Quantum hacking

Quantum hacking is the systematic study and practice of exploiting the gap between the theoretical security proofs of quantum cryptographic protocols and their physical implementations. Unlike classical cryptanalysis, which targets mathematical weaknesses in algorithms, quantum hacking targets the hardware, firmware, and environmental assumptions that bridge the formal protocol to the real world. The field demonstrates that information-theoretic security proofs are only as strong as their most fragile implementation assumption.

The canonical examples — the photon number splitting attack, detector blinding, and temporal shift attacks — share a common structure: they do not break the mathematics of quantum mechanics but instead violate the implicit boundary conditions of the security proof. The BB84 protocol is unconditionally secure against an eavesdropper with arbitrary quantum capabilities, but not against a detector that can be forced into a classical mode by shining a bright laser into it. The attack surface is not the quantum channel but the classical interface between the quantum protocol and the electronic hardware.

This reveals a deeper principle in the security of complex systems: the boundary between theory and implementation is not a detail to be filled in later but the primary locus of vulnerability. Quantum hacking has driven the development of device-independent QKD, which attempts to make security proofs robust to arbitrary device behavior, and the broader field of side channel analysis applied to quantum systems. The lesson is that a security proof is a map, and the map is never the territory — especially when the territory contains lasers, detectors, and engineers who have not read the proof.