Security Risks of VOA-Induced Luminescence in Chip-Based quantum key distribution

TL;DR

This paper uncovers a security vulnerability in integrated photonic QKD systems caused by spontaneous luminescence from p-n junction VOAs, which can lead to information leakage through wavelength-resolved side channels.

Contribution

It is the first systematic study demonstrating that p-n junction VOAs emit luminescence that creates a new security side channel in chip-based QKD.

Findings

Luminescence emission centered around 1107 nm from VOAs.

Luminescence can be exploited for wavelength-splitting attacks.

Weak luminescence emissions can still cause significant information leakage.

Abstract

Integrated photonics is widely regarded as a key enabler for scalable quantum key distribution (QKD), offering compactness, stability, and compatibility with semiconductor fabrication. Despite rapid advances in chip-based QKD, the implementation security of integrated photonic components remains insufficiently understood. Here we present the first systematic study of an implementation-level security vulnerability associated with p-n junction-based variable optical attenuators (VOAs), a ubiquitous component in integrated QKD transmitters. We theoretically and experimentally demonstrate that electrically biased p-n junction VOAs emit spontaneous luminescence. Using a single-photon-sensitive spectral measurement technique, we identify the emission wavelength to be centered around 1107 nm, well separated from the C-band quantum signals. This spectral separation gives rise to a previously unrecognized wavelength-resolved side channel, enabling potential wavelength-splitting attacks without directly disturbing the encoded quantum states. By incorporating the measured luminescence into a quantitative security analysis, we show that even extremely weak emission can lead to non-negligible information leakage. Our findings reveal a fundamental and previously overlooked security risk in photonic integrated QKD systems and highlight the necessity of security-aware device design for future integrated quantum communication technologies.