QKD is not equivalent to MDI-QKD, but its security can be demonstrated with reasonable assumptions. On the more practical side, we consider the feasibility of DDI-QKD and present a fast experimental demonstration (clocked at 625 MHz), capable of secret key exchange up to more than 90 km.