Bidirectional Quantum Secure Communication Based on One-Dimensional Four-Particle Cluster States

Abstract

Using one-dimensional four-particle cluster states, we propose a bidirectional quantum secure communication protocol, in which the information leakage does not exist. In order to judge whether two sequences composed of cluster states are transmitted safely, two batches of decoy particles are used. Moreover, we show that this protocol is secure against eavesdropping.

1 Introduction

As we all know, it is impossible to implement physically secure communication between distant parties only by the transmission of classical signals. However, quantum mechanical properties of physical systems can achieve such a task. In 1984, Bennett and Brassard borrowed the properties to put forward the first quantum key distribution (QKD) protocol, which is customarily called BB84 protocol [1]. Subsequently, a variety of QKD protocols [2–7] were proposed. It can be seen that, in the QKD, what is distributed between two parties is only secret keys and the two parties make use of the distributed keys to encode and decode secret messages. Recently, a new concept in quantum cryptography, that is, quantum secure direct communication (QSDC) [8] was proposed. It is different from the QKD and can directly communicate secret messages without establishing secret keys to encrypt them in advance. In some sense, the QSDC may cost less time than the QKD during the transmission of secret messages. Thus far, all kinds of QSDC protocols [9–21] have been put forward. In the QSDC, we can see that one party will directly send his (her) secret messages to the other. That is to say, one is the sender of secret messages, and the other is the receiver. Clearly, secret messages are transmitted by a single-direction way. In 2004, Nguyen put forward an interesting communication protocol in which secret messages may be transmitted by a bidirectional way, that is, the so-called bidirectional quantum secure communication (BQSC) (also called quantum dialogue) [22]. In the BQSC, we see that both of the two communication parties are not only the senders of messages, but also the receivers. Unfortunately, there is an information-leakage shortcoming in Nguyen’s BQSC protocol, which has been pointed out by Gao et al. [23]. In order to overcome the shortcoming, Shi et al. used single photons to propose a BQSC protocol [24], and we also proposed two BQSC protocols [25] by swapping the entanglement of Bell states in 2010. In addition, there are other BQSC protocols based on triple particle W states [26], four-qubit DF states [27], five-qubit entangled states [28], which the shortcoming does not exist in. In this paper, by using one-dimensional four-particle cluster states, we will propose a BQSC protocol without information leakage. By the way, since Briegel and Raussendorf reported the cluster states [29] in 2001, the studies [30–34] on it are always gone on. Before describing our BQSC protocol, we first define sixteen one-dimensional four-particle cluster states as follows:

$$\begin{aligned} \bigl|C_{4}^{00}\bigr\rangle _{abcd}=\frac{1}{2}\bigl(|+ \rangle|0\rangle|-\rangle|0\rangle-|+\rangle|0\rangle|+\rangle|1\rangle-|- \rangle|1\rangle|+\rangle|0\rangle+|-\rangle|1\rangle|-\rangle|1 \rangle\bigr)_{abcd} \end{aligned}$$

Here, \(|+\rangle=\frac{1}{\sqrt{2}}(|0\rangle+|1\rangle)\), \(|-\rangle=\frac{1}{\sqrt{2}}(|0\rangle-|1\rangle)\). The other fifteen cluster states can be obtained by the following way:

$$ \bigl|C_{4}^{ij}\bigr\rangle _{abcd}=\sigma_{a}^{i} \sigma_{c}^{j}\bigl|C_{4}^{00} \bigr\rangle _{abcd} \quad (i, j = 0, 1, 2, 3) $$

(1)

Here, σ ^i(j) belongs to one of four Pauli operators: σ ⁰=I=|0〉〈0|+|1〉〈1|, σ ¹=σ _x =|0〉〈1|+|1〉〈0|, σ ²=σ _z =|0〉〈0|−|1〉〈1|, σ ³=σ _y =|0〉〈1|−|1〉〈0|, and the local operations \(\sigma_{a}^{i}\otimes\sigma_{c}^{j}\) are performed on the subsystem of particles a and c. The other fifteen states are spread as follows:

$$\begin{aligned} &\bigl|C_{4}^{01}\bigr\rangle _{abcd}=\frac{1}{2}\bigl(-|+ \rangle|0\rangle|-\rangle|0\rangle-|+\rangle|0\rangle|+\rangle|1\rangle-|- \rangle|1\rangle|+\rangle|0\rangle-|-\rangle|1\rangle|-\rangle|1 \rangle\bigr)_{abcd}\\ &\bigl|C_{4}^{02}\bigr\rangle _{abcd}=\frac{1}{2}\bigl(|+ \rangle|0\rangle|+\rangle|0\rangle-|+\rangle|0\rangle|-\rangle|1\rangle-|- \rangle|1\rangle|-\rangle|0\rangle+|-\rangle|1\rangle|+\rangle|1 \rangle\bigr)_{abcd}\\ &\bigl|C_{4}^{03}\bigr\rangle _{abcd}=\frac{1}{2}\bigl(|+ \rangle|0\rangle|+\rangle|0\rangle+|+\rangle|0\rangle|-\rangle|1\rangle+|- \rangle|1\rangle|-\rangle|0\rangle+|-\rangle|1\rangle|+\rangle|1 \rangle\bigr)_{abcd}\\ &\bigl|C_{4}^{10}\bigr\rangle _{abcd}=\frac{1}{2}\bigl(|+ \rangle|0\rangle|-\rangle|0\rangle-|+\rangle|0\rangle|+\rangle|1\rangle+|- \rangle|1\rangle|+\rangle|0\rangle-|-\rangle|1\rangle|-\rangle|1 \rangle\bigr)_{abcd}\\ &\bigl|C_{4}^{20}\bigr\rangle _{abcd}=\frac{1}{2}\bigl(|- \rangle|0\rangle|-\rangle|0\rangle-|-\rangle|0\rangle|+\rangle|1\rangle-|+ \rangle|1\rangle|+\rangle|0\rangle+|+\rangle|1\rangle|-\rangle|1 \rangle\bigr)_{abcd}\\ &\bigl|C_{4}^{30}\bigr\rangle _{abcd}=\frac{1}{2}\bigl(-|- \rangle|0\rangle|-\rangle|0\rangle+|-\rangle|0\rangle|+\rangle|1\rangle-|+ \rangle|1\rangle|+\rangle|0\rangle+|+\rangle|1\rangle|-\rangle|1 \rangle\bigr)_{abcd}\\ &\bigl|C_{4}^{11}\bigr\rangle _{abcd}=\frac{1}{2}\bigl(-|+ \rangle|0\rangle|-\rangle|0\rangle-|+\rangle|0\rangle|+\rangle|1\rangle+|- \rangle|1\rangle|+\rangle|0\rangle+|-\rangle|1\rangle|-\rangle|1 \rangle\bigr)_{abcd}\\ &\bigl|C_{4}^{12}\bigr\rangle _{abcd}=\frac{1}{2}\bigl(|+ \rangle|0\rangle|+\rangle|0\rangle-|+\rangle|0\rangle|-\rangle|1\rangle+|- \rangle|1\rangle|-\rangle|0\rangle-|-\rangle|1\rangle|+\rangle|1 \rangle\bigr)_{abcd}\\ &\bigl|C_{4}^{13}\bigr\rangle _{abcd}=\frac{1}{2}\bigl(|+ \rangle|0\rangle|+\rangle|0\rangle+|+\rangle|0\rangle|-\rangle|1\rangle-|- \rangle|1\rangle|-\rangle|0\rangle-|-\rangle|1\rangle|+\rangle|1 \rangle\bigr)_{abcd}\\ &\bigl|C_{4}^{21}\bigr\rangle _{abcd}=\frac{1}{2}\bigl(-|- \rangle|0\rangle|-\rangle|0\rangle-|-\rangle|0\rangle|+\rangle|1\rangle-|+ \rangle|1\rangle|+\rangle|0\rangle-|+\rangle|1\rangle|-\rangle|1 \rangle\bigr)_{abcd}\\ &\bigl|C_{4}^{22}\bigr\rangle _{abcd}=\frac{1}{2}\bigl(|- \rangle|0\rangle|+\rangle|0\rangle-|-\rangle|0\rangle|-\rangle|1\rangle-|+ \rangle|1\rangle|-\rangle|0\rangle+|+\rangle|1\rangle|+\rangle|1 \rangle\bigr)_{abcd}\\ &\bigl|C_{4}^{23}\bigr\rangle _{abcd}=\frac{1}{2}\bigl(|- \rangle|0\rangle|+\rangle|0\rangle+|-\rangle|0\rangle|-\rangle|1\rangle+|+ \rangle|1\rangle|-\rangle|0\rangle+|+\rangle|1\rangle|+\rangle|1 \rangle\bigr)_{abcd}\\ &\bigl|C_{4}^{31}\bigr\rangle _{abcd}=\frac{1}{2}\bigl(|- \rangle|0\rangle|-\rangle|0\rangle+|-\rangle|0\rangle|+\rangle|1\rangle-|+ \rangle|1\rangle|+\rangle|0\rangle-|+\rangle|1\rangle|-\rangle|1 \rangle\bigr)_{abcd}\\ &\bigl|C_{4}^{32}\bigr\rangle _{abcd}=\frac{1}{2}\bigl(-|- \rangle|0\rangle|+\rangle|0\rangle+|-\rangle|0\rangle|-\rangle|1\rangle-|+ \rangle|1\rangle|-\rangle|0\rangle+|+\rangle|1\rangle|+\rangle|1 \rangle\bigr)_{abcd}\\ &\bigl|C_{4}^{33}\bigr\rangle _{abcd}=\frac{1}{2}\bigl(-|- \rangle|0\rangle|+\rangle|0\rangle-|-\rangle|0\rangle|-\rangle|1\rangle+|+ \rangle|1\rangle|-\rangle|0\rangle+|+\rangle|1\rangle|+\rangle|1 \rangle\bigr)_{abcd} \end{aligned}$$

2 Bidirectional Quantum Secure Communication Protocol

In our BQSC protocol, two legitimate communication parties are Alice and Bob, respectively, and they exchange the secret messages at the same time. Our BQSC protocol can be realized with the following five steps.

(1) Alice prepares two same sequences (1P sequence and 2P sequence) which are composed of one-dimensional four-particle cluster states. For clarity, we denote each sequence with [\(P_{1}^{a},P_{1}^{b},P_{1}^{c},P_{1}^{d},P_{2}^{a},P_{2}^{b},P_{2}^{c}, P_{2}^{d},\ldots,P_{n}^{a},P_{n}^{b},P_{n}^{c},P_{n}^{d}\)]. Here, the a, b, c and d represent four particles in one cluster state and the subscripts 1, 2, 3, … and n indicate the orders of cluster states in a sequence, and what each cluster state is secret and known by Alice. In addition, she prepares two batches of decoy particles [29–31] (saying j particles and k particles), and each decoy particle is randomly in one of the four states (|0〉,|1〉,|+〉,|−〉). Alice inserts the j particles into the 1P sequence and sends the 1P sequence including the j particles to Bob.

(2) After Bob receives the 1P sequence, they check whether it is attacked. First, Alice tells him the positions of j particles in the sequence and the state of each j particle. Next, Bob uses a correct basis ({|0〉,|1〉} or {|+〉,|−〉}) to measure each j particle. According to Alice’s announcing information, Bob can analyze the error rate of the 1P sequence transmission. If the error rate goes beyond the threshold, the process is aborted. Otherwise, the process goes on. Bob gets rid of the j particles, and uses cluster basis to measure each four particles in the 1P sequence in order. In result, he obtains all the information of cluster states in the 1P sequence.

(3) Alice encodes her secret messages by performing \(\sigma_{a}^{i}\sigma_{c}^{j}\) operations on each cluster state in the 2P sequence. In advance, they agree that σ ⁱ σ ^j corresponds to a four-bit classical message, for example, σ ⁰ σ ⁰→0000,σ ⁰ σ ¹→0001,σ ⁰ σ ²→0010,…,σ ³ σ ³→1111. Next, Alice inserts the k particles into the 2P sequence and sends the 2P sequence including the k particles to Bob.

(4) After Bob receives the 2P sequence, they check whether it is transmitted safely. First, Alice tells Bob the position of each k particle in the sequence and the state of each k particle. Then, Bob measures each k particle with a correct measuring basis. By comparing his measuring outcomes with Alice’s announcing states, Bob can judge whether the 2P sequence is eavesdropped. Obviously, its security check is the same as that of the 1P sequence. Next, Bob gets rid of k particles, and encodes his secret messages by performing \(\sigma_{a}^{i}\sigma_{c}^{j}\) operations on each cluster state in the 2P sequence.

(5) After his encoding, Bob makes a cluster state measurement on each four particles in the 2P sequence in order, and publishes his measurement outcomes. According to Bob’s publishing measurement outcomes, Alice is able to deduce his secret messages. Meanwhile, Bob is also able to deduce Alice’s. For example, let us assume that the cluster state prepared by Alice is \(|C_{4}^{00}\rangle_{abcd}\), and her and Bob’s performing secret operations are σ ² σ ³ and σ ⁰ σ ⁰, respectively. The \(|C_{4}^{00}\rangle_{abcd}\) evolves as follows:

$$ \bigl|C_{4}^{00}\bigr\rangle _{abcd}\quad \Rightarrow\quad \sigma_{a}^{2}\sigma_{c}^{3}\bigl|C_{4}^{00} \bigr\rangle _{abcd}=\bigl|C_{4}^{23}\bigr\rangle _{abcd} \quad \Rightarrow\quad \sigma_{a}^{0}\sigma_{c}^{0}\bigl|C_{4}^{23} \bigr\rangle _{abcd}=\bigl|C_{4}^{23}\bigr\rangle _{abcd} $$

(2)

The last result \(|C_{4}^{23}\rangle_{abcd}\) is measured and published by Bob. Obviously, according to three known messages: \(|C_{4}^{00}\rangle_{abcd}\), σ ² σ ³ and \(|C_{4}^{23}\rangle_{abcd}\), Alice can deduce that Bob’s secret operation is σ ⁰ σ ⁰. Since Bob has obtained the information of cluster states in the 1P sequence and the 1P sequence and the 2P sequence are entirely identical, the \(|C_{4}^{00}\rangle_{abcd}\) prepared by Alice is also known by Bob. Therefore, according to three messages: \(|C_{4}^{00}\rangle_{abcd}\), σ ⁰ σ ⁰ and \(|C_{4}^{23}\rangle_{abcd}\), Bob can also deduce that Alice’s operation is σ ² σ ³. So Alice and Bob can simultaneously transmit the secret messages each other.

So far, we have successfully established this BQSC protocol using one-dimensional four-particle cluster states. In this protocol, there are two same processes of security check, which are finished by employing decoy particles. Later on, we will give the reason why the two processes can prevent eavesdropper from eavesdropping. Next, let us calculate the efficiency of this BQSC protocol. Here, we employ Cabello’s definition of the efficiency [35]: \(\eta=\frac{b_{s}}{q_{t}+b_{t}}\); η denotes the efficiency, b _s is the expected secret bits received, q _t and b _t are the qubit used and the classical bits exchanged between Alice and Bob, respectively. Obviously, in the case that the wasting quantum and classical bits in the checking eavesdropping aren’t taken count of, b _s equals to 8 bits in our protocol, and q _t and b _t equal to 8 and 4 bits, respectively. So the efficiency of our protocol η equals to 66.7 %.

3 Security of Our BQSC Protocol

In the ahead Introduction, we have claimed that the information leakage doesn’t exist also in our BQSC protocol. Next, let us analyze why not to exist. In Step (5), we see that Bob only publishes one cluster state measurement outcome, that is, the \(|C_{4}^{23}\rangle_{abcd}\) in the given example. And the \(|C_{4}^{00}\rangle_{abcd}\) is only known by Alice and Bob, and is not published. In other words, the \(|C_{4}^{00}\rangle_{abcd}\) is entirely secret for a outsider. In addition, we still see that the operation combination of Alice and Bob may be arbitrary. So there are 16×16 operation combinations. Provided that 16×16 combinations have equal probability, the channel contains \(-\sum p_{i} \log p_{i}=-(16\times16)\times\frac{1}{16\times16}\log \frac{1}{16\times16}=8\) bits secret messages. On the beam, the quantity of the exchanged messages between Alice and Bob is 8 bits also. Clearly, the information leakage doesn’t exist in our BQSC protocol.

As we all know, that the information leakage happens doesn’t require the eavesdropper’s positive attack. So we can’t help asking that, when eavesdropper’s positive attack occurs, our BQSC protocol is still secure? In what follows, we will reply this.

We see that, in our BQSC protocol, two same sequences composed of one-dimensional four-particle cluster states are transmitted from Alice to Bob and the methods that check whether they are transmitted safely are same, and both depend on the inserting and measuring decoy particles. That is, after Bob receives each sequence, Alice publishes the states of decoy particles and Bob measures every decoy particle with the proper basis, and then he can decide the error rate of each sequence transmission by comparing his measurement outcomes with Alice’s announcing states. This kind of method is very valid to stand against the following common attacks. (i) The intercept-resend attack When the 1P sequence is traveling from Alice to Bob, the eavesdropper intercepts it and sends a fake sequence in which each particle is in one of the four states (|0〉, |1〉, |+〉, |−〉) to Bob. Her purpose is to plan to eavesdrop the information of cluster states in the 1P sequence. Since the intercepted 1P sequence contains the j particles, the eavesdropper must get rid of them firstly. Obviously, this is easily done. As soon as Alice publishes the positions of the j particles, the eavesdropper can. However, when Bob measures the j particles in order to check the security, the eavesdropper’s intercepting action will be detected. This is because the particles Bob really measures are not the j particles, but from the eavesdropper’s fake sequence. We know it is impossible that the states of the measured particles and the states of the j particles are entirely identical. Thus, this kind of attack has to introduce a big error rate. (ii) The entangle-measure attack The eavesdropper intercepts the 1P sequence while it is traveling between Alice and Bob. Then she performs a general operation on the particle in the 1P sequence and the auxiliary particle that she prepares in advance. By observing the auxiliary particle, the eavesdropper tries to obtain some useful messages. In what follows, we will analyze whether this kind of attack can be detected. We see that the 1P sequence contains the j particles, and since each j particle is randomly prepared in one of the four states by Alice, its state is \(\rho=\frac{1}{2}(|0\rangle\langle0|+|1\rangle\langle1|)\) for the eavesdropper. Suppose that the eavesdropper’s auxiliary particle is prepared in |ε〉 and her general operation is U _e . When the eavesdropper performs U _e on the j particle and the auxiliary particle, we will see:

$$\begin{aligned} &U_{e}|0\rangle|\varepsilon\rangle=\alpha_{0}|0\rangle| \varepsilon_{00}\rangle+\beta_{0}|1\rangle| \varepsilon_{01}\rangle\\ &U_{e}|1\rangle|\varepsilon\rangle=\alpha_{1}|0\rangle| \varepsilon_{00}\rangle+\beta_{1}|1\rangle| \varepsilon_{01}\rangle \end{aligned}$$

Where, |ε ₀₀〉, |ε ₀₁〉, |ε ₁₀〉, |ε ₁₁〉 are the eavesdropper’s states. Because U _e is the general operation, the complex number α ₀, α ₁, β ₀, β ₁ satisfy |α ₀|²+|β ₀|²=|α ₁|²+|β ₁|²=1. The error rate introduced by the eavesdropper is ϵ=|β ₀|²=|α ₁|²=1−|β ₁|²=1−|α ₀|². Clearly, this kind of attack will also be detected.

4 Conclusion

In summary, by using one-dimensional four-particle cluster states, decoy particles [36–38] and the special “two-step” transmission [2], we have successfully proposed a BQSC protocol. The highlights of this protocol are as follows: (i) It is the first time that the quantum channels of BQSC are composed of the cluster states, (ii) This protocol needn’t cost the expensive quantum entanglement source in checking eavesdropping, (iii) The information leakage does not exist in this protocol. Compared with the listed protocols [24–28], the biggest difference is that we use one-dimensional four-particle cluster states as quantum channels of BQSC. In addition, in the efficiency, this protocol is equal with the listed protocols [24, 25]. Finally, we explain why the “two-step” transmission in this protocol is special. This is because it differs from the original “two-step” transmission [2], where the two transmitted sequences have the entangled correlation. However, the two ones in this protocol have not.