Integrating Security and Privacy in Quantum Software Engineering

Integrating Security and Privacy in Quantum Software Engineering

연구 분야: Cryptography

학회: EASE '24: Proceedings of the 28th International Conference on Evaluation and Assessment in Software Engineering

In the dynamic landscape of Quantum Software Engineering (QSE), ensuring the integrity of sensitive data is critical, which stipulates integrating security and privacy measures during the Quantum Software Development Life Cycle (QDLC) rather than providing cost-inefficient post-production software fixes. This paper proposes a Quantum Privacy Knowledge Base (QPKB) and Quantum Privacy-Oriented Software Development (QPOSD) approach that integrates privacy and security protocols into quantum hybrid software development, complementing existing software development processes. QPKB is formalized as the interrelationship between five key elements: Quantum Privacy by Design principles, Quantum Privacy Design Strategies, Quantum Privacy Patterns, Quantum Bugs and Vulnerabilities, and Quantum Hybrid Context. The step-by-step methodology for QPOSD spans analysis, design, coding, verification and validation, and deployment phases. With the help of a scenario, we demonstrate how QPOSD can effectively integrate security and privacy imperatives in QDLC. This study acts as a starting point for serving operational guidelines for quantum development teams, providing strategies for integrating privacy and security measures into QSE practices.