Information Theoretically Secure, Enhanced Johnson Noise Based Key Distribution over the Smart Grid with Switched Filters

Elias Gonzalez; Laszlo B. Kish; Robert S. Balog; Prasad Enjeti

doi:10.1371/journal.pone.0070206

Abstract

We introduce a protocol with a reconfigurable filter system to create non-overlapping single loops in the smart power grid for the realization of the Kirchhoff-Law-Johnson-(like)-Noise secure key distribution system. The protocol is valid for one-dimensional radial networks (chain-like power line) which are typical of the electricity distribution network between the utility and the customer. The speed of the protocol (the number of steps needed) versus grid size is analyzed. When properly generalized, such a system has the potential to achieve unconditionally secure key distribution over the smart power grid of arbitrary geometrical dimensions.

Citation: Gonzalez E, Kish LB, Balog RS, Enjeti P (2013) Information Theoretically Secure, Enhanced Johnson Noise Based Key Distribution over the Smart Grid with Switched Filters. PLoS ONE 8(7): e70206. https://doi.org/10.1371/journal.pone.0070206

Editor: Derek Abbott, University of Adelaide, Australia

Received: April 2, 2013; Accepted: June 18, 2013; Published: July 25, 2013

Copyright: © 2013 Gonzalez et al. This is an open-access article distributed under the terms of the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source are credited.

Funding: The authors have no support or funding to report.

Competing interests: The authors have declared that no competing interests exist.

Introduction

1.1 KLJN, the Information Theoretically Secure Wire-based Key Exchange Scheme

On February 12, 2013 President Obama issued an executive order to outline policies directing companies and operators of vital infrastructure, such as power grids, to set standards for cybersecurity [1]. This step is one of the indications of an urgent need to protect intelligence, companies, infrastructure, and personal data in an efficient way. In this paper, we propose a solution that provides information theoretic (that is, unconditional) secure key exchange over the smart grid. This method is controlled by filters and protects against man-in-the-middle attacks.

A smart grid [2], [3] is an electrical power distribution network that uses information and communications technology to improve the security [4], [5], reliability, efficiency, and sustainability of the production and distribution of electricity. A form of a cyber-physical system, the smart grid enables greater efficiency through a higher degree of awareness and control but also introduces new failure modes associated with data being intercepted and compromised.

Private key based secure communications require a shared secret key between Alice and Bob who may communicate over remote distances. In today's secure communications, sharing such a key also utilizes electronic communications because courier and mail services are slow. However the software based key distribution methods offer only limited security levels that are only computationally-conditional thus they are not future-proof. By having a sufficiently enhanced computing power, the eavesdropper (Eve) can crack the key and all the communications that are using that key. Therefore, unconditional security (indicating that the security holds even for infinite computational power), which is the popular wording of the term “information theoretic security” [6], requires more than a software solution. It needs the utilization of the proper laws of physics.

The oldest scheme that claims information theoretic security by utilizing the laws of physics is quantum key distribution (QKD). While, the security available in QKD schemes have currently been debated/compromised [7]–[21], the discussions indicate that there is a potential to reach a satisfactory security level in the future though they may require a new approach [7]. However, current QKD devices are prohibitively expensive and have other practical weaknesses, such as they are sensitive to vibrations, bulky, limited in range, and require a special “dark optical fiber” cable with sophisticated infrastructure.

On the other hand, the smart grid offers a unique way of secure key exchange because each household (host) in the grid is electrically connected. To utilize a wire connection for secure key exchange, a different set of the laws of physics (not the laws applied for QKD that work with optical fibers) must be utilized. Recently a classical statistical physical alternative to QKD, the Kirchhoff-Law-Johnson-(like)-Noise (KLJN) key exchange system has been proposed [22]–[28], which is a wire-based scheme that is free from several weaknesses of QKD. A recent survey is given in [24]. Similarly to QKD, KLJN is also an information theoretically secure key distribution [24]; however it is robust; not sensitive to vibrations; it has unlimited range [25]; it can be integrated on chips [26]; it can use existing wire infrastructure such as power lines [27]; and KLJN based networks can also be constructed [28].

The KLJN channel is a wire [24]. At the beginning of each clock cycle (note, the 50 Hz/60 Hz AC grid provide a universal time synchronization), Alice and Bob, who have identical pairs of resistors R_L and R_H (representing the 0 and 1 bit situations) randomly select and connect one of the resistors, see Figure 1. In practical applications, voltage noise generators enhance the Johnson noise of the resistors so that all resistors in the system have the same, publicly known effective noise-temperature (where Kelvin). The enhanced Johnson noise voltages { or ; and or } of the resistor result in a channel noise voltage between the wire and the ground, and a channel noise current in the wire. Low-pass filters are used because the noise-bandwidth, which we also call KLJN-band (its value depends on the range), must be chosen so narrow that wave, reflection, and propagation/delay effects are negligible, otherwise the security is compromised [22]. Alice and Bob can measure the mean-square amplitudes and/or within the KLJN-band in the line. From any of these values, the loop resistance can be calculated [22] by using the Johnson noise formula with the noise-bandwidth :(1)

Download:

Figure 1. The core of the idealized KLJN key scheme [22]–[25].

This simple system is secure only against passive attacks in the idealized case (mathematical limit). Security enhancements (including filters) to provide protection against invasive attacks [22]–[25] and against other types of vulnerabilities are not shown. In practical applications electronic noise generators emulate an enhanced Johnson noise with a publicly agreed high effective temperature.

https://doi.org/10.1371/journal.pone.0070206.g001

Alice and Bob know their own choice resistor thus, from the loop resistance, they can deduce the resistance value and the actual bit status at the other end of the wire. In the ideal situation, the cases and represent a secure bit exchange event because they cannot be distinguished by the measured mean-square values. Eve can do the very same measurements but she has no knowledge about any of the resistance choices thus she is unable to extract the key bits from the measured loop resistance.

The KLJN protocol can also be applied to several other wire networks such as electronic equipment that do not desire to be reverse engineered. However, in this study we focus on applying KLJN protocol on the smart grid.

1.2 Utilizing the Smart Power Grid for Information Theoretic Secure Key Exchange

The disadvantage of the KLJN key exchange protocol is that it requires a wire connection. Investors are hesitant to cover the cost of new infrastructure for solely the purpose of security. On the other hand, virtually every building in the civilized world is connected to the electrical power grid. This fact is very motivating to explore the possibility of using the power grid as the infrastructure for the KLJN protocol. However, only the single loop shown in Figure 1 is unconditionally secure. When Alice and Bob are two remote hosts in the smart grid, they should indeed experience a single loop connection as in Figure 1. Thus, for smart grid applications, proper filters must be installed and controlled for the KLJN frequency band where the key exchange operates. Though simple examples have been outlined to prove that a KLJN key exchange between two remote points in a radial power grid with filters [27], [28] can be achieved, neither details about the structure of the filter units nor network protocols to connect every host on the grid with all other hosts have been shown. The method described in [28] is of high speed because, if the units do simultaneous key exchange they have a joint network key. Thus the units must trust each other. In the present system the units have independent keys.

The present paper aims to make the first steps in this direction by presenting a working scheme with scaling analysis of the speed of key exchange versus network size. We limit our network to a one-dimensional linear chain network to utilize the smart power grid for KLJN secure key exchange. We show and analyze a protocol to efficiently supply every host with proper secure keys to separately communicate with all the other hosts.

Discussions and Results

Because the pattern of connections between KLJN units must be varied to provide the exchange of a separate secure key for each possible pair of host, the network of filters and their connections must be varied accordingly. The power line filter technology is already available [29], [30] and we will show that the required results can be achieved by switching on/off proper filtering units, in a structured way in the smart grid. We will need filters to pass or reject the KLJN frequency band and/or the power frequency (50 or 60 Hz). When both and are passed, it is a short; and when both of them are rejected, it is a break. We will call these filters “switched filters”.

2.1 Switched Filters

We call the functional units connected to the smart power grid hosts. A host is able to execute a KLJN key exchange toward left and right in a simultaneous way. That means each host has two independent KLJN units. The filter system must satisfy the following requirements:

Hosts that currently do not execute KLJN key exchange should not interfere with those processes even if the KLJN signals pass through their connections.
Moreover, each host should be able to extract electrical power from the electric power system without disturbing the KLJN key exchanges.

We define the size of a network as being of size N when that network has hosts. An example of a network of size N = 7 is illustrated in Figure 2.

Download:

Figure 2. Example of a one-dimensional grid: a chain network.

This example has a network of size N = 7.

https://doi.org/10.1371/journal.pone.0070206.g002

Intermediate hosts in the network can be in two different states according to the need:

α) State 1 is defined when KLJN bandwidth is not allowed into the host.

β) State 2 is defined when KLJN bandwidth is allowed into the host.

Hosts at the two ends can be in similar situations except that they can communicate in only a single directions, thus they are special, limited cases of the intermediate hosts to which we are focusing our considerations when discussing filters.

Filter boxes at each host will distribute the KLJN signals and the power, and they are responsible for connecting the proper parties for the KLJN key exchange and to supply the hosts with power, see Figure 3. The filters boxes can be controlled either by a central server and/or an automatic algorithm. In the following section we discuss the protocol of this control. Each filter box has three switched filters and a corresponding output wire, see Figure 3:

Download:

Figure 3. Building blocks in a filter box.

https://doi.org/10.1371/journal.pone.0070206.g003

The Left KLJN Filter for the KLJN key exchange toward left,
The Right KLJN Filter for the KLJN key exchange toward right.
The Power Filter to supply power to host.

The properly controlled filter boxes will provide non-overlapping KLJN loops between the hosts, see below. KLJN loops need to be non-overlapping loops because the KLJN protocol is fundamentally peer-to-peer. If overlapping loops were allowed then there is a possibility that Eve might be in between and will require the trust of the intermediate hosts. A problem with peer-to-peer networks is that they require direct connections. QKD also require direct connections. The reason for having two KLJN units per host is to decrease the time needed to connect every host by having simultaneous loops toward left and right, without overlapping. Figure 4 shows an example for N = 7. The solid black line means that both KLJN bandwidth and power frequency is passing through (ordinary wire: the original line). The (red) dotted lines carry ( is rejected). The (blue) dashed lines indicate the opposite situation: only the power frequency is passing and the KLJN bandwidth is rejected.

Download:

Figure 4. Example for network of size N = 7.

Each host is connected to a filter box and the filters boxes are connected to the power grid. Note how each host has three wire connections to its filter box.

https://doi.org/10.1371/journal.pone.0070206.g004

When there is a key exchange between the first host (host 0) and the last host (host 7) over the whole network (Figure 4) then all the host in between (host 1 through host 6) are not allowed to access the KLJN band. In this state the filter boxes of host 1 through 6 must separate their respective host from the KLJN band, and at the same time supply them by power. We call this working mode of the filter boxes of non-active hosts State 1. The wiring and frequency transfer of the Filter Box in State 1 are shown in Figure 5 and Tables 1,2.

Download:

Figure 5. The filter box of the inactive host (when it is not executing KLJN key exchange): State 1.

Everything is passing between left and right and the host can access only the power. Filter A is passing everything (shorted). Filter B is disconnected. Filter C is passing B_kljn only. Filters and E and D are passing f_p only. State 1 is when the host is not allowed to access KLJN band. State 2 is when the host is allowed to access KLJN band. This filter box is in State 1.

https://doi.org/10.1371/journal.pone.0070206.g005

Download:

Table 1. Truth table of the KLJN Filters in State 1 (inactive host).

https://doi.org/10.1371/journal.pone.0070206.t001

Download:

Table 2. Truth table of the Power Filter in State 1 (inactive host).

https://doi.org/10.1371/journal.pone.0070206.t002

See Figures 6 and 7, as another example, for seven key exchanges occurring simultaneously with every host in that network active (allowed access to the KLJN band). The power filters of these hosts must separate the KLJN loops by rejecting . We call this working mode of the filter boxes of hosts executing key exchange State 2. The wiring and frequency transfer of the Filter Box in State 2 are shown in Figure 6 and Tables 3,4.

Download:

Figure 6. The filter box of the active host (when it is executing a KLJN key exchange): State 2.

The power is passing between left and right but the KLJN band is not and the left and right KLJN units are separated while doing a key exchange toward left and right. State 1 is when the host is not allowed to access KLJN band. State 2 is when the host is allowed to access KLJN band. This filter box is in State 2.

https://doi.org/10.1371/journal.pone.0070206.g006

Download:

Figure 7. The first step in the protocol connects the nearest neighbors.

This step is the quickest and most efficient. It has the most non-overlapping simultaneous loops and requires only 1 KE to complete. Every host in this step has access to KLJN band and thus are in State 2.

https://doi.org/10.1371/journal.pone.0070206.g007

Download:

Table 3. Truth table of left KLJN filter when a host is in State 2 (active host).

https://doi.org/10.1371/journal.pone.0070206.t003

Download:

Table 4. Truth table of power filter when a host is in State 2 (active host).

https://doi.org/10.1371/journal.pone.0070206.t004

In this section we have shown that the line can be packed with non-overlapping KLJN loops to execute simultaneous key exchanges between selected hosts. In the next section, we propose a network protocol to provide secure keys for each host to be able to communicate securely via the internet or other publicly accessible channels between arbitrary pairs of hosts. The time requirement of key exchange over the whole smart grid will also be analyzed versus the network size N.

2.2 Protocol and Speed

To quickly and efficiently connect every host with all other host in the same one-dimensional network we need to establish a protocol. The protocol must make every possible connection in the network, must not overlap loops, and must be quick and efficient by making as many simultaneous loops without overlapping as possible.

To determine the time and speed requirements to establish a KLJN secure key exchange we must first define terms. In the classical KLJN system, where only the noise existed in the wire, the low-frequency cutoff of the noise was 0 Hz and the high-frequency cut-off was . In the case of KLJN in a smart grid, this situation will be different because of the power frequency. However, at short distances (less than 10 miles), the band can be beyond the power frequency f_p and the difference is negligible. Then the shortest characteristic time in the system is the correlation time of the noise (). is determined by the distance L between Alice and Bob so that [21] (for example, for L = 1 kilometer). Alice and Bob must make a statistics on the noise, which typically requires around 100 duration [25] (or 0.01 seconds if we use kHz) to have a sufficiently high fidelity (note, faster performance is expected in advanced KLJN methods [31]). A bit exchange (BE) occurs when Alice and Bob have different resistor values, this occurs on average of 200 or 0.02 seconds if kHz. The length of the secure key exchange can be any arbitrary length. For example if we have a key length of 100 bits then, we need 100 BE which requires on average 20000 which is approximately 2 seconds if is 10 kHz. Once the KLJN secure key has been exchanged the total amount of time needed to complete this is one KLJN secure key Exchange period (KE). While the key exchange is slow, the system has the advantage that it is running continuously (not only during the handshake period like during common secure internet protocols) thus large number of secure key bits are produced during the continuous operation.

For the sake of simplicity, we use the pessimistic estimation by assuming a uniform duration for KE determined by the largest distance in the network even though short distances can exchange keys at a higher speed.

The protocol we propose here first connects the nearest neighbor of every host; this allows the highest number of simultaneous non-overlapping loops per KE and only requires one KE to complete this first step. The protocol then connects the second nearest neighbors; this allows the second highest numbers of simultaneous loops per KE. However, due to the requirement of avoiding overlapping loops, connecting each pairs of second nearest neighbors requires two KEs. The protocol then connects the third nearest neighbors which requires 3 KEs to complete and connects the third most simultaneous loops per KE. This procedure continues until the i-th nearest neighbor is equal to or less than half of the size of the network. If the number of steps i between the i-th nearest neighbors satisfies the relation then, to avoid overlapping loops, only one connection per KE is possible.

As an example, we will show in the next section that for N = 7 (see Figure 2) 16 KEs (or approximately 32 seconds if is 10 kHz) are required when the keys are 100 bits long. Using this protocol, the analytic form of the exact time required to fully arm every host with enough keys to securely communicate with everybody in the network is dependent on the size of the network and whether the network has an even or odd size. In the following sections we will deduce the analytic relations and show examples.

2.2.1 The network size N is an odd number.

We illustrate the calculation of time requirement with examples shown in the following figures. A general formula for an arbitrary size network when N is odd is given later. In this example we have a network of size . We have 8 host with index i . We have 7 intermediate connections between the first and last host.

The first step in the protocol connects the nearest neighbors, see Figure 7.

The second step in the protocol will then connect the second nearest neighbors, see Figure 8.

Download:

Figure 8. The second step in the protocol connects the second nearest neighbors.

This step is the second quickest and the second most efficient. It has the second most non-overlapping simultaneous loops and requires 2 KEs to complete.

https://doi.org/10.1371/journal.pone.0070206.g008

The protocol will then connect the third closest neighbors as shown in Figure 9. This will take 3 KEs to complete and is not as efficient as the first two steps in the protocol but still has simultaneous loops in two of its KE steps.

Download:

Figure 9. The third step in the protocol connects the third nearest neighbors.

This step is not as efficient as the first two steps but still has simultaneous loops. This step requires 3 KEs to complete.

https://doi.org/10.1371/journal.pone.0070206.g009

The protocol will then connect the fourth nearest neighbors as shown in Figure 10. This is above the midpoint for our example with N = 7 and is the slowest and least efficient step in the protocol. The midpoint is considered when the distance between Alice and Bob is equal to half the length of the network. These steps will take 4 KEs to complete. Simultaneous loops with disconnected hosts are no longer possible beyond the midpoint. The slowest and least efficient steps occur at the midpoint of the protocol.

Download:

Figure 10. The fourth step in the protocol connects the fourth nearest neighbors.

This step is the slowest and least efficient step in the protocol in our example of N = 7. This step requires 4 KEs to complete.

https://doi.org/10.1371/journal.pone.0070206.g010

The protocol will then connect the fifth nearest neighbors as shown in Figure 11. This step will take 3 KEs to complete. It is also inefficient since it is beyond the midpoint thus only a single loop is possible, but it requires fewer KEs since there are only three such pairs.

Download:

Figure 11. The fifth step in the protocol connects the fifth nearest neighbors.

This step is not efficient since simultaneous non-overlapping loops with disconnected hosts cannot occur.

https://doi.org/10.1371/journal.pone.0070206.g011

The protocol will then connect the sixth nearest neighbors as shown in Figure 12. This step will take 2 KEs because there are only two possibilities.

Download:

Figure 12. The sixth step in the protocol connects the sixth nearest neighbors.

This step requires only 2 KEs since there are only two possibilities.

https://doi.org/10.1371/journal.pone.0070206.g012

The protocol will then connect the seventh closest neighbors as shown in Figure 13. This will take 1 KE since there is only one such pair of hosts.

Download:

Figure 13. Only one key exchange is performed in this step.

Host 1 through 6 are not allowed access to KLJN band thus they are in State 1. The seventh and the last step. This step is not efficient but only requires one KE since there is only one such pair of hosts.

https://doi.org/10.1371/journal.pone.0070206.g013

This completes the protocol for an example of size. Notice the pattern that occurs for N being odd. We have a pattern of 1 KE, 2 KE, 3 KE, 4 KE, 3 KE, 2 KE, and 1 KE. This is essentially Gauss’s counting technique up to N/2 and back. The total number of KEs needed will be 1KE+2KE+3KE+4KE+3KE+2KE+1KE = 16KE.

The speed or time requirement of the protocol for a network of arbitrary size N with N being odd is KEs and can be derived as follows.

Since N is odd we can express it as;(2)

To find the midpoint we can solve n and express it in terms of N, this gives the following;(3)

The pattern when N is odd has the following form;(4)

Expressing n in terms of N gives;(5)

We know from Gauss’s counting method that, (6)

In our pattern we can use Gauss’s counting method twice to find the sum as follows.(7)

This simplifies to(8)

Thus the speed of the network is proportional to with N being odd and the size of the network. The pattern for when N is even is similar.

2.2.2 The network size N is an even number.

For the sake of easier understanding and for those without a communications background, we will again illustrate the calculation of time requirement with examples shown in the following figures. In this case, we have an even number as network size N = 8. We have 9 host with index i . We have 8 intermediate connections between the first and last host.

The first step in the protocol connects the nearest neighbors. This step is the quickest and most efficient. It has the most simultaneous non-overlapping loops and requires only one KE to complete. Figure 14 illustrates this first step in the protocol.

Download:

Figure 14. The first step in the protocol connects the nearest neighbors.

This step is the quickest and most efficient. It has the most non-overlapping simultaneous loops and requires only 1 KE to complete.

https://doi.org/10.1371/journal.pone.0070206.g014

The second step in the protocol will then connect the second nearest neighbors as shown in Figure 15. This step will take two KEs to complete and has the second most simultaneous non-lapping loops. It is the second quickest and second most efficient step.

Download:

Figure 15. The second step in the protocol connects the second nearest neighbors.

This step requires 2 KEs to complete.

https://doi.org/10.1371/journal.pone.0070206.g015

The protocol will then connect the third nearest neighbors as shown in Figure 16. This will take 3 KEs to complete and is not as efficient as the first two steps in the protocol but still has simultaneous loops in this example of _.

Download:

Figure 16. The third step in the protocol connects the third nearest neighbors.

This step requires 3 KEs to complete.

https://doi.org/10.1371/journal.pone.0070206.g016

The protocol will then connect the fourth nearest neighbors as shown in Figure 17. This is at the midpoint for our example with and is the slowest and least efficient step in the protocol. The midpoint is defined when the distance between Alice and Bob is equal to half the length of the network. This step will take 4 KEs to complete. The slowest and least efficient steps occur at the midpoint of the protocol.

Download:

Figure 17. The fourth step in the protocol connects the fourth nearest neighbors.

It requires 4 KEs to complete.

https://doi.org/10.1371/journal.pone.0070206.g017

The protocol will then connect the fifth nearest neighbors as shown in Figure 18. This step will take 4 KEs to complete. It is not efficient since it is at midpoint.

Download:

Figure 18. The fifth step in the protocol connects the fifth nearest neighbors.

This step is not efficient since simultaneous non-overlapping loops with disconnected hosts cannot occur. It requires 4 KEs to complete.

https://doi.org/10.1371/journal.pone.0070206.g018

The protocol will then connect the sixth nearest neighbors as shown in Figure 19. This step will take 3 KEs because there are only three possibilities at this distance in this example of a network of size .

Download:

Figure 19. The sixth step in the protocol connects the sixth nearest neighbors.

This step requires only 3 KEs since it is the third to last step and there are only three possibilities.

https://doi.org/10.1371/journal.pone.0070206.g019

The protocol will then connect the seventh nearest neighbors as shown in Figure 20. This will take 2 KEs since there are only two pairs of host with a length of seven hosts between them.

Download:

Figure 20. The seventh step in this example of a network of size

.

This step is not efficient but only requires two KEs since there are only two such pairs of host.

https://doi.org/10.1371/journal.pone.0070206.g020

The last step in the protocol connects the first and last hosts. This step is the least efficient and requires the entire length of the network. Since there is only one pair of host at this length, this step requires only one KE. This last step is illustrated in Figure 21.

Download:

Figure 21. The last step in our example with N = 8.

This step is not efficient but only requires one KE since there is only one pair of hosts that are eight hosts apart.

https://doi.org/10.1371/journal.pone.0070206.g021

Notice the pattern that occurs for N being even. We have 1 KE, 2 KE, 3 KE, 4 KE, 4 KE, 3 KE, 2 KE, and 1 KE. This is essentially Gauss’s counting technique up to N/2 and back. The total number of KEs needed will be The time needed to connect the entire network will take 20 KEs which is approximately 40 seconds if is 10 kHz and if the key is 100 bits long.

The speed or time requirement of the protocol for a network of size N with N being even between the first and last host is KEs and can be derived as follows.

With the pattern in our example is;(9)

Since N is even we can express it as;(10)

To find the midpoint we can solve n and express it in terms of N, this gives the following;(11)

The general pattern when N is even has the following form;(12)

Expressing n in terms of N gives;(13)

We know from Gauss’s counting method that,(14)

In our pattern we can use Gauss’s counting method twice to find the sum as follows.(15)(16)

This simplifies to(17)

Thus the speed of the network is proportional to with N being the size of the network and even.

Limitations of the study, open questions, and future work

To fully implement the KLJN key exchange protocol over the grid will require solutions to further engineering problems. This paper presents results of our early work, which focuses on the system-concept in a one-dimensional network. Some of the limitations, open questions, and future work are discussed below.

3.1. Limitations

The main limitation of the KLJN protocol is that it is a peer-to-peer network. This will limit the number of simultaneous KLJN key exchanges a host can have. Since overlapping loops are not allowed, the time required scales quadratically with the number of hosts. Another limit is that the KLJN bandwidth is dependent on the distance between Alice and Bob and slows down for large distances. These limitations make it impractical to connect millions of hosts via a linear chain thus other topologies (and perhaps bridges or routers) will be needed to connect such chains with each other. Practical limitations in the power system, such as tap-changing transformers and other devices may also require bridges to couple the KLJN signal around these devices.

3.2. Open Questions

The related technical challenges need further researches that are straightforward. For example distribution transformers can shield most of the signals sent from one phase from the load side but there are many ways to get around them with the KLJN band. We don’t investigate the problems of phase-correcting inductors and capacitors since they are separated by the power filters from the KLJN band. Research and development will be needed for some of these problems including how to setup filters in each node. Accuracies are typically within a few percent. In the experimental demo the cable resistance was 2% of total loop resistance. In practice, the impedance of the power grid would need to be taken into account.

3.3. Future Work

Future work will, among others, include protocols for several other power grid topologies. Setting up filters on the power grid and implementing all the filters will also be studied. Hacking attacks against filters and the defense against them is also an interesting open problem.

Conclusions

We have introduced a protocol to offer unconditionally secure key exchange over the smart grid. We used a reconfigurable filter system and proposed a special protocol to create non-overlapping single loops in the smart power grid for the realization of the Kirchhoff-Law-Johnson-(like)-Noise secure key distribution system. The protocol is valid for one-dimensional networks like the radial electrical power distributions grid. We carried out a scaling analysis for the speed of the protocol versus the size of the grid. When properly generalized, such a system has the potential to achieve unconditionally secure key distribution over the smart power grid of arbitrary dimensions.

Before the implementation of the protocol can take place several practical questions must be answered such as the impact of finite and possibly varying wire resistance, capacitance and power load on the security; and the applications of relevant privacy amplification methods. Other questions include changing size N, hacking attacks against the filter control and the relevant defense tools. We also discussed the limitations of the KLJN key exchange protocol, open questions surrounding the implementation on the smart grid, and future work required. Since this paper is a system-concept study we leave the details to future work.

Acknowledgments

Discussions with Mladen Kezunovic and Karen Butler-Perry about smart grid security are appreciated. LK is grateful to Horace Yuen for discussions about physical secure key exchange systems. Discussions with Yessica Saez are also appreciated.

Author Contributions

Wrote the paper: EG LK RB PE. Analyzed the theoretical data: EG LK RB PE. Contributed to the theoretical analysis tools: EG LK RB PE.

References

1. Engleman E, Robertson J (2013) Obama to share cybersecurity priorities with congress. Blomberg News, February 26. http://www.bloomberg.com/news/2013-02-27/obama-to-share-cybersecurity-priorities-with-congress.html. Accessed June 26, 2013.
2. Amin SM, Wollenberg BF (2008) Toward a smart grid. IEEE Power Energy Mag. 3: 114–122.
- View Article
- Google Scholar
3. Kezunovic M (2011) Smart Fault Location for Smart Grids. IEEE Trans. Smart Grid 2: 11–22.
- View Article
- Google Scholar
4. McDaniel P, McLaughlin S (2009) Security and privacy challenges in the smart Grid. IEEE Security & Privacy vol. 7: 75–77.
- View Article
- Google Scholar
5. Kundur D, Xianyong F, Shan L Zourntos T Butler-Purry, KL (2010) Towards a Framework for Cyber Attack Impact Analysis of the Electric Smart Grid. Proc. First IEEE International Conference on Smart Grid Communications: 244–249. DOI: https://doi.org/10.1109/SMARTGRID.2010.5622049.
6. Liang Y, Poor HV, Shamai S (2008) Information theoretic security. Foundations Trends Commun. Inform. Theory 5: 355–580
- View Article
- Google Scholar
7. Yuen HP (2012) On the Foundations of Quantum Key Distribution - Reply to Renner and Beyond. manuscript http://arxiv.org/abs/1210.2804.
8. Gerhardt I, Liu Q, Lamas-Linares A, Skaar J, Kurtsiefer C, Makarov V (2011) Full-field implementation of a perfect eavesdropper on a quantum cryptography system. Nature Communications 2. doi: https://doi.org/10.1038/ncomms1348.
9. Lydersen L, Wiechers C, Wittmann C, Elser D, Skaar J, et al (2010) Hacking commercial quantum cryptography systems by tailored bright illumination. Nature Photonics 4: 686–689
- View Article
- Google Scholar
10. Gerhardt I, Liu Q, Lamas-Linares A, Skaar J, Scarani V, et al.. (2011) Experimentally faking the violation of Bell’s inequalities. Physical Review Letters 107. doi: https://doi.org/10.1103/PhysRevLett.107.170404.
11. Makarov V, Skaar J (2008) Fakes states attack using detector efficiency mismatch on SARG04, phase-time, DPSK, and Ekert protocols. Quantum Information & Computation 8: 622–635.
- View Article
- Google Scholar
12. Wiechers C, Lydersen L, Wittmann C, Elser D, Skaar J, et al.. (2011) After-gate attack on a quantum cryptosystem. New Journal of Physics 13. doi: https://doi.org/10.1088/1367-2630/13/1/013043.
13. Lydersen L, Wiechers C, Wittmann C, Elser D, Skaar J, et al. (2010) Thermal blinding of gated detectors in quantum cryptography. Optics Express 18: 27938–27954
- View Article
- Google Scholar
14. Jain N, Wittmann C, Lydersen L, Wiechers C, Elser D, et al.. (2011) Device calibration impacts security of quantum key distribution. Physical Review Letters 107. doi: https://doi.org/10.1103/PhysRevLett.107.11051.
15. Lydersen L, Skaar J, Makarov V (2011) Tailored bright illumination attack on distributed-phase-reference protocols. Journal of Modern Optics 58: 680–685
- View Article
- Google Scholar
16. Lydersen L, Akhlaghi MK, Majedi AH, Skaar J, Makarov V (2011) Controlling a superconducting nanowire single-photon detector using tailored bright illumination. New Journal of Physics 13. doi: https://doi.org/10.1088/1367-2630/13/11/113042.
17. Lydersen L, Makarov V, Skaar J (2011) Comment on “Resilience of gated avalanche photodiodes against bright illumination attacks in quantum cryptography” Appl. Phys. Lett. 98, 231104 (2011). Applied Physics Letters 99. doi: https://doi.org/10.1063/1.3658806.
18. Sauge S, Lydersen L, Anisimov A, Skaar J, Makarov V (2011) Controlling an actively-quenched single photon detector with bright light. Optics Express 19: 23590–23600.
- View Article
- Google Scholar
19. Lydersen L, Jain N, Wittmann C, Maroy O, Skaar J, et al.. (2011) Superlinear threshold detectors in quantum cryptography. Physical Review A 84. doi: https://doi.org/10.1103/PhysRevA.84.032320.
20. Lydersen L, Wiechers C, Wittmann C, Elser D, Skaar J, et al. (2010) Avoiding the blinding attack in QKD reply. Nature Photonics 4: 801–801
- View Article
- Google Scholar
21. Makarov V (2009) Controlling passively quenched single photon detectors by bright light. New Journal of Physics 11. doi: https://doi.org/10.1088/1367-2630/11/6/065003.
22. Kish LB (2006) Totally secure classical communication utilizing Johnson (−like) noise and Kirchoff’s law. Physics Letters A 352: 178–182
- View Article
- Google Scholar
23. Kish LB (2006) Protection against the man-in the-middle-attack for the Kirchhoff-loop-Johnson(−like)-noise cipher and expansion by voltage-based security. Fluctuation and Noise Letters 6: L57–L63
- View Article
- Google Scholar
24. Mingesz R, Kish LB, Gingl Z, Granqvist CG, Wen H, et al.. (2013) Unconditional security by the laws of classical physics. Metrology and Measurement Systems 20:3–16; (open access) http://www.metrology.pg.gda.pl/full/2013/M&MS_2013_003.pdf.
25. Mingesz R, Gingl Z, Kish LB (2008) Johnson(−like)-Noise-Kirchhoff-loop based secure classical communicator characteristics, for ranges of two to two thousand kilometers, via model-line. Physics Letters A 372: 978–984
- View Article
- Google Scholar
26. Kish LB, Saidi O (2008) Unconditionally secure computers, algorithms and hardware, such as memories, processors, keyboards, flash and hard drives. Fluctuation and Noise Letters 8: L95–L98
- View Article
- Google Scholar
27. Kish LB, Peper F (2012) Information networks secured by the laws of physics. Ieice Transactions on Communications. E95B: 1501–1507
- View Article
- Google Scholar
28. Kish LB, Mingez R (2006) Totally secure classical networks with multipoint telecloning (teleportation) of classical bits through loops with Johnson-like noise. Fluctuation and noise letters 6: L447–L447
- View Article
- Google Scholar
29. Balog RS, Krein PT (2013) Coupled Inductor Filters: A Basic Filter Building Block. IEEE Transactions on Power Electronics 28: 537–546.
- View Article
- Google Scholar
30. Kim S, Enjeti PN (2002) A new hybrid active power filter (APF) topology. IEEE Transactions on Power Electronics 17: 48–54.
- View Article
- Google Scholar
31. Kish LB (2013) Enhanced secure key exchange systems based on the Johnson-noise scheme. Metrology & Measurement Systems XX: 191–204 Available: http://www.degruyter.com/view/j/mms.2013.20.issue-2/mms-2013-0017/mms-2013-0017.xml?format=INT.
- View Article
- Google Scholar

[ref1] 1. Engleman E, Robertson J (2013) Obama to share cybersecurity priorities with congress. Blomberg News, February 26. http://www.bloomberg.com/news/2013-02-27/obama-to-share-cybersecurity-priorities-with-congress.html. Accessed June 26, 2013.

[ref2] 2. Amin SM, Wollenberg BF (2008) Toward a smart grid. IEEE Power Energy Mag. 3: 114–122.
View Article
Google Scholar

[3] View Article

[4] Google Scholar

[ref3] 3. Kezunovic M (2011) Smart Fault Location for Smart Grids. IEEE Trans. Smart Grid 2: 11–22.
View Article
Google Scholar

[6] View Article

[7] Google Scholar

[ref4] 4. McDaniel P, McLaughlin S (2009) Security and privacy challenges in the smart Grid. IEEE Security & Privacy vol. 7: 75–77.
View Article
Google Scholar

[9] View Article

[10] Google Scholar

[ref5] 5. Kundur D, Xianyong F, Shan L Zourntos T Butler-Purry, KL (2010) Towards a Framework for Cyber Attack Impact Analysis of the Electric Smart Grid. Proc. First IEEE International Conference on Smart Grid Communications: 244–249. DOI: https://doi.org/10.1109/SMARTGRID.2010.5622049.

[ref6] 6. Liang Y, Poor HV, Shamai S (2008) Information theoretic security. Foundations Trends Commun. Inform. Theory 5: 355–580
View Article
Google Scholar

[13] View Article

[14] Google Scholar

[ref7] 7. Yuen HP (2012) On the Foundations of Quantum Key Distribution - Reply to Renner and Beyond. manuscript http://arxiv.org/abs/1210.2804.

[ref8] 8. Gerhardt I, Liu Q, Lamas-Linares A, Skaar J, Kurtsiefer C, Makarov V (2011) Full-field implementation of a perfect eavesdropper on a quantum cryptography system. Nature Communications 2. doi: https://doi.org/10.1038/ncomms1348.

[ref9] 9. Lydersen L, Wiechers C, Wittmann C, Elser D, Skaar J, et al (2010) Hacking commercial quantum cryptography systems by tailored bright illumination. Nature Photonics 4: 686–689
View Article
Google Scholar

[18] View Article

[19] Google Scholar

[ref10] 10. Gerhardt I, Liu Q, Lamas-Linares A, Skaar J, Scarani V, et al.. (2011) Experimentally faking the violation of Bell’s inequalities. Physical Review Letters 107. doi: https://doi.org/10.1103/PhysRevLett.107.170404.

[ref11] 11. Makarov V, Skaar J (2008) Fakes states attack using detector efficiency mismatch on SARG04, phase-time, DPSK, and Ekert protocols. Quantum Information & Computation 8: 622–635.
View Article
Google Scholar

[22] View Article

[23] Google Scholar

[ref12] 12. Wiechers C, Lydersen L, Wittmann C, Elser D, Skaar J, et al.. (2011) After-gate attack on a quantum cryptosystem. New Journal of Physics 13. doi: https://doi.org/10.1088/1367-2630/13/1/013043.

[ref13] 13. Lydersen L, Wiechers C, Wittmann C, Elser D, Skaar J, et al. (2010) Thermal blinding of gated detectors in quantum cryptography. Optics Express 18: 27938–27954
View Article
Google Scholar

[26] View Article

[27] Google Scholar

[ref14] 14. Jain N, Wittmann C, Lydersen L, Wiechers C, Elser D, et al.. (2011) Device calibration impacts security of quantum key distribution. Physical Review Letters 107. doi: https://doi.org/10.1103/PhysRevLett.107.11051.

[ref15] 15. Lydersen L, Skaar J, Makarov V (2011) Tailored bright illumination attack on distributed-phase-reference protocols. Journal of Modern Optics 58: 680–685
View Article
Google Scholar

[30] View Article

[31] Google Scholar

[ref16] 16. Lydersen L, Akhlaghi MK, Majedi AH, Skaar J, Makarov V (2011) Controlling a superconducting nanowire single-photon detector using tailored bright illumination. New Journal of Physics 13. doi: https://doi.org/10.1088/1367-2630/13/11/113042.

[ref17] 17. Lydersen L, Makarov V, Skaar J (2011) Comment on “Resilience of gated avalanche photodiodes against bright illumination attacks in quantum cryptography” Appl. Phys. Lett. 98, 231104 (2011). Applied Physics Letters 99. doi: https://doi.org/10.1063/1.3658806.

[ref18] 18. Sauge S, Lydersen L, Anisimov A, Skaar J, Makarov V (2011) Controlling an actively-quenched single photon detector with bright light. Optics Express 19: 23590–23600.
View Article
Google Scholar

[35] View Article

[36] Google Scholar

[ref19] 19. Lydersen L, Jain N, Wittmann C, Maroy O, Skaar J, et al.. (2011) Superlinear threshold detectors in quantum cryptography. Physical Review A 84. doi: https://doi.org/10.1103/PhysRevA.84.032320.

[ref20] 20. Lydersen L, Wiechers C, Wittmann C, Elser D, Skaar J, et al. (2010) Avoiding the blinding attack in QKD reply. Nature Photonics 4: 801–801
View Article
Google Scholar

[39] View Article

[40] Google Scholar

[ref21] 21. Makarov V (2009) Controlling passively quenched single photon detectors by bright light. New Journal of Physics 11. doi: https://doi.org/10.1088/1367-2630/11/6/065003.

[ref22] 22. Kish LB (2006) Totally secure classical communication utilizing Johnson (−like) noise and Kirchoff’s law. Physics Letters A 352: 178–182
View Article
Google Scholar

[43] View Article

[44] Google Scholar

[ref23] 23. Kish LB (2006) Protection against the man-in the-middle-attack for the Kirchhoff-loop-Johnson(−like)-noise cipher and expansion by voltage-based security. Fluctuation and Noise Letters 6: L57–L63
View Article
Google Scholar

[46] View Article

[47] Google Scholar

[ref24] 24. Mingesz R, Kish LB, Gingl Z, Granqvist CG, Wen H, et al.. (2013) Unconditional security by the laws of classical physics. Metrology and Measurement Systems 20:3–16; (open access) http://www.metrology.pg.gda.pl/full/2013/M&MS_2013_003.pdf.

[ref25] 25. Mingesz R, Gingl Z, Kish LB (2008) Johnson(−like)-Noise-Kirchhoff-loop based secure classical communicator characteristics, for ranges of two to two thousand kilometers, via model-line. Physics Letters A 372: 978–984
View Article
Google Scholar

[50] View Article

[51] Google Scholar

[ref26] 26. Kish LB, Saidi O (2008) Unconditionally secure computers, algorithms and hardware, such as memories, processors, keyboards, flash and hard drives. Fluctuation and Noise Letters 8: L95–L98
View Article
Google Scholar

[53] View Article

[54] Google Scholar

[ref27] 27. Kish LB, Peper F (2012) Information networks secured by the laws of physics. Ieice Transactions on Communications. E95B: 1501–1507
View Article
Google Scholar

[56] View Article

[57] Google Scholar

[ref28] 28. Kish LB, Mingez R (2006) Totally secure classical networks with multipoint telecloning (teleportation) of classical bits through loops with Johnson-like noise. Fluctuation and noise letters 6: L447–L447
View Article
Google Scholar

[59] View Article

[60] Google Scholar

[ref29] 29. Balog RS, Krein PT (2013) Coupled Inductor Filters: A Basic Filter Building Block. IEEE Transactions on Power Electronics 28: 537–546.
View Article
Google Scholar

[62] View Article

[63] Google Scholar

[ref30] 30. Kim S, Enjeti PN (2002) A new hybrid active power filter (APF) topology. IEEE Transactions on Power Electronics 17: 48–54.
View Article
Google Scholar

[65] View Article

[66] Google Scholar

[ref31] 31. Kish LB (2013) Enhanced secure key exchange systems based on the Johnson-noise scheme. Metrology & Measurement Systems XX: 191–204 Available: http://www.degruyter.com/view/j/mms.2013.20.issue-2/mms-2013-0017/mms-2013-0017.xml?format=INT.
View Article
Google Scholar

[68] View Article

[69] Google Scholar