420 research outputs found
Short seed extractors against quantum storage
Some, but not all, extractors resist adversaries with limited quantum
storage. In this paper we show that Trevisan's extractor has this property,
thereby showing an extractor against quantum storage with logarithmic seed
length
Better short-seed quantum-proof extractors
We construct a strong extractor against quantum storage that works for every
min-entropy , has logarithmic seed length, and outputs bits,
provided that the quantum adversary has at most qubits of memory, for
any \beta < \half. The construction works by first condensing the source
(with minimal entropy-loss) and then applying an extractor that works well
against quantum adversaries when the source is close to uniform.
We also obtain an improved construction of a strong quantum-proof extractor
in the high min-entropy regime. Specifically, we construct an extractor that
uses a logarithmic seed length and extracts bits from any source
over \B^n, provided that the min-entropy of the source conditioned on the
quantum adversary's state is at least , for any \beta < \half.Comment: 14 page
The Bounded Storage Model in The Presence of a Quantum Adversary
An extractor is a function E that is used to extract randomness. Given an
imperfect random source X and a uniform seed Y, the output E(X,Y) is close to
uniform. We study properties of such functions in the presence of prior quantum
information about X, with a particular focus on cryptographic applications. We
prove that certain extractors are suitable for key expansion in the bounded
storage model where the adversary has a limited amount of quantum memory. For
extractors with one-bit output we show that the extracted bit is essentially
equally secure as in the case where the adversary has classical resources. We
prove the security of certain constructions that output multiple bits in the
bounded storage model.Comment: 13 pages Latex, v3: discussion of independent randomizers adde
Trevisan's extractor in the presence of quantum side information
Randomness extraction involves the processing of purely classical information
and is therefore usually studied in the framework of classical probability
theory. However, such a classical treatment is generally too restrictive for
applications, where side information about the values taken by classical random
variables may be represented by the state of a quantum system. This is
particularly relevant in the context of cryptography, where an adversary may
make use of quantum devices. Here, we show that the well known construction
paradigm for extractors proposed by Trevisan is sound in the presence of
quantum side information.
We exploit the modularity of this paradigm to give several concrete extractor
constructions, which, e.g, extract all the conditional (smooth) min-entropy of
the source using a seed of length poly-logarithmic in the input, or only
require the seed to be weakly random.Comment: 20+10 pages; v2: extract more min-entropy, use weakly random seed;
v3: extended introduction, matches published version with sections somewhat
reordere
Quantum to Classical Randomness Extractors
The goal of randomness extraction is to distill (almost) perfect randomness
from a weak source of randomness. When the source yields a classical string X,
many extractor constructions are known. Yet, when considering a physical
randomness source, X is itself ultimately the result of a measurement on an
underlying quantum system. When characterizing the power of a source to supply
randomness it is hence a natural question to ask, how much classical randomness
we can extract from a quantum system. To tackle this question we here take on
the study of quantum-to-classical randomness extractors (QC-extractors). We
provide constructions of QC-extractors based on measurements in a full set of
mutually unbiased bases (MUBs), and certain single qubit measurements. As the
first application, we show that any QC-extractor gives rise to entropic
uncertainty relations with respect to quantum side information. Such relations
were previously only known for two measurements. As the second application, we
resolve the central open question in the noisy-storage model [Wehner et al.,
PRL 100, 220502 (2008)] by linking security to the quantum capacity of the
adversary's storage device.Comment: 6+31 pages, 2 tables, 1 figure, v2: improved converse parameters,
typos corrected, new discussion, v3: new reference
Variations on Classical and Quantum Extractors
Many constructions of randomness extractors are known to work in the presence
of quantum side information, but there also exist extractors which do not
[Gavinsky {\it et al.}, STOC'07]. Here we find that spectral extractors
with a bound on the second largest eigenvalue
are quantum-proof. We then discuss fully
quantum extractors and call constructions that also work in the presence of
quantum correlations decoupling. As in the classical case we show that spectral
extractors are decoupling. The drawback of classical and quantum spectral
extractors is that they always have a long seed, whereas there exist classical
extractors with exponentially smaller seed size. For the quantum case, we show
that there exists an extractor with extremely short seed size
, where denotes the quality of the
randomness. In contrast to the classical case this is independent of the input
size and min-entropy and matches the simple lower bound
.Comment: 7 pages, slightly enhanced IEEE ISIT submission including all the
proof
Quantum-proof randomness extractors via operator space theory
Quantum-proof randomness extractors are an important building block for
classical and quantum cryptography as well as device independent randomness
amplification and expansion. Furthermore they are also a useful tool in quantum
Shannon theory. It is known that some extractor constructions are quantum-proof
whereas others are provably not [Gavinsky et al., STOC'07]. We argue that the
theory of operator spaces offers a natural framework for studying to what
extent extractors are secure against quantum adversaries: we first phrase the
definition of extractors as a bounded norm condition between normed spaces, and
then show that the presence of quantum adversaries corresponds to a completely
bounded norm condition between operator spaces. From this we show that very
high min-entropy extractors as well as extractors with small output are always
(approximately) quantum-proof. We also study a generalization of extractors
called randomness condensers. We phrase the definition of condensers as a
bounded norm condition and the definition of quantum-proof condensers as a
completely bounded norm condition. Seeing condensers as bipartite graphs, we
then find that the bounded norm condition corresponds to an instance of a well
studied combinatorial problem, called bipartite densest subgraph. Furthermore,
using the characterization in terms of operator spaces, we can associate to any
condenser a Bell inequality (two-player game) such that classical and quantum
strategies are in one-to-one correspondence with classical and quantum attacks
on the condenser. Hence, we get for every quantum-proof condenser (which
includes in particular quantum-proof extractors) a Bell inequality that can not
be violated by quantum mechanics.Comment: v3: 34 pages, published versio
- …