Questions: Information-Theoretic Security

If you need a key as long as the message, and the key must be shared secretly between sender and receiver before communication, then the key distribution problem is as hard as the original communication problem. This is why most real systems use computational security (AES, RSA, etc.) with short keys: they are secure under complexity assumptions but could theoretically be broken with enough computation. The one-time pad remains used only in extreme cases (diplomatic hotlines, some military communications) where key pre-distribution is feasible.

Answer: True

This is Wyner's remarkable result: when the eavesdropper's channel is degraded relative to the legitimate receiver's, the sender can transmit at a positive rate that is perfectly secret from the eavesdropper — with NO pre-shared key. The secrecy capacity is C_s = C_main - C_eavesdropper (the difference in channel capacities). The sender uses random coding to create confusion at the eavesdropper while maintaining reliable communication with the legitimate receiver. The extra noise on the eavesdropper's channel is the source of secrecy.

This is why quantum key distribution (QKD) is valuable: it provides information-theoretically secure key distribution using quantum mechanics. Combined with the one-time pad, QKD provides end-to-end unconditional security. However, the practicality debate continues — QKD requires special hardware and has range limitations, while post-quantum cryptographic algorithms provide computational security that is believed (but not proved) to resist quantum attacks.