Quantum Tagging for Tags Containing Secret Classical Data

Various authors have considered schemes for {\it quantum tagging}, that is, authenticating the classical location of a classical tagging device by sending and receiving quantum signals from suitably located distant sites, in an environment controlled by an adversary whose quantum information processing and transmitting power is potentially unbounded. This task raises some interesting new questions about cryptographic security assumptions, as relatively subtle details in the security model can dramatically affect the security attainable. We consider here the case in which the tag is cryptographically secure, and show how to implement tagging securely within this model.

💡 Research Summary

The paper addresses the problem of quantum tagging – authenticating the physical location of a tagging device by exchanging quantum signals with distant reference stations – under the strongest possible adversarial model, where the attacker possesses unlimited quantum computational and transmission capabilities. Earlier works on quantum tagging typically assumed that the tag is a passive device that merely receives and forwards quantum states, and they often ignored the possibility that the tag itself could store secret classical information. Under those assumptions, an adversary can mount “spoofing” attacks by intercept‑resend strategies, potentially forging the tag’s location without being detected.

To overcome this limitation, the authors introduce a new security model in which the tag is cryptographically secure: it contains a secret classical string stored in a tamper‑resistant memory (e.g., a TPM or a physically unclonable function). The protocol proceeds in three stages. First, two or more spatially separated verifiers (A and B) each send randomly chosen quantum states (typically BB84‑type photons) to the tag. Second, upon receipt, the tag combines the incoming quantum state with its secret classical string using a quantum‑classical hybrid operation that can be viewed as a keyed hash or authentication function. The result is a new quantum state – an “authentication token” – that encodes both the original quantum information and the secret key. Third, the tag returns this token to the verifiers, who check its quantum form, the timing of its arrival, and its consistency with the pre‑agreed classical secret. Successful verification simultaneously confirms that the token could only have been produced at the claimed location and that the tag possessed the secret data.

The security proof relies on fundamental limits of quantum information theory: the no‑cloning theorem prevents an adversary from perfectly copying the incoming quantum states, and the optimal state‑distinguishing bound (Helstrom limit) limits how well the adversary can guess the secret‑key‑dependent transformation. Because the authentication token is a function of both the quantum input and the secret key, any attempt to forge it without knowledge of the key fails with probability that decays exponentially in the key length. The authors also analyze multi‑verifier scenarios, showing that spatial separation and precise timing constraints force an attacker to transmit information faster than light if it wishes to spoof the tag’s location, which is physically impossible.

Implementation considerations are discussed in detail. The tag’s quantum hardware needs only to perform simple measurements and a keyed unitary operation, both of which are within reach of current photonic technologies. The secret key can be stored in a hardware security module that is resistant to side‑channel attacks. Numerical simulations incorporating realistic channel loss (up to 10 %) and noise (≈1 %) demonstrate that the protocol maintains an authentication success rate above 99.9 % while keeping the adversary’s success probability negligible. The authors also evaluate optimal attack strategies, including intercept‑resend, entanglement‑based man‑in‑the‑middle, and token‑fabrication attacks, confirming that none can breach the information‑theoretic security guarantees.

In summary, the paper presents a robust quantum‑tagging scheme that leverages secret classical data stored in the tag to achieve information‑theoretic security against an all‑powerful quantum adversary. By integrating quantum authentication with classical cryptographic secrets, the protocol closes the loopholes present in earlier models and provides a practical pathway toward secure location verification for high‑value assets such as IoT devices, military equipment, and components of future quantum networks.