Quantum communications are based on the law of physics for information security and the implications for this form of future information security enabled by quantum science has to be studied. Physics-based vulnerabilities may exist due to the inherent physics properties and behavior of quantum technologies such as Quantum Key Distribution (QKD), thus resulting in new threats that may emerge with attackers exploiting the physics-based vulnerabilities. There were many studies and experiments done to demonstrate the threat of physics-based attacks on quantum links. However, there is a lack of a framework that provides a common language to communicate about the threats and type of adversaries being dealt with for physics-based attacks. This paper is a review of physics-based attacks that were being investigated and attempt to initialize a framework based on the attack objectives and methodologies, referencing the concept from the well-established MITRE ATT&CK, therefore pioneering the classification of Indicator of Compromises (IoCs) for physics-based attacks. This paper will then pave the way for future work in the development of a forensic tool for the different classification of IoCs, with the methods of evidence collections and possible points of extractions for analysis being further investigated.

翻译：量子通信依赖物理定律保障信息安全，量子科学所驱动的这种未来信息安全形式所蕴含的影响有待深入研究。由于量子密钥分发（QKD）等量子技术的固有物理属性与行为，可能存在基于物理的漏洞，从而产生攻击者利用此类物理漏洞的新型威胁。已有大量研究和实验展示了量子链路上物理攻击的威胁性。然而，目前尚缺乏一个提供通用语言来描述物理攻击所面临的威胁及攻击者类型的框架。本文系统回顾了当前研究的物理攻击案例，并试图基于攻击目标与方法论建立框架，借鉴MITRE ATT&CK成熟框架的概念，首次开创性地对物理攻击的危害指标（IoCs）进行分类。本文将为后续开发针对不同IoCs分类的取证工具奠定基础，并对证据收集方法及可能的提取分析点展开进一步研究。