Amplifying’ Random Numbers Brings a Breakthrough in Digital Security

Syllabus: GS3/Science and Technology/Cybersecurity

Context

• Researchers at ETH Zürich have experimentally demonstrated device-independent randomness amplification, converting weakly random data into certifiably perfect randomness using quantum entanglement.

What is Randomness in Digital Security?

• Modern digital security relies on cryptographic keys, which are generated using random numbers.
  • If random numbers contain patterns or biases, attackers may predict keys and compromise encryption.
• True randomnessis difficult to achieve because practical random number generators often contain small biases due to noise, heat, or hardware imperfections.
  • This represents a fundamental limitation of classical computation and motivated the search for quantum methods to achieve perfect randomness.
• Randomness Amplification: It is the process of starting with an imperfect or biased random source and using quantum correlations generated through entanglement to produce output that is certifiably unbiased and unpredictable.
  • It has potential use in lotteries, blockchain systems, auditing, and secure digital infrastructure.
• Limitations: The setup is currently large, complex, and laboratory-based.
  • Output rates are much lower than commercial random-number generators.

What is Cybercrime?

• Cybercrime refers to criminal activities that involve the use of computers, networks, and digital technologies. 
  • It encompasses a wide range of illicit activities conducted in the virtual space, often with the intent to compromise, damage, or gain unauthorized access to computer systems, networks, and data. 
• Cybercriminals employ various techniques and tools to exploit vulnerabilities in networks, and they may target individuals, organizations, or even governments.
• As per the NCRB Crime in India 2024 Report, the overall crime rate in India declined by 6% in 2024 compared with 2023 but there was an increase of over 17% in cybercrime cases.

Impact of Cyber Crimes

• National Security Threats: Cyber crimes pose a threat to national security when state-sponsored actors or criminal organizations target critical infrastructure, government institutions, or military systems. 
• Data Breaches: Data breaches lead to the exposure of personal information, trade secrets, intellectual property, and other confidential data, causing severe damage to the affected entities.
• Disruption of Services: Cyber attacks disrupt essential services such as power grids, communication networks, and transportation systems. 
• Reputational Damage: Organizations that fall victim to cyber attacks often suffer reputational damage. 

Initiatives by Government of India to Prevent Cybercrimes

• Indian Computer Emergency Response Team (CERT-In): CERT-In is the national nodal agency for responding to cybersecurity incidents.
  • It provides proactive and reactive cybersecurity support and plays a crucial role in ensuring the security and resilience of the country’s cyber infrastructure.
• National Critical Information Infrastructure Protection Centre (NCIIPC): NCIIPC is responsible for protecting critical information infrastructure from cyber threats.
  • It identifies and designates critical sectors and advises organizations in these sectors on enhancing their cybersecurity measures.
• Cyber Crime Prevention against Women & Children (CCPWC) scheme: The Ministry of Home Affairs has provided financial assistance to all the States & UTs under the scheme to support their efforts for setting up of cyber forensic-cum-training laboratories, training, and hiring of junior cyber consultants. 
• Indian Cyber Crime Coordination Centre (I4C): It provides a framework and ecosystem for Law Enforcement Agencies (LEAs) to deal with cyber crimes in a comprehensive and coordinated manner.
  • ‘Joint Cyber Coordination Teams’ have been constituted for seven regions at Mewat, Jamtara, Ahmedabad, Hyderabad, Chandigarh, Visakhapatnam and Guwahati under the I4C.
• National Cyber Crime Reporting Portal: It is launched to enable the public to report incidents pertaining to all types of cyber crimes.
  • A toll-free number 1930 has been operationalized to get assistance in lodging online cyber complaints. 
  • The Citizen Financial Cyber Fraud Reporting and Management System module has also been launched for immediate reporting of financial frauds and to stop siphoning off funds by the fraudsters.
• Cyber Swachhta Kendra (Botnet Cleaning and Malware Analysis Centre): This initiative is aimed at creating awareness about botnet and malware infections and providing tools for detection and cleaning.
  • It also provides cyber security tips and best practices for citizens and organisations

Source: TH