QubitHammer Attacks: Qubit Flipping Attacks in Multi-tenant Superconducting Quantum Computers
- URL: http://arxiv.org/abs/2504.07875v1
- Date: Thu, 10 Apr 2025 15:50:57 GMT
- Title: QubitHammer Attacks: Qubit Flipping Attacks in Multi-tenant Superconducting Quantum Computers
- Authors: Yizhuo Tan, Navnil Choudhury, Kanad Basu, Jakub Szefer,
- Abstract summary: We present for the first time a set of novel attacks, named together as the QubitHammer attacks.<n>We show that in a multi-tenant cloud-based quantum system, an adversary can utilize the QubitHammer attacks to significantly degrade the fidelity of victim circuits.<n>Our findings exhibit the effectiveness of these attacks across various superconducting quantum computers from a leading vendor.
- Score: 9.972249757100087
- License: http://creativecommons.org/licenses/by/4.0/
- Abstract: Quantum computing is rapidly evolving its capabilities, with a corresponding surge in its deployment within cloud-based environments. Various quantum computers are accessible today via pay-as-you-go cloud computing models, offering unprecedented convenience. Due to its rapidly growing demand, quantum computers are shifting from a single-tenant to a multi-tenant model to enhance resource utilization. However, this widespread accessibility to shared multi-tenant systems also introduces potential security vulnerabilities. In this work, we present for the first time a set of novel attacks, named together as the QubitHammer attacks, which target state-of-the-art superconducting quantum computers. We show that in a multi-tenant cloud-based quantum system, an adversary with the basic capability to deploy custom pulses, similar to any standard user today, can utilize the QubitHammer attacks to significantly degrade the fidelity of victim circuits located on the same quantum computer. Upon extensive evaluation, the QubitHammer attacks achieve a very high variational distance of up to 0.938 from the expected outcome, thus demonstrating their potential to degrade victim computation. Our findings exhibit the effectiveness of these attacks across various superconducting quantum computers from a leading vendor, suggesting that QubitHammer represents a new class of security attacks. Further, the attacks are demonstrated to bypass all existing defenses proposed so far for ensuring the reliability in multi-tenant superconducting quantum computers.
Related papers
- Cyber Threat Detection Enabled by Quantum Computing [7.119884090052995]
Threat detection models in cybersecurity must keep up with shifting traffic, strict feature budgets, and noisy hardware.<n>Small, near-term quantum processors are now available, but existing work rarely shows whether quantum components can improve end-to-end detection.<n>We address this gap with a hybrid architecture that uses a compact multilayer perceptron to compress security data and then routes a few features to 2-4 qubit quantum heads.
arXiv Detail & Related papers (2025-12-20T20:10:36Z) - Performance and Storage Analysis of CRYSTALS Kyber as a Post Quantum Replacement for RSA and ECC [49.1574468325115]
CRYSTALS-Kyber is a post-quantum cryptographic solution standardized by NIST in 2022.<n>This study evaluates Kyber's practical viability through performance testing across various implementation schemes.
arXiv Detail & Related papers (2025-08-03T09:53:45Z) - A Virtual Quantum Network Prototype for Open Access [2.5972252486036904]
Current quantum network systems remain limited in scale, are highly application-specific, and lack a clear road map for global expansion.<n>This paper proposes an open-access software-based quantum network virtualization platform to facilitate scalable and remote interaction with quantum hardware.<n>System is built around a cloud application that virtualizes the core hardware components of a lab-scale quantum network testbed.
arXiv Detail & Related papers (2025-07-23T13:24:34Z) - Demonstration of Efficient Predictive Surrogates for Large-scale Quantum Processors [64.50565018996328]
We introduce the concept of predictive surrogates, designed to emulate the mean-value behavior of a given quantum processor with provably computational efficiency.<n>We use these surrogates to emulate a quantum processor with up to 20 programmable superconducting qubits, enabling efficient pre-training of variational quantum eigensolvers.<n> Experimental results reveal that the predictive surrogates not only reduce measurement overhead by orders of magnitude, but can also surpass the performance of conventional, quantum-resource-intensive approaches.
arXiv Detail & Related papers (2025-07-23T12:51:03Z) - Quantum Executor: A Unified Interface for Quantum Computing [46.36953285198747]
Quantum Executor is a backend-agnostic execution engine designed to orchestrate quantum experiments across heterogeneous platforms.<n>Key features include support for asynchronous and distributed execution, customizable execution strategies and a unified API for managing quantum experiments.
arXiv Detail & Related papers (2025-07-10T09:55:32Z) - Experimental verifiable multi-client blind quantum computing on a Qline architecture [0.5018974919510384]
We provide the first experimental implementation of a two-client verifiable blind quantum computing protocol in a distributed architecture.
Results represent novel perspectives for the verification of multi-tenant distributed quantum computation in large-scale networks.
arXiv Detail & Related papers (2024-07-12T14:48:58Z) - A Quantum-Classical Collaborative Training Architecture Based on Quantum
State Fidelity [50.387179833629254]
We introduce a collaborative classical-quantum architecture called co-TenQu.
Co-TenQu enhances a classical deep neural network by up to 41.72% in a fair setting.
It outperforms other quantum-based methods by up to 1.9 times and achieves similar accuracy while utilizing 70.59% fewer qubits.
arXiv Detail & Related papers (2024-02-23T14:09:41Z) - Mitigating Errors on Superconducting Quantum Processors through Fuzzy
Clustering [38.02852247910155]
A new Quantum Error Mitigation (QEM) technique uses Fuzzy C-Means clustering to specifically identify measurement error patterns.
We report a proof-of-principle validation of the technique on a 2-qubit register, obtained as a subset of a real NISQ 5-qubit superconducting quantum processor.
We demonstrate that the FCM-based QEM technique allows for reasonable improvement of the expectation values of single- and two-qubit gates based quantum circuits.
arXiv Detail & Related papers (2024-02-02T14:02:45Z) - QuantumSEA: In-Time Sparse Exploration for Noise Adaptive Quantum
Circuits [82.50620782471485]
QuantumSEA is an in-time sparse exploration for noise-adaptive quantum circuits.
It aims to achieve two key objectives: (1) implicit circuits capacity during training and (2) noise robustness.
Our method establishes state-of-the-art results with only half the number of quantum gates and 2x time saving of circuit executions.
arXiv Detail & Related papers (2024-01-10T22:33:00Z) - Stealthy SWAPs: Adversarial SWAP Injection in Multi-Tenant Quantum
Computing [2.77390041716769]
Multi-tenant computing (MTC) has emerged as a potential solution for efficient hardware utilization.
This paper proposes one such threat for MTC in superconducting quantum hardware i.e., adversarial SWAP gate injection in victims program during compilation for MTC.
We report a max of approximately 55 percent and a median increase of approximately 25 percent in SWAP overhead.
arXiv Detail & Related papers (2023-10-26T14:31:21Z) - Classification of Quantum Computer Fault Injection Attacks [10.353892677735212]
There is a significant gap in our understanding of the vulnerabilities these computers face in terms of security and privacy attacks.
This paper presents an exploration of fault-injection attacks as one class of physical attacks on quantum computers.
By shedding light on the vulnerabilities of quantum computers to fault-injection attacks, this work contributes to the development of robust security measures for this emerging technology.
arXiv Detail & Related papers (2023-09-11T14:16:43Z) - Demonstration of quantum-digital payments [36.136619420474766]
We show how quantum light can secure daily digital payments by generating inherently unforgeable quantum cryptograms.
Unlike previously proposed protocols, our solution does not depend on long-term quantum storage or trusted agents and authenticated channels.
It is practical with near-term technology and may herald an era of quantum-enabled security.
arXiv Detail & Related papers (2023-05-23T20:20:14Z) - Field-deployable Quantum Memory for Quantum Networking [62.72060057360206]
We present a quantum memory engineered to meet real-world deployment and scaling challenges.
The memory technology utilizes a warm rubidium vapor as the storage medium, and operates at room temperature.
We demonstrate performance specifications of high-fidelity retrieval (95%) and low operation error $(10-2)$ at a storage time of 160 $mu s$ for single-photon level quantum memory operations.
arXiv Detail & Related papers (2022-05-26T00:33:13Z) - Experimental quantum adversarial learning with programmable
superconducting qubits [15.24718195264974]
We show the first experimental demonstration of quantum adversarial learning with programmable superconducting qubits.
Our results reveal experimentally a crucial vulnerability aspect of quantum learning systems under adversarial scenarios.
arXiv Detail & Related papers (2022-04-04T18:00:00Z) - An Evolutionary Pathway for the Quantum Internet Relying on Secure
Classical Repeaters [64.48099252278821]
We conceive quantum networks using secure classical repeaters combined with the quantum secure direct communication principle.
In these networks, the ciphertext gleaned from a quantum-resistant algorithm is transmitted using QSDC along the nodes.
We have presented the first experimental demonstration of a secure classical repeater based hybrid quantum network.
arXiv Detail & Related papers (2022-02-08T03:24:06Z) - Shuttle-Exploiting Attacks and Their Defenses in Trapped-Ion Quantum
Computers [5.510992382274774]
This paper presents one such vulnerability in shared TI systems that require shuttle operations for communication among traps.
We propose a random and systematic methodology for adversary program generation.
Our analysis shows shuttle-exploiting attacks can substantially degrade the fidelities of victim programs by 2X to 63X.
arXiv Detail & Related papers (2021-08-02T17:19:59Z) - Hardware-Efficient, Fault-Tolerant Quantum Computation with Rydberg
Atoms [55.41644538483948]
We provide the first complete characterization of sources of error in a neutral-atom quantum computer.
We develop a novel and distinctly efficient method to address the most important errors associated with the decay of atomic qubits to states outside of the computational subspace.
Our protocols can be implemented in the near-term using state-of-the-art neutral atom platforms with qubits encoded in both alkali and alkaline-earth atoms.
arXiv Detail & Related papers (2021-05-27T23:29:53Z) - Entangling Quantum Generative Adversarial Networks [53.25397072813582]
We propose a new type of architecture for quantum generative adversarial networks (entangling quantum GAN, EQ-GAN)
We show that EQ-GAN has additional robustness against coherent errors and demonstrate the effectiveness of EQ-GAN experimentally in a Google Sycamore superconducting quantum processor.
arXiv Detail & Related papers (2021-04-30T20:38:41Z) - Delegating Multi-Party Quantum Computations vs. Dishonest Majority in
Two Quantum Rounds [0.0]
Multi-Party Quantum Computation (MPQC) has attracted a lot of attention as a potential killer-app for quantum networks.
We present a composable protocol achieving blindness and verifiability even in the case of a single honest client.
arXiv Detail & Related papers (2021-02-25T15:58:09Z) - Deep Neural Network Discrimination of Multiplexed Superconducting Qubit
States [39.26291658500249]
We present multi-qubit readout using neural networks as state discriminators.
We find that fully-connected feed neural networks increase the qubit-state-assignment fidelity for our system.
arXiv Detail & Related papers (2021-02-24T19:00:00Z) - Defence against adversarial attacks using classical and quantum-enhanced
Boltzmann machines [64.62510681492994]
generative models attempt to learn the distribution underlying a dataset, making them inherently more robust to small perturbations.
We find improvements ranging from 5% to 72% against attacks with Boltzmann machines on the MNIST dataset.
arXiv Detail & Related papers (2020-12-21T19:00:03Z) - Chapter: Vulnerability of Quantum Information Systems to Collective Manipulation [41.94295877935867]
We present and discuss a new form of vulnerability in such systems.
Groups of adversaries can maximally disrupt these systems' global quantum state.
It will be almost impossible to detect these attacks since they do not change the Hamiltonian.
A countermeasure could be to embed future quantum technologies within redundant classical networks.
arXiv Detail & Related papers (2019-01-25T13:51:05Z)
This list is automatically generated from the titles and abstracts of the papers in this site.
This site does not guarantee the quality of this site (including all information) and is not responsible for any consequences.