• Home

  • Documents

  • New Results of Quantum-proof Randomness Extractors Xiaodi Wu (MIT) 1 st Trustworthy Quantum...

If you can't read please download the document

New Results of Quantum-proof Randomness Extractors Xiaodi Wu (MIT) 1 st Trustworthy Quantum Information Workshop Ann Arbor, USA 1 based on work w/ Kai-Min

Embed Size (px)

DESCRIPTION

Randomness Extractor: Multi-source [CG85, BIK04, Raz, Rao, Bourgain, Li ……] A deterministic function converts indep. weak random sources with entropy to almost-uniform randomness 3 weak random source X1X1 XtXt Z

Citation preview

New Results of Quantum-proof Randomness Extractors Xiaodi Wu (MIT) 1 st Trustworthy Quantum Information Workshop Ann Arbor, USA 1 based on work w/ Kai-Min Chung and Xin Li, arXiv: and work w/Kai-Min Chung, in preparation Randomness Extractor: Seeded [SV84,Vaz85,VV85,CG85,Vaz87,CW89,Zuc90,Zuc91,] A deterministic function converts indep. weak random sources with entropy to almost-uniform randomness 2 seed source X UdUd Z Randomness Extractor: Multi-source [CG85, BIK04, Raz, Rao, Bourgain, Li ] A deterministic function converts indep. weak random sources with entropy to almost-uniform randomness 3 weak random source X1X1 XtXt Z Applications beyond randomness Classical TCS Cryptography, Derandomization [Sis88, NZ93,], Distributed algorithms [WZ95], Data structures [Ta02], Hardness of Approximation [Zuc93,] Quantum Information Privacy amplification (QKD) [BB84, BBR], device- independent crypto [VV12, MS14, CSW14, B+, ] Bounded-storage model [DFSS08,] 4 5 This talk: Q. Seeded Extractors with Optimal Parameters: (Chung, W, in preparation) * a new construction optimal w/ inverse poly rate source * new techniques for quantum-proof condensers Q. Side Info Model for Multi-source Extraction: (Chung, Li, W, arXiv: ) * a proposal naturally unifying and extending existing models * q. multi-source extractors w/ matching paras to classical 6 Q. Seeded Extractors with Optimal Parameters: (Chung, W, in preparation) * a new construction optimal w/ inverse poly rate source * new techniques for quantum-proof condensers Quantum Side Info: seeded extraction 7 Seeded Extractors against Side Info [R05,KMR05,KT08,DV10,T11,DPVR11] 8 seed source Seeded Randomness Extractor X UdUd Z adversary classical-secure marginal-secure for classical side-info for no side-info What do we want? 9 Trevisan [T, DV, DPVR] m=k 0.98 d=O(log(n)) Left-over hashing [KMR, TSSR] m~=k 10 What GUV requires? GUV: Very Good Condenser Block Extraction & Composition Partial Progress: Cond. Inv. poly Extends to quantum setting Q. Extractor: (new even classically) Remark: inverse-poly rate sources are good for most applications! Our Contribution: Our strategy Refer to Chungs talk for technique limitations Resort to extractor paradigm [NZ,SZ, Zuc] before Trevisian, based on block-sampling & block-extraction. Our Observation: A) this paradigm extends to the quantum setting B) A new condenser/extractor in this paradigm 11 (n,k) source Sampling a subset: Hope: min-entropy rate remains Non-trivial to prove classically (e.g, Zuc97, Vad03). The quantum version by Koenig & Renner 11 However, this does not condense! Block-Sampling! Block Sampling & Extraction [NZ,SZ,Zuc] 12 (n,k) source Block-Sampling (one by one) : Structure Entropy while keeping the rate Block-Extraction (one by one): Competing Parameters: 1) able to sample 2) able to extract => optimal paras for const entropy-rate sources [Zuc] Exp. increase Seed length Our Contribution: this construction is also quantum-proof. Observation: well, it does not need to be able to sample & extract at the same time! When fails to sample, it condenses! A win-win argument! Observation: well, it does not need to be able to sample & extract at the same time! When fails to sample, it condenses! A win-win argument! Condenser: 1/poly rate -> const rate (Win-Win argument) 13 (n,k) Sampling ( if success -> extraction, otherwise condensing) E1E1 E2E2 Sample again on a shorter input E3E3 C 0 length k const Rounds (C0, E1,E2,) -> const rate source Quantum: 1) sampling [KR] 2) remaining analysis & comp. Summary: 14 Zuckermans Extractor Win-Win Condenser 15 Q. Side Info Model for Multi-source Extraction: (Chung, Li, W, arXiv: ) * a proposal naturally unifying and extending existing models * q. multi-source extractors w/ matching paras to classical Multi-source Extractors [BIW04] 16 source X1X1 XtXt Z Multi-source Extractor Side Info. of multiple sources? 17 Want: a general definition of entropy & sufficient entropy => extractability. adversary Restriction on E is necessary! Simple Models Independent Adversary (IA): each source leaks own side information However, IA fails to consider the entanglement /correlation. Bounded Storage Adv (BS): allow entangle; one-round leaking [KK12] May break independence; non-trivial even for classical side info 18 source X1X1 X2X2 Z Two-source Extractor adversary A2A2 E2E2 A1A1 E1E1 Kasher & Kempe The [DEOR04] extractor works with comparable parameters in both IA & BS models, although side info breaks independence. ISSUEs: No unified model & No unified entropy measure Technique-wise very specific to the [DEOR04] extractor Our Contribution: A Unified & Generalized Model: General Entangled (GE) model Take the one-round leaking model [KK12] + right entropy measure Prove most existing two-/multi-source extractors are GE-secure e.g., Raz, Bourgain, Li, BRSW, Rao, . Remarks on the model: 1. Could refer to a practical scenario of generating side-info: when parties are far apart from each other & leaking procedure is short! 2. Unclear about extension to multiple rounds. Could fall into the previous counter-example. Entropy measure: problematic [KK12] EtEt Contribution I: General Entangled (GE) Model 21 adversary X2X2 XtXt X1X1 A1A1 AtAt E1E1 A2A2 E2E2 A1A1 AtAt General Entangled (GE) Model 22 General Entangled (GE) Model 23 GE-secure Multi-source Extractors 24 source X1X1 XtXt Z Multi-source Extractor adversary Existing Two-source Extractors (e.g., Raz, Bourgain, existential ones) are GE-secure. Any Multi-source Extractors (e.g., Li, BRSW, Rao) can be upgraded to be GE-secure. Both w/ matching parameters. 25 Contribution II: GE-secure extractors GE- Strong OA Security Equivalence! Obtain Strong OA Security: XOR, +1 source, block-source Omitted! Only get side info from a single source at adversarys choice (without seeing the sources) Weaker than IA & GE OA-sources & OA-secure extractors defined similarly One-sided Adversary (OA) Model 26 adversary XiXi XtXt X1X1 AiAi EiEi Strong OA-GE Security Equivalence 27 M OA IA BS GE classical side-info no side-info strong ext. Strong OA-GE Security Equivalence 28 EtEt adversary X2X2 XtXt X1X1 A1A1 AtAt E1E1 A2A2 E2E2 A1A1 A2A2 Apply Ext S Leaking on X S Proof: simulation b/c 29 Apply OA Ext Leaking on X S COMMUTE (strong) Leaking on X t, Leaking on X S, Apply Ext Leaking on X t, Apply Ext, Leaking on X S = Apply OA security w/ sufficient entropy Summary 30 M OA IA BS GE strong ext. 31 Conclusions: Q. Seeded Extractor optimal w/ inv. poly rate sources Q. Multi-source: side info model & extractors Open Questions: Better Q. Extractor/Condenser? Optimal Parameters for any source? Alternative/General Side Info Model allowing extraction? Thanks! Questions? 32 Obtain Strong OA-security (I): +1 source 33 X1X1 XtXt Y X t+1 Z LIFT: marginal uniform + seeded quantum extractor -> quantum-proof uniform 34 Entropy measure: problematic [KK12] 35 X1X1 X2X2 adversary


Web Data Extractors

Web Data Extractors

Documents
Forward Secure Fuzzy Extractors

Forward Secure Fuzzy Extractors

Documents
Hand Tools – Pullers / Extractors HAZET – Range of Pullers / Extractors · 2015-05-17 · Ingenious Tools Components and Spare Parts see pages 288 to 293 131 Pullers / Extractors

Hand Tools – Pullers / Extractors HAZET – Range of Pullers / Extractors · 2015-05-17 · Ingenious Tools Components and Spare Parts see pages 288 to 293 131 Pullers / Extractors

Documents
Spray Extractors

Spray Extractors

Documents
Jiquan Peng , Wenbin Liu2,*, Xiaodi Qin and Haitao Wu

Jiquan Peng , Wenbin Liu2,*, Xiaodi Qin and Haitao Wu

Documents
Non-Malleable Extractors

Non-Malleable Extractors

Documents
Zhang xiaodi 657695 Part A

Zhang xiaodi 657695 Part A

Documents
BW Extractors

BW Extractors

Documents
Xiaodi Wu with applications to classical and quantum zero-sum games EECS, University of Michigan Joint work with Gus Gutoski at IQC, University of Waterloo

Xiaodi Wu with applications to classical and quantum zero-sum games EECS, University of Michigan Joint work with Gus Gutoski at IQC, University of Waterloo

Documents
Enhancing Std Extractors

Enhancing Std Extractors

Documents
BW Business Content Extractors

BW Business Content Extractors

Documents
Parallel approximation of min-max problems · 2017-12-27 · Parallel approximation of min-max problems Gus Gutoski Xiaodi Wuy Institute for Quantum Computing and School of Computer

Parallel approximation of min-max problems · 2017-12-27 · Parallel approximation of min-max problems Gus Gutoski Xiaodi Wuy Institute for Quantum Computing and School of Computer

Documents
Dust Extractors - National Lumber

Dust Extractors - National Lumber

Documents
Lavadoras Washer extractors

Lavadoras Washer extractors

Documents
BI Content Extractors - Summary

BI Content Extractors - Summary

Documents
Xiaodi Wu with applications to classical and quantum zero-sum games University of Michigan Joint work with Gus Gutoski at IQC, University of Waterloo

Xiaodi Wu with applications to classical and quantum zero-sum games University of Michigan Joint work with Gus Gutoski at IQC, University of Waterloo

Documents
Extractors SAPR3

Extractors SAPR3

Documents
Welding Fume Extractors(Rev9612)

Welding Fume Extractors(Rev9612)

Documents
Extractors: applications and constructions

Extractors: applications and constructions

Documents
PRODUCT OVERVIEW - primuslaundry.com · professional hard mounted washer-extractors washer extractors professional dryers soft mounted washer extractors medical barrier washer-extractors

PRODUCT OVERVIEW - primuslaundry.com · professional hard mounted washer-extractors washer extractors professional dryers soft mounted washer extractors medical barrier washer-extractors

Documents
Zhang xiaodi 657695 algorithmic sketchbook w2

Zhang xiaodi 657695 algorithmic sketchbook w2

Documents
DFD Extractors

DFD Extractors

Documents
REV2015271 Packing-extractors with replaceable tips · Packing-extractors with replaceable tips Description: Teadit packing-extractors facilitate the removal of used packing rings

REV2015271 Packing-extractors with replaceable tips · Packing-extractors with replaceable tips Description: Teadit packing-extractors facilitate the removal of used packing rings

Documents
Creation of Custom Extractors

Creation of Custom Extractors

Documents
Extractors - irwin.com€¦ · Extractors EXTRACTORS 222 Spiral Screw HANSON® Spiral Screw Extractor 534/524 Series HANSON Spiral Screw Extractor Sets 52405 Description

Extractors - irwin.com€¦ · Extractors EXTRACTORS 222 Spiral Screw HANSON® Spiral Screw Extractor 534/524 Series HANSON Spiral Screw Extractor Sets 52405 Description

Documents
Service— 30022Fxx Washer-Extractors

Service— 30022Fxx Washer-Extractors

Documents
Honey Extractors - Park Beekeeping · We Specialise in Honey Extractors. Park Beekeeping Honey Extractors are manufactured from the very best materials using the latest welding techniques

Honey Extractors - Park Beekeeping · We Specialise in Honey Extractors. Park Beekeeping Honey Extractors are manufactured from the very best materials using the latest welding techniques

Documents
BI Content & Extractors

BI Content & Extractors

Documents
Self-Contained Extractors

Self-Contained Extractors

Documents
Juice Extractors

Juice Extractors

Documents