Download Noisy Storage talk

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
page
6
page
7
page
8
page
9
page
10
page
11
page
12
page
13
page
14
page
15
page
16
page
17
page
18
page
19
page
20
page
21
page
22
page
23
page
24
page
25
page
26
page
27
page
28
page
29
page
30
page
31
page
32
page
33
page
34
page
35
page
36
page
37
Document related concepts

Renormalization group wikipedia , lookup

Wheeler's delayed choice experiment wikipedia , lookup

Quantum dot cellular automaton wikipedia , lookup

Topological quantum field theory wikipedia , lookup

Wave–particle duality wikipedia , lookup

Renormalization wikipedia , lookup

Relativistic quantum mechanics wikipedia , lookup

Scalar field theory wikipedia , lookup

Basil Hiley wikipedia , lookup

Double-slit experiment wikipedia , lookup

Theoretical and experimental justification for the Schrödinger equation wikipedia , lookup

Bell test experiments wikipedia , lookup

Particle in a box wikipedia , lookup

Path integral formulation wikipedia , lookup

Quantum decoherence wikipedia , lookup

Quantum field theory wikipedia , lookup

Copenhagen interpretation wikipedia , lookup

Bohr–Einstein debates wikipedia , lookup

Hydrogen atom wikipedia , lookup

Density matrix wikipedia , lookup

Measurement in quantum mechanics wikipedia , lookup

Quantum dot wikipedia , lookup

Max Born wikipedia , lookup

Delayed choice quantum eraser wikipedia , lookup

Coherent states wikipedia , lookup

Probability amplitude wikipedia , lookup

Quantum fiction wikipedia , lookup

Orchestrated objective reduction wikipedia , lookup

Many-worlds interpretation wikipedia , lookup

Quantum electrodynamics wikipedia , lookup

Symmetry in quantum mechanics wikipedia , lookup

Quantum entanglement wikipedia , lookup

Bell's theorem wikipedia , lookup

History of quantum field theory wikipedia , lookup

Quantum computing wikipedia , lookup

Interpretations of quantum mechanics wikipedia , lookup

Canonical quantization wikipedia , lookup

Quantum machine learning wikipedia , lookup

Quantum group wikipedia , lookup

T-symmetry wikipedia , lookup

Quantum state wikipedia , lookup

Quantum cognition wikipedia , lookup

Hidden variable theory wikipedia , lookup

EPR paradox wikipedia , lookup

Quantum key distribution wikipedia , lookup

Quantum teleportation wikipedia , lookup

Transcript 
Position-Based
Quantum Cryptography:
Impossibility and Constructions
Christian Schaffner
CWI Amsterdam, Netherlands
joint work with
Harry Buhrman, Nishanth Chandran, Serge Fehr,
Ran Gelles, Vipul Goyal and Rafail Ostrovsky (UCLA)
Seminar
Eindhoven, Netherlands
Wednesday, 3 November 2010
2
Outline
Quantum Computing & Teleportation
Position-Based Cryptography
Impossibility of
Position-Based Quantum Cryptography
Constructions
Summary & Open Questions
Quantum Bit: Polarization of a Photon
3
Qubit: Rectilinear/Computational Basis
4
Detecting a Qubit
5
no photon: 0
Alice
Bob
Measuring a Qubit
6
no photon: 0
photon: 1
Alice
Bob
measurement:
with prob. 1 yields 1
0/1
Diagonal/Hadamard Basis
7
Measurement:
with prob. ½ yields 0
0/1
with prob. ½ yields 1
Quantum Mechanics
8
+ basis
£ basis
Measurements:
with prob. 1 yields 1
0/1
with prob. ½ yields 0
0/1 with prob. ½ yields 1
Quantum Operations
9



are linear isometries
can be described by a unitary matrix:
examples:
 identity
 bitflip (Pauli X): mirroring at
axis
X
X
X
X
Quantum Operations
10



are linear isometries
can be described by a unitary matrix:
examples:
 identity
 bitflip (Pauli X): mirroring at
axis
 phase-flip (Pauli Z): mirroring at
axis
 both (Pauli XZ)
Z
No-Cloning Theorem
11
X
Z
XZ U
?
?
Proof: copying is a non-linear operation
?
Quantum Key Distribution (QKD)
[Bennett Brassard 84]
Alice
Bob
Eve


inf-theoretic security against unrestricted eavesdroppers:
 quantum states are unknown to Eve, she cannot copy them
 honest players can check whether Eve interfered
technically feasible: no quantum computation required,
only quantum communication
EPR Pairs
13
[Einstein Podolsky Rosen 1935]
prob. ½ : 0
prob. ½ : 1
EPR magic!
prob. 1 : 0



“spukhafte Fernwirkung” (spooky action at a distance)
EPR pairs do not allow to communicate
(no contradiction to relativity)
can provide a shared random bit
(or other non-signalling correlations)
Quantum Teleportation
14
[Bennett Brassard Crépeau Jozsa Peres Wootters 1993]
?
[Bell]
?



does not contradict relativity
teleported state can only be recovered
when the classical information ¾ arrives
with probability 1/4, no correction is needed
?
15
Outline
Quantum Computing & Teleportation
Position-Based Cryptography
Impossibility of
Position-Based Quantum Cryptography
Constructions
Summary & Open Questions
16



Motivation
Typically, cryptographic players use credentials such as
 secret information
 authenticated information
 biometric features
can the geographical location used as (only) credential?
examples of desirable primitives:
 position-based secret communication (e.g. between
military bases)
 position-based authentication
 position-based access control to resources
Basic task: Position Verification
17
Verifier1


Prover
Prover wants to convince verifiers that she is at a
particular position
assumptions:  communication at speed of light



Verifier2
instantaneous computation
verifiers can coordinate
no coalition of (fake) provers, i.e. not at the claimed
position, can convince verifiers
Position Verification: First Try
18
Verifier1
time
Prover
Verifier2
Position Verification: Second Try
19
Verifier1
Prover
Verifier2
Impossibility of Classical Position Verification
[Chandran Goyal Moriarty Ostrovsky: CRYPTO ‘09]
20
position verification is
classically impossible !


using the same resources as the honest prover,
colluding adversaries can reproduce a consistent view
computational assumptions do not help
Position-Based Quantum Cryptography
21
[Kent Munro Spiller 03/10, Chandran Fehr Gelles Goyal Ostrovsky, Malaney 10]
Verifier1


?
Prover
Verifier2
intuitively: security follows from no cloning
formally, usage of recently established [Renes Boileau 09]
entropic quantum uncertainty relation
Position-Based QC: Teleportation Attack
22
[Kent Munro Spiller 03/10, Lau Lo 10]
Position Verification: Fourth Try
[Kent Munro Spiller 03/10, Malaney 10, Lau Lo 10]
23
?
?


?
however: insecure if adversaries share two EPR pairs!
are there secure quantum schemes at all?
24
Outline
Quantum Computing & Teleportation
Position-Based Cryptography
Impossibility of
Position-Based Quantum Cryptography
Constructions
Summary & Open Questions
Impossibility of Position-Based Q Crypto
[Buhrman Chandran Fehr Gelles Goyal Ostrovsky S 10]
25


attack on general position-verification scheme
distributed quantum computation with
one simultaneous round of communication
Distributed Q Computation in 2 Rounds
26
U

trivial to do in two rounds
Distributed Q Computation in 2 Rounds
27
U


trivial to do in two rounds
also using only classical communication
Distributed Q Computation in 1 Round
28
U

clever way of back-and-forth teleportation, based on
ideas by [Vaidman 03] for “instantaneous
measurement of nonlocal variables”
Distributed Q Computation in 1 Round
29
U
Distributed Q Computation in 1 Round
30
Distributed Q Computation in 1 Round
31

the number of required EPR
pairs grows exponentially
with the number of
recursion levels
Distributed Q Computation: Analysis
32





in every layer of recursion, there is a
constant probability of success.
invariant: except for the last teleportation step, Bob
can completely trace back and correct previous errors.
using an exponential amount of EPR pairs, players
succeed with probability arbitrarily close to 1
scheme generalizes to more players
Hence, position-based quantum cryptography is
impossible!
33
Outline
Quantum Computing & Teleportation
Position-Based Cryptography
Impossibility of
Position-Based Quantum Cryptography
Constructions
Summary & Open Questions
Position-Based Quantum Cryptography
34
?



reasoning only valid in the no-preshared entanglement
(No-PE) model
Theorem: success probability of attack is at most 0.89
use (sequential) repetition to amplify gap between honest
and dishonest players
Position-Based Authentication and QKD
35





verifiers accept message only if sent from prover’s position
weak authentication:
 if message bit = 0 : perform Position Verification (PV)
 if message bit = 1 : PV with prob 1-q, send ? otherwise
strong authentication by encoding message into balancedrepetition-code (0  00…0011…1 , 1  11…1100…0 )
verifiers check statistics of ? and success of PV
using authentication scheme, verifiers can also perform
position-based quantum key distribution
Summary
36

intro to Quantum Computing & Teleportation
Verifier1




Prover
Verifier2
plain model: classically and quantumly impossible
basic scheme for secure positioning if adversaries have
no pre-shared entanglement
more advanced schemes allow message authentication
and key distribution
can be generalized to more dimensions
Open Questions
37
Verifier1



Prover
Verifier2
no-go theorem vs. secure schemes
how much entanglement is required to break the
scheme?
security in the bounded-quantum-storage model?
many interesting connections to
entropic uncertainty relations and non-local games
Related documents
Quantum mechanical model
Quantum mechanical model
David Williams (University of Cambridge)
David Williams (University of Cambridge)
Project suggestion as part of the course 203-1-3431 November 7 , 2011
Project suggestion as part of the course 203-1-3431 November 7 , 2011
An Introduction to Quantum Computing
An Introduction to Quantum Computing
Prof. Bertrand Reulet, Université de Sherbrooke, Canada Talk: 23. May 2014
Prof. Bertrand Reulet, Université de Sherbrooke, Canada Talk: 23. May 2014
Probing contextuality with superconducting quantum circuits Talk 27. Oct. 2015 ABSTRACT:
Probing contextuality with superconducting quantum circuits Talk 27. Oct. 2015 ABSTRACT:
Some Families of Probability Distributions Within Quantum Theory
Some Families of Probability Distributions Within Quantum Theory
Chapter 3- Atomic Structure (light interaction with e-)
Chapter 3- Atomic Structure (light interaction with e-)
`12
`12
More with Quantum Numbers
More with Quantum Numbers
Quantum phase transition - Condensed Matter Theory and Quantum
Quantum phase transition - Condensed Matter Theory and Quantum
Simulating Steady-State Strongly correlated Nonlinear Transport
Simulating Steady-State Strongly correlated Nonlinear Transport