Threats

Real threats and vulnerabilities in quantum cryptography

Is quantum cryptography really secure? A critical analysis of vulnerabilities, attacks and limitations of quantum key distribution.

generate and distribute secret keys

8 September 2025

Table of contents

  • The promise of quantum cryptography
  • Vulnerabilities of quantum cryptography
  • QKD attacks: theories, experiments, and risks
  • Post-quantum cryptography: a more secure alternative?
  • The role of quantum computing and computing power
  • Current limits and costs of quantumtechnology
  • What is real and what is still science fiction
  • Obstacles still to overcome

Quantum cryptography – or quantum cryptography – is often described as the ultimate frontier in computer security.

In a world threatened by the advent of quantum computers, quantum key distribution (QKD) promises secure communications based on quantum mechanisms that would, in theory, make it impossible to intercept information without being detected.

However, amid vulnerabilities, QKD attacks, and technical limitations, a heated debate emerges: is quantum cryptography truly unbreakable or is it just a promise that is still far from full maturity?

In this article we will talk about quantum cryptographic security and analyze what could really be a risk today, what remains confined to the realm of speculation and what quantum technologies are actually in use.

The promise of quantum cryptography

Quantum cryptography arises from the need to find alternatives to classical encryption systems, which are being challenged by the rapid development of quantum computing. In particular, quantum algorithms such as Shor and Grover could, in the future, solve mathematical problems on which RSA, Diffie-Hellman and other classical protocols are based, breaking their security.

Hence the idea: using quantum physics to generate and distribute secret keys, via the QKD protocol. The best known, BB84, allows two interlocutors to exchange a key using photons transmitted over optical fiber. If an attacker tries to intercept the photons, the quantum properties of the system will make him detectable.

This technology is already being used in banking networks and government infrastructure in China, Switzerland and other countries. But does this mean quantum security is guaranteed? Not really.

Vulnerabilities of quantum cryptography

Contrary to the idealized image that many convey, quantum cryptography is not without risks. Quantum cryptography vulnerabilities can arise from:

  • Imperfections in physical devices
    Photons do not always behave ideally.
  • Non-ideal implementations of QKD protocols
    Even small errors in hardware or software can introduce flaws.
  • Practical attacks such as the blinding attack or intercept-resend.

One of the most discussed is the man-in-the-middle attack on poorly implemented QKD systems. If the attacker manages to impersonate both communication nodes – perhaps by exploiting a compromised device – he can effectively bypass the integrity check of the quantum network.

Concrete example:

# Simplified simulation of intercept-resend attack in QKD

# Alice sends a photon to Bob in polarization |+⟩ or |×⟩

alice_bits = [0, 1, 0, 1]

alice_bases = ['+', '+', '×', '×']

# Eve intercepts and measures on a random basis

eve_bases = ['+', '×', '+', '×']

eve_measurements = []

for bit, base, eve_base in zip(alice_bits, alice_bases, eve_bases):

if base == eve_base:

# correct size, gets the bit right

eve_measurements.append(bits)

else:

# wrong measurement, gets a random bit

eve_measurements.append(random.choice([0, 1]))

This simulation shows how an attacker can disrupt transmission even without triggering an immediate alarm, especially in non-redundant or noise-tolerant networks.

QKD attacks: theories, experiments, and risks

Among the most dangerous forms of QKD attacks we find:

  • Photon Number Splitting (PNS)
    Exploits the fact that lasers do not always generate only one photon per pulse.
  • Blinding Attack
    Blinds detectors with continuous light to force them to behave in a classic way.
  • Time-Shift Attack
    Manipulates the arrival times of photons to influence detection.

In 2010, a team from the University of Toronto managed to perform a blinding attack on a commercial QKD system without being detected. This shows that, although quantum mechanisms are theoretically secure, their practical implementation introduces risks.

The real enemy, then, is not quantum physics, but the way devices are built and calibrated. Some vulnerabilities could be mitigated with stricter controls, but not all can be eliminated entirely.

quantum computing,

Post-quantum cryptography: a more secure alternative?

While QKD relies on the physical transmission of photons, post-quantum cryptography seeks to build algorithms that are resistant to quantum computing, but based on classical support. The idea is that by choosing mathematical problems that cannot be solved even by a quantum algorithm, one can maintain cyber security even in the era of qubits.

Examples of post-quantum algorithms currently being standardized by NIST:

  • Kyber (public key cryptography)
  • Dilithium (digital signature)
  • SPHINCS+ (hash-based signature)

These systems can be implemented in software on existing devices, unlike QKD which requires expensive fiber optic infrastructure and photonic equipment.

The community is divided: some argue that QKD is superior in terms of secure communication, others prefer the theoretical robustness and agility of post-quantum cryptography.

The role of quantum computing and computing power

The real destabilizing factor is quantum computing. If a quantum computer with sufficient computing power were to become operational, current RSA and similar systems would be compromised. However, we are still far from such a scenario.

The most optimistic estimates suggest that it will take at least 10-15 years before a quantum computer poses a real threat to cryptography. Furthermore, the quantum environment is extremely unstable, and building a scalable quantum computer remains one of the most complex engineering challenges.

This does not mean, however, that it is not urgent to begin the transition to post-quantum cryptography or seriously test defenses against QKD attacks.

Current limits and costs of quantumtechnology

Today, quantum key distribution QKD is still a technology limited by practical factors:

  • Distances
    On optical fiber, the maximum range is a few hundred km without quantum repeaters.
  • High cost
    Photon generation and detection devices are expensive.
  • Integration difficulties
    A completely separate network from the classic Internet is required.

Furthermore, in the event of a failure or malfunction, QKD protocols cannot be “fixed” simply with a software patch: it is often necessary to replace or recalibrate the hardware.

What is real and what is still science fiction

It’s real:

  • The ability to perform practical attacks on imperfect QKD systems.
  • Vulnerability to blinding attacks and other optical attacks.
  • The technological limitations that prevent the mass diffusion of quantum security.

It’s still science fiction:

  • The idea that quantum computing could break all current cryptography tomorrow.
  • A reliable and high-speed global QKD network.
  • Full immunity to attacks, even theoretical ones, for any quantum system.

Obstacles still to overcome

The advent of quantum computers requires serious reflection on the foundations of modern computer security . Although quantum cryptography and, in particular, quantum key distribution (QKD) offer promising tools, there remain many vulnerabilities and practical obstacles to overcome.

In parallel, post-quantum cryptography emerges as a concrete, scalable and already integrable option. The challenge of the coming years will not be to choose between QKD or post-quantum algorithms, but to know how to combine them in a multi-level security architecture, suitable for a rapidly evolving scenario.

Questions and answers

  1. What is quantum cryptography?
    It is an encryption system that uses the principles of quantum mechanics to ensure secure communications.
  2. What are the vulnerabilities of quantum cryptography?
    They mainly arise from hardware limitations, such as imperfections in the devices or implementation errors.
  3. What are QKD attacks?
    These are attempts to intercept or manipulate quantum key distribution, such as blinding attacks or photon splitting.
  4. Is quantum computing already a real threat?
    No, but it will. There are currently no quantum computers capable of breaking standard encryption.
  5. Is quantum cryptography really secure?
    Only in theory. In practice, its security depends on the quality of the implementation.
  6. What is meant by post-quantum cryptography?
    These are encryption algorithms that are resistant even to attacks from future quantum computers, but which run on classical hardware.
  7. Are QKD networks already operational?
    Yes, but only in very specific areas and on a limited scale, such as central banks or critical infrastructure.
  8. Is fiber optics needed for QKD?
    Yes, the transmission of photons requires dedicated physical media such as optical fiber or satellite communication.
  9. Can quantum cryptography be combined with classical cryptography?
    Yes, some hybrid systems combine both paradigms for added safety.
  10. How much does it cost to implement a quantum network?
    Very. Current costs make it prohibitive for most organizations.
3
To top