How does frequency-multiplexing on a single readout cable physically enable attackers to infer neighboring qubits' states?

Frequency-Multiplexing as a Side-Channel in Quantum Readout

The vulnerability stems from a fundamental tradeoff in multiplexed qubit readout: to save cables and components, multiple qubits share a single measurement line by encoding their states at different frequencies. But this sharing creates a problem.

The physical mechanism:

When a qubit's state is read via frequency-multiplexing, its measurement signal travels down the shared cable alongside signals from neighboring qubits [AG-2024.05-2051]. Because the frequencies are close together in the same physical medium, they interact—a phenomenon called *readout crosstalk*. The measurement of qubit A's state inevitably leaves traces in the signal that nominally belongs to qubit B [AG-2024.05-2051].

In a shared quantum computer (like IBM's cloud service), an attacker can deliberately prepare and measure their own qubits in specific patterns, observing how the readout signal correlates with a victim qubit's unknown state. Since crosstalk creates deterministic correlations between neighboring measurement signals, these leaked bits reveal information about the victim's qubit state—even though the attacker never had direct access to it [AG-2024.05-2051].

Why this matters:

This transforms crosstalk from a mere reliability nuisance into a *security breach*. Engineers have long tried to reduce crosstalk to improve accuracy [AG-2024.05-2052], but the research shows that even "imperfect" crosstalk levels leave enough structured information leaking to enable information theft in multi-user environments.

The analogous situation in classical electronics: if two signals share a wire, capacitive coupling between them can let a wiretapper infer one signal by monitoring the other's noise floor.