Quantum Computing Raises As Many Problems As It Solves

New technologies bring new opportunities and new risks, and quantum computing is no exception. While companies and governments are investing billions in quantum technologies, many questions remain about usage and use cases. These include potential ethical considerations from abuse, misuse, or unintended consequences. 

Some experts have predicted that within a decade, quantum computers could be used by hackers and hostile nation-states to break existing encryption protocols. This would be a major problem for numerous Internet services, including e-commerce and other virtual financial transactions, which all rely on encryption.

The US Cybersecurity and Infrastructure Security Agency (CISA) has warned action should  be taken to help protect networks from cyber security threats that will emerge in the advent of power of quantum computing. Now, the US National Institute of Standards and Technology (NIST) has endorsed cryptographic technologies that are thought to be resistant to attack from quantum computers. 

The privacy of online communication is currently protected by cryptography, which shields information as it travels around the Internet. It secures everything from making online purchases to accessing work email remotely. With capabilities of quantum computing growing rapidly, industry experts reckon that it will take at least another 10 years before quantum computers with very large numbers of qubits are available.

The power of quantum technologies can be used against quantum technologies, and protect our data against quantum hacking. Eindhoven University of Technology is currently setting up a unique testbed to validate this technology in several societal settings, thus paving the way for a fast and unhackable quantum Internet. 

The immense computing power of quantum is especially useful in calculations with many different outcomes: these can be done in one operation all at the same time. 

Building a fully functional quantum computer has, for many years, been one of our most engaging scientific and engineering pursuits. Quantum computers could run algorithms that could break the public key encryption we currently use. Quantum computing exploits the puzzling behavior that scientists have been observing for decades in nature's smallest particles, think atoms, photons or electrons. At this scale, the classical laws of physics ceases to apply, and instead we shift to quantum rules. 

What Makes Quantum Different?

The systems we have been using since the 1940s in various shapes and forms, laptops, smartphones, cloud servers, supercomputers, are known as classical computers. Those are based on bits, a unit of information that powers every computation that happens in the device.  

  • In a classical computer, each bit can take on either a value of one or zero to represent and transmit the information that is used to carry out computations. Using bits, developers can write programs, which are sets of instructions that are read and executed by the computer.  

Classical computers have been indispensable tools in the past few decades, but the inflexibility of bits is limiting. As an analogy, if tasked with looking for a needle in a haystack, a classical computer would have to be programmed to look through every single piece of hay straw until it reached the needle.  

  • At the heart of any quantum computer are qubits, also known as quantum bits, and which can loosely be compared to the bits that process information in classical computers. Qubits, however, have very different properties to bits, because they are made of the quantum particles found in nature, those same particles that have been obsessing scientists for many years. 

One of the properties of quantum particles that is most useful for quantum computing is known as superposition, which allows quantum particles to exist in several states at the same time. The best way to imagine superposition is to compare it to tossing a coin: instead of being heads or tails, quantum particles are the coin while it is still spinning.  

By controlling quantum particles, researchers can load them with data to create qubits, and thanks to superposition, a single qubit doesn't have to be either a one or a zero, but can be both at the same time. In other words, while a classical bit can only be heads or tails, a qubit can be, at once, heads and tails. 

This means that, when asked to solve a problem, a quantum computer can use qubits to run several calculations at once to find an answer, exploring many different avenues in parallel.  

Cyber security researchers are worried that this new type of computer, based on quantum physics rather than  standard electronics, could break most modern cryptography. The effect would be to render communications as insecure as if they weren’t encoded at all.

Quantum computing poses both opportunities and risks to the cyber security environment. The current state of research into quantum technologies and their applications is still at an early stage, offering only a partial understanding of how and when to prepare for future quantum computing. While quantum computers powerful enough to undermine current crypto-graphic defences are a decade away or more, experience has shown that it will likely take an equivalent amount of time to transition to quantum-resistant approaches to cryptography.

The magnitude of the threat and the persistence of encrypted information has spurred public and private sector efforts to develop quantum-resistant algorithms and prepare for adoption.

While researchers don't understand everything about the quantum world, what they do know is that quantum particles hold immense potential, in particular, to hold and process large amounts of information. Successfully bringing those particles under control in a quantum computer could trigger an explosion of compute power that would phenomenally advance innovation in many fields that require complex calculations, like drug discovery, climate modelling, financial optimisation or logistics. “For all the dramatic advances offered by quantum computing, it could create a huge threat to the security of our data,” Terry Halvorsen, IBM’s general manager for client and solutions development in the Federal and Public market. “It offers the powerful potential to break certain types of cryptography that safeguards many critical communications.”

The quantum computers that exist today are not capable of breaking any commonly used encryption methods, however, the quantum computing age is coming and with it a serious threat to encrypted communications.

The technology is still at an early stage and will take several decades before it reaches maturity, which allows a window of opportunity to develop IT infrastructures to be prepared for a quantum future. Taking autonomous driving as the first use case, the researchers aim to have the world’s first quantum-secured autonomous driving car ready by next year. Idelfonso Tafur Monroy, TU/e Professor at the Electro-Optical Communication group and the Center for Quantum Materials and Technology Eindhoven (QT/e) recognises the particular threat to systems that require a lot of accurate control, such as autonomous driving. “For example, a hack could trick others into thinking your car is in a different location, slowing down, or changing direction,” he says. “It is even possible that your car is hacked and commandeered by someone external to the vehicle,” Monroy says.

To crack current encryption, a conventional computer takes longer than the age of the universe to try-out every possible solution. A quantum computer tries them all at once and cracks it in the blink of an eye. In Quantum Key Distribution (QKD), quantum properties of photons such as polarisation state and entanglement, wonders of quantum physics, are used to create cryptographic keys.

These keys can be seen as recipes that tell the recipient of some secret data what measurements of the photons are needed to properly decode and access the data. The problem, however, is that at the moment there is no existing infrastructure to determine if a QKD system is actually safe when integrated into existing telecommunication infrastructure. 

 WEF:     NIST:    Nature:    Deloitte:   I-HLS:    IBM:    ZDNet:    American Scientist:    Belfer Center:   PictetAM:

You Might Also Read: 

Quantum Sensors Have Arrived:
 

« Even Air-Gapped Computers Are Vulnerable To Attack
Many Cyber Security Experts Don’t Understand The Systems They Are Trying To Secure »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

International Organization for Standardization (ISO)

International Organization for Standardization (ISO)

ISO is an independent, non-governmental international standards organization. The ISO/IEC 27001 is the standard for information security management systems.

SecuriThings

SecuriThings

SecuriThings is a User and Entity Behavioral Analytics (UEBA) solution for IoT security.

CS Group

CS Group

CS Group offers a complete range of security solutions from consultancy to security maintenance and from secure infrastructure design to security governance.

CERT Syria

CERT Syria

CERT Syria is the national Computer Emergency Response Team for Syria.

Smokescreen

Smokescreen

Smokescreen's IllusionBLACK employs deception technology to detect, deflect and defeat advanced hacker attacks.

Digital Arts

Digital Arts

Digital Arts provides internet security software and appliance products for companies and individuals.

Hardenite

Hardenite

Hardenite solution helps R&D, DevOps and IT teams to continuously manage security risks and hardening efforts of any Linux OS – based product, throughout the product life cycle.

Level Effect

Level Effect

Level Effect is developing new capabilities to bring a unique perspective on proactive network defense and advanced security analytics.

Go Grow

Go Grow

Go Grow is a business oriented accelerator program at Copenhagen School of Entrepreneurship. Targeted technologies include IoT, AI and Cybersecurity.

Sonrai Security

Sonrai Security

Sonrai Security delivers an enterprise security platform focused on identity and data protection inside AWS, Azure, and Google Cloud.

European Cyber Competence Network

European Cyber Competence Network

The purpose of the European Cyber Competence Network is to retain and develop the cybersecurity technological and industrial capacities of the EU necessary to secure its Digital Single Market.

CloudCover

CloudCover

CloudCover is a software-defined cybersecurity risk solution that provides risk awareness, risk analytics, and data security in real time.

Data Priva

Data Priva

Data Priva is the UK's leading subscription-based data protection, governance, risk and and compliance service.

Apollo Information Systems

Apollo Information Systems

Apollo is a value-added reseller that provides our clients with the complete set of cybersecurity and networking services and solutions.

ViewQwest

ViewQwest

ViewQwest is a regional telecommunications & information technology services company. We specialize in providing Connectivity, Managed Network, Managed SD-WAN, and Managed Security solutions.

Edgio

Edgio

Edgio provides unmatched speed, security, and simplicity at the edge through globally-scaled media and applications platforms.

ConvergePoint

ConvergePoint

ConvergePoint is the leading compliance software provider on the Microsoft Office 365 SharePoint platform.