Security in Photonic Networks: Threats and Security Enhancement

We address emerging threats to the security of photonic networks as these networks become heterogeneous being opened to the upper layers, other operators, and end users. We review the potential threats, mainly loss of the confidentiality of user data transmitted through optical fibers and disturbances of network control, both of which could seriously damage the entire network. We then propose a novel conceptual model of a secure photonic network by introducing a quantum key distribution (QKD) network to its legacy structure. Secure keys generated by the QKD network are managed by key management agents (KMAs) and used to encrypt not only user data but also control signals. The KMAs cooperate with the generalized multiprotocol label-switching controller for secure path provisioning and drive photonic and modern crypto engines in appropriate combinations. Finally, we present a roadmap of a deployment scenario, starting from niche applications such as mission critical and business applications and the next. Digital cinema distribution through a photonic network is presented as an example of a niche application.

[1]  Arjen K. Lenstra,et al.  Factorization of a 768-Bit RSA Modulus , 2010, CRYPTO.

[2]  Yoshihisa Yamamoto,et al.  Differential-phase-shift quantum key distribution using coherent light , 2003 .

[3]  A R Dixon,et al.  Continuous operation of high bit rate quantum key distribution , 2010, 1005.4573.

[4]  Shoba Krishnan,et al.  Security Issues in All-Optical Networks , 2011, 2011 Annual SRII Global Conference.

[5]  Tao Deng,et al.  Covert low-power QoS attack in all-optical wavelength routed networks , 2004, IEEE Global Telecommunications Conference, 2004. GLOBECOM '04..

[6]  Stamatios V. Kartalopoulos,et al.  Security in Advanced Optical Communication Networks , 2009, 2009 IEEE International Conference on Communications.

[7]  Anthony Leverrier,et al.  Long Distance Quantum Key Distribution with Continuous Variables , 2010, TQC.

[8]  Paul R. Prucnal Optical Code Division Multiple Access : Fundamentals and Applications , 2005 .

[9]  Kenichi Ohhata,et al.  Consideration of the Implementation Circuit of Randomization for Physical Cipher by Yuen 2000 Protocol , 2008 .

[10]  Paul Toliver,et al.  Direct optical processing of M-ary code-shift-keyed spectral-phase-encoded OCDMA , 2007 .

[11]  Suresh Subramaniam,et al.  Analysis of optical amplifier gain competition attack in a point-to-point WDM link , 2002, SPIE ITCom.

[12]  Wolfgang Dür,et al.  Quantum Repeaters: The Role of Imperfect Local Operations in Quantum Communication , 1998 .

[13]  Prem Kumar,et al.  After Quantum Keys are Distributed: Physical-Layer Encryption Aided by Optical Noise , 2007 .

[14]  Neil Smith,et al.  Practical physical-layer encryption: The marriage of optical noise with traditional cryptography , 2009, IEEE Communications Magazine.

[15]  P. Chanclou,et al.  Scalable and multi-service passive optical access infrastructure using variable optical splitters , 2006, 2006 Optical Fiber Communication Conference and the National Fiber Optic Engineers Conference.

[16]  Eric Corndorf,et al.  Quantum-noise randomized data encryption for wavelength-division-multiplexed fiber-optic networks , 2005 .

[17]  Won-Young Hwang Quantum key distribution with high loss: toward global secure communication. , 2003, Physical review letters.

[18]  P. Grangier,et al.  Continuous variable quantum cryptography using coherent states. , 2001, Physical review letters.

[19]  J. Cirac,et al.  De Finetti representation theorem for infinite-dimensional quantum systems and applications to quantum cryptography. , 2008, Physical review letters.

[20]  Avi Zadok,et al.  Secure key generation using an ultra-long fiber laser: transient analysis and experiment. , 2008, Optics express.

[21]  T.H. Shake,et al.  Security performance of optical CDMA Against eavesdropping , 2005, Journal of Lightwave Technology.

[22]  Ozan K. Tonguz,et al.  Failure location algorithm for transparent optical networks , 2005, IEEE Journal on Selected Areas in Communications.

[23]  P. Toliver,et al.  Impact of spontaneous anti-Stokes Raman scattering on QKD+DWDM networking , 2004, The 17th Annual Meeting of the IEEELasers and Electro-Optics Society, 2004. LEOS 2004..

[24]  Guanglei Liu,et al.  Resilience of all-optical network architectures under in-band crosstalk attacks: a probabilistic graphical model approach , 2007, IEEE Journal on Selected Areas in Communications.

[25]  P. Townsend Simultaneous quantum cryptographic key distribution and conventional data transmission over installed fibre using wavelength-division multiplexing , 1997 .

[26]  Laurent Larger,et al.  Chaos-based communications at high bit rates using commercial fibre-optic links , 2005, Nature.

[27]  Artur Ekert,et al.  Less reality, more security , 2011 .

[28]  Makoto Honda,et al.  360km field transmission of 10 Gbit/s stream cipher by quantum noise for optical network , 2010, 2010 Conference on Optical Fiber Communication (OFC/NFOEC), collocated National Fiber Optic Engineers Conference.

[29]  Mark S. Leeson,et al.  Fault and attack management in all-optical networks , 2006, IEEE Communications Magazine.

[30]  Osamu Hirota Optical Communication Network and Quantum Cryptography , 2004 .

[31]  Naoya Wada,et al.  Secure optical bit- and block-cipher transmission using a single multiport encoder/decoder , 2008, OFC/NFOEC 2008 - 2008 Conference on Optical Fiber Communication/National Fiber Optic Engineers Conference.

[32]  J.P. Heritage,et al.  Advances in Spectral Optical Code-Division Multiple-Access Communications , 2007, IEEE Journal of Selected Topics in Quantum Electronics.

[33]  N. Gisin,et al.  Quantum repeaters with photon pair sources and multimode memories. , 2007, Physical review letters.

[34]  B. Wu,et al.  Advanced coding techniques for asynchronous fiber-optical CDMA , 2005, 2005 Quantum Electronics and Laser Science Conference.

[35]  H. Weinfurter,et al.  The SECOQC quantum key distribution network in Vienna , 2009, 2009 35th European Conference on Optical Communication.

[36]  Tao Wu,et al.  Cross-talk attack monitoring and localization in all-optical networks , 2005, IEEE/ACM Transactions on Networking.

[37]  D.Z. Chen,et al.  In-band quantum key distribution (QKD) on fiber populated by high-speed classical data channels , 2006, 2006 Optical Fiber Communication Conference and the National Fiber Optic Engineers Conference.

[38]  Masahide Sasaki,et al.  Photon level crosstalk between parallel fibers installed in urban area. , 2010, Optics express.

[39]  H. Bechmann-Pasquinucci,et al.  Quantum cryptography , 2001, quant-ph/0101098.

[40]  Lena Wosinska,et al.  A New Approach to Optical Networks Security: Attack-Aware Routing and Wavelength Assignment , 2010, IEEE/ACM Transactions on Networking.

[41]  Richard J. Hughes,et al.  Optical networking for quantum key distribution and quantum communications , 2009 .

[42]  R. Namiki,et al.  Quantum cryptography using pulsed homodyne detection , 2000, quant-ph/0008037.

[43]  N. Wada,et al.  Secure 2.5 Gbit/s, 16-Ary OCDM Block-Ciphering With XOR Using a Single Multi-Port En/Decoder , 2010, Journal of Lightwave Technology.

[44]  Muriel Medard,et al.  Security issues in all-optical networks , 1997 .

[45]  B. Baek,et al.  Ultra fast quantum key distribution over a 97 km installed telecom fiber with wavelength division multiplexing clock synchronization. , 2008, Optics express.

[46]  High-Rate quantum key distribution with superconducting nanowire single photon detectors , 2010, CLEO/QELS: 2010 Laser Science to Photonic Applications.

[47]  Akihiro Tanaka,et al.  High Speed Quantum Key Distribution System , 2010, IEICE Trans. Fundam. Electron. Commun. Comput. Sci..