quantum time space tradeoffs by recording queries
play

Quantum Time-Space Tradeoffs by Recording Queries Yassine Hamoudi, - PowerPoint PPT Presentation

Mar 08, 2024 •211 likes •1.42k views

Quantum Time-Space Tradeoffs by Recording Queries Yassine Hamoudi, Frdric Magniez IRIF , Universit de Paris arXiv: 2002.08944 Google Sycamores calculation Time 5 minutes Memory 53 qubits + few megabytes Simulation by

  1. Finding 1 collision pair 23 Birthday attack + BHT algorithm Floyd’s cycle finding vs T = O ( N ) T = O ( N 1/3 ) S = O ( N 1/3 ) S = O (log N ) The quantum BHT algorithm has a better time complexity, but a worst time-space tradeo ff ! A BHT attack on SHA3-256 would require S ≈ 2 256/3 ≈ 2 85 qubits! Big open problem: Is there a quantum algorithm with and ? T ≤ o ( N ) S = O (log N )

  2. Finding K collision pairs 24 Classical Tradeo ff Quantum Tradeo ff T 2 S ≤ Õ(K 2 N) T 2 S ≤ Õ(K 2 N) when when ̃ (log N) ≤ S ≤ Õ(K) ̃ (log N) ≤ S ≤ Õ(K 2/3 N 1/3 ) Ω Ω Upper bound Parallel Collision Search Adaptation of the BHT algorithm [van Oorschot and Wiener’99] ̃ (K 3 N) ̃ (K 2 N) T 2 S ≥ Ω T 3 S ≥ Ω Lower bound Our result [Dinur’20]

  3. Finding K collision pairs 24 Classical Tradeo ff Quantum Tradeo ff T 2 S ≤ Õ(K 2 N) T 2 S ≤ Õ(K 2 N) when when ̃ (log N) ≤ S ≤ Õ(K) ̃ (log N) ≤ S ≤ Õ(K 2/3 N 1/3 ) Ω Ω Upper bound Parallel Collision Search Adaptation of the BHT algorithm [van Oorschot and Wiener’99] ̃ (K 3 N) ̃ (K 2 N) T 2 S ≥ Ω T 3 S ≥ Ω Lower bound Our result [Dinur’20]

  4. Finding K collision pairs 24 Classical Tradeo ff Quantum Tradeo ff T 2 S ≤ Õ(K 2 N) T 2 S ≤ Õ(K 2 N) when when ̃ (log N) ≤ S ≤ Õ(K) ̃ (log N) ≤ S ≤ Õ(K 2/3 N 1/3 ) Ω Ω Upper bound Parallel Collision Search Adaptation of the BHT algorithm [van Oorschot and Wiener’99] ̃ (K 3 N) ̃ (K 2 N) T 2 S ≥ Ω T 3 S ≥ Ω Lower bound Our result [Dinur’20]

  5. Finding K collision pairs 24 Classical Tradeo ff Quantum Tradeo ff T 2 S ≤ Õ(K 2 N) T 2 S ≤ Õ(K 2 N) when when ̃ (log N) ≤ S ≤ Õ(K) ̃ (log N) ≤ S ≤ Õ(K 2/3 N 1/3 ) Ω Ω Upper bound Parallel Collision Search Adaptation of the BHT algorithm [van Oorschot and Wiener’99] ̃ (K 3 N) ̃ (K 2 N) T 2 S ≥ Ω T 3 S ≥ Ω Lower bound Our result [Dinur’20] ̃ (K 2 N) We conjecture: T 2 S ≥ Ω

  6. Finding K collision pairs 25 ̃ (K 3 N) Conjecture: T 2 S ≥ Ω ̃ (K 2 N) Our result: T 3 S ≥ Ω

  7. Finding K collision pairs 25 ̃ (K 3 N) Conjecture: T 2 S ≥ Ω ̃ (K 2 N) Our result: T 3 S ≥ Ω • Our result is non-trivial when K ≥ ω (1):

  8. Finding K collision pairs 25 ̃ (K 3 N) Conjecture: T 2 S ≥ Ω ̃ (K 2 N) Our result: T 3 S ≥ Ω • Our result is non-trivial when K ≥ ω (1): ̃ (N 1/3 ), which is the same as the time- → For K = 1 and S = log(N) it gives T ≥ Ω only lower bound [Aaronson and Shi’04].

  9. Finding K collision pairs 25 ̃ (K 3 N) Conjecture: T 2 S ≥ Ω ̃ (K 2 N) Our result: T 3 S ≥ Ω • Our result is non-trivial when K ≥ ω (1): ̃ (N 1/3 ), which is the same as the time- → For K = 1 and S = log(N) it gives T ≥ Ω only lower bound [Aaronson and Shi’04]. ̃ (KN 1/3 ), whereas we prove that the → For K ≥ ω (1) and S = log(N) it gives T ≥ Ω ̃ (K 2/3 N 1/3 ). best time-only lower bound is T = Θ

  10. Finding K collision pairs 25 ̃ (K 3 N) Conjecture: T 2 S ≥ Ω ̃ (K 2 N) Our result: T 3 S ≥ Ω • Our result is non-trivial when K ≥ ω (1): ̃ (N 1/3 ), which is the same as the time- → For K = 1 and S = log(N) it gives T ≥ Ω only lower bound [Aaronson and Shi’04]. ̃ (KN 1/3 ), whereas we prove that the → For K ≥ ω (1) and S = log(N) it gives T ≥ Ω ̃ (K 2/3 N 1/3 ). best time-only lower bound is T = Θ • The conjecture T 2 S ≥ Ω ̃ (N 3 ) for K = Θ ̃ (N) is particularly interesting:

  11. Finding K collision pairs 25 ̃ (K 3 N) Conjecture: T 2 S ≥ Ω ̃ (K 2 N) Our result: T 3 S ≥ Ω • Our result is non-trivial when K ≥ ω (1): ̃ (N 1/3 ), which is the same as the time- → For K = 1 and S = log(N) it gives T ≥ Ω only lower bound [Aaronson and Shi’04]. ̃ (KN 1/3 ), whereas we prove that the → For K ≥ ω (1) and S = log(N) it gives T ≥ Ω ̃ (K 2/3 N 1/3 ). best time-only lower bound is T = Θ • The conjecture T 2 S ≥ Ω ̃ (N 3 ) for K = Θ ̃ (N) is particularly interesting: → Time-space tradeo ff s are generally easier to prove when the output is large.

  12. Finding K collision pairs 25 ̃ (K 3 N) Conjecture: T 2 S ≥ Ω ̃ (K 2 N) Our result: T 3 S ≥ Ω • Our result is non-trivial when K ≥ ω (1): ̃ (N 1/3 ), which is the same as the time- → For K = 1 and S = log(N) it gives T ≥ Ω only lower bound [Aaronson and Shi’04]. ̃ (KN 1/3 ), whereas we prove that the → For K ≥ ω (1) and S = log(N) it gives T ≥ Ω ̃ (K 2/3 N 1/3 ). best time-only lower bound is T = Θ • The conjecture T 2 S ≥ Ω ̃ (N 3 ) for K = Θ ̃ (N) is particularly interesting: → Time-space tradeo ff s are generally easier to prove when the output is large. ̃ (N 2 ) for Element Distinctness. → If true, we show that it would implies T 2 S ≥ Ω

  13. 3 Lower Bounds by Recording Queries

  14. Time-Space Lower Bounds from Time Lower Bounds 27 [Borodin et al.’81] : a general method to convert Time-only lower bounds directly into Time-Space lower bounds.

  15. Time-Space Lower Bounds from Time Lower Bounds 27 [Borodin et al.’81] : a general method to convert Time-only lower bounds directly into Time-Space lower bounds. → The problem must have a large output ( ≠ decision problem). → The time lower bound is in the exponentially small success probability regime.

  16. Time-Space Lower Bounds from Time Lower Bounds 27 [Borodin et al.’81] : a general method to convert Time-only lower bounds directly into Time-Space lower bounds. → The problem must have a large output ( ≠ decision problem). → The time lower bound is in the exponentially small success probability regime. [Klauck et al.’07, Ambainis’10, …] K-Search Finding K ones in x ∈ {0,1} N , | x | = K All existing quantum ⇒ with success probability at least 2 -O(K) time-space tradeo ff s requires time T ≥ Ω ( NK ) .

  17. Time-Space Lower Bounds from Time Lower Bounds 27 [Borodin et al.’81] : a general method to convert Time-only lower bounds directly into Time-Space lower bounds. → The problem must have a large output ( ≠ decision problem). → The time lower bound is in the exponentially small success probability regime. [Klauck et al.’07, Ambainis’10, …] K-Search Finding K ones in x ∈ {0,1} N , | x | = K All existing quantum ⇒ with success probability at least 2 -O(K) time-space tradeo ff s requires time T ≥ Ω ( NK ) . K Collisions Finding K collisions in x ∼ [ N ] N ⇒ T 3 S ≥ ˜ Ω ( K 3 N ) with success probability at least 2 -O(K) for K-Collision Pairs Finding requires time T ≥ Ω ( K 2/3 N 1/3 ) .

  18. Time Lower Bounds 28 Two main methods for proving quantum query lower bounds:

  19. Time Lower Bounds 28 Two main methods for proving quantum query lower bounds: Polynomial Method The acceptance probability of a T-query algorithm is a polynomial in x of degree at most 2T.

  20. Time Lower Bounds 28 Two main methods for proving quantum query lower bounds: Polynomial Method Adversary Method Bound the progress W t = ∑ x , y w x , y ⟨ ψ t The acceptance probability of a T-query algorithm x | ψ t y ⟩ . is a polynomial in x of degree at most 2T. x Q | 0 ⟩ … | ψ T x ⟩ | 0 ⟩ ⋮ | 0 ⟩

  21. Time Lower Bounds 28 Two main methods for proving quantum query lower bounds: Polynomial Method Adversary Method Bound the progress W t = ∑ x , y w x , y ⟨ ψ t The acceptance probability of a T-query algorithm x | ψ t y ⟩ . is a polynomial in x of degree at most 2T. x Q | 0 ⟩ … | ψ T x ⟩ | 0 ⟩ ⋮ | 0 ⟩ Both methods are often di ffi cult to use in practice: K-Search in [Klauck et al.’07] K-Search in [Ambainis’10] Coppersmith-Rivlin’s bound + Extremal Analysis of the eigenspaces of properties of Chebyshev polynomials. the Johnson Association Scheme.

  22. Time Lower Bounds 28 Two main methods for proving quantum query lower bounds: Polynomial Method Adversary Method Bound the progress W t = ∑ x , y w x , y ⟨ ψ t The acceptance probability of a T-query algorithm x | ψ t y ⟩ . is a polynomial in x of degree at most 2T. x Q | 0 ⟩ … | ψ T x ⟩ | 0 ⟩ ⋮ | 0 ⟩ Both methods are often di ffi cult to use in practice: K-Search in [Klauck et al.’07] K-Search in [Ambainis’10] Coppersmith-Rivlin’s bound + Extremal Analysis of the eigenspaces of properties of Chebyshev polynomials. the Johnson Association Scheme. A simpler and more intuitive method?

  23. Classical Lower Bound for K-Search 29 Input: x = ( x 1 , …, x N ) where x i = 1 with probability K/N.

  24. Classical Lower Bound for K-Search 29 Input: x = ( x 1 , …, x N ) where x i = 1 with probability K/N. Strategy: sample each entry only when it is queried, and record its value.

  25. Classical Lower Bound for K-Search 29 Input: x = ( x 1 , …, x N ) where x i = 1 with probability K/N. Strategy: sample each entry only when it is queried, and record its value. Algorithm Input x = ( ⊥ , ⊥ , ⊥ , ⊥ )

  26. Classical Lower Bound for K-Search 29 Input: x = ( x 1 , …, x N ) where x i = 1 with probability K/N. Strategy: sample each entry only when it is queried, and record its value. Algorithm Input x = ( ⊥ , ⊥ , ⊥ , ⊥ ) x 2 ?

  27. Classical Lower Bound for K-Search 29 Input: x = ( x 1 , …, x N ) where x i = 1 with probability K/N. Strategy: sample each entry only when it is queried, and record its value. Algorithm Input x = ( ⊥ , ⊥ , ⊥ , ⊥ ) x 2 ? x = ( ⊥ , 0 , ⊥ , ⊥ )

  28. Classical Lower Bound for K-Search 29 Input: x = ( x 1 , …, x N ) where x i = 1 with probability K/N. Strategy: sample each entry only when it is queried, and record its value. Algorithm Input x = ( ⊥ , ⊥ , ⊥ , ⊥ ) x 2 ? x = ( ⊥ , 0 , ⊥ , ⊥ ) x 2 = 0

  29. Classical Lower Bound for K-Search 29 Input: x = ( x 1 , …, x N ) where x i = 1 with probability K/N. Strategy: sample each entry only when it is queried, and record its value. Algorithm Input x = ( ⊥ , ⊥ , ⊥ , ⊥ ) x 2 ? x = ( ⊥ , 0 , ⊥ , ⊥ ) x 2 = 0 x 1 ?

  30. Classical Lower Bound for K-Search 29 Input: x = ( x 1 , …, x N ) where x i = 1 with probability K/N. Strategy: sample each entry only when it is queried, and record its value. Algorithm Input x = ( ⊥ , ⊥ , ⊥ , ⊥ ) x 2 ? x = ( ⊥ , 0 , ⊥ , ⊥ ) x 2 = 0 x 1 ? x = ( 1 , 0 , ⊥ , ⊥ )

  31. Classical Lower Bound for K-Search 29 Input: x = ( x 1 , …, x N ) where x i = 1 with probability K/N. Strategy: sample each entry only when it is queried, and record its value. Algorithm Input x = ( ⊥ , ⊥ , ⊥ , ⊥ ) x 2 ? x = ( ⊥ , 0 , ⊥ , ⊥ ) x 2 = 0 x 1 ? x = ( 1 , 0 , ⊥ , ⊥ ) x 1 = 1

  32. Classical Lower Bound for K-Search 29 Input: x = ( x 1 , …, x N ) where x i = 1 with probability K/N. Strategy: sample each entry only when it is queried, and record its value. Algorithm Input x = ( ⊥ , ⊥ , ⊥ , ⊥ ) x 2 ? x = ( ⊥ , 0 , ⊥ , ⊥ ) x 2 = 0 x 1 ? x = ( 1 , 0 , ⊥ , ⊥ ) x 1 = 1 x 2 ? x = ( 1 , 0 , ⊥ , ⊥ ) x 2 = 0 ⋮

  33. Classical Lower Bound for K-Search 29 Input: x = ( x 1 , …, x N ) where x i = 1 with probability K/N. Strategy: sample each entry only when it is queried, and record its value. Algorithm Input x = ( ⊥ , ⊥ , ⊥ , ⊥ ) x 2 ? x = ( ⊥ , 0 , ⊥ , ⊥ ) x 2 = 0 x 1 ? x = ( 1 , 0 , ⊥ , ⊥ ) x 1 = 1 x 2 ? x = ( 1 , 0 , ⊥ , ⊥ ) x 2 = 0 ⋮ ≤ ( K /2 K /2 )( N ) T K Probability to have recorded at least K/2 ones after T queries

  34. Classical Lower Bound for K-Search 29 Input: x = ( x 1 , …, x N ) where x i = 1 with probability K/N. Strategy: sample each entry only when it is queried, and record its value. Algorithm Input x = ( ⊥ , ⊥ , ⊥ , ⊥ ) x 2 ? x = ( ⊥ , 0 , ⊥ , ⊥ ) x 2 = 0 x 1 ? x = ( 1 , 0 , ⊥ , ⊥ ) x 1 = 1 x 2 ? x = ( 1 , 0 , ⊥ , ⊥ ) x 2 = 0 ⋮ ≤ ( K /2 K /2 )( N ) T K Probability to have recorded at least K/2 ones after T queries when T ≤ O ( N ) ≤ 2 −Ω ( K )

  35. Classical Lower Bound for K-Search 29 Input: x = ( x 1 , …, x N ) where x i = 1 with probability K/N. Strategy: sample each entry only when it is queried, and record its value. Algorithm Input x = ( ⊥ , ⊥ , ⊥ , ⊥ ) x 2 ? x = ( ⊥ , 0 , ⊥ , ⊥ ) x 2 = 0 x 1 ? x = ( 1 , 0 , ⊥ , ⊥ ) x 1 = 1 x 2 ? x = ( 1 , 0 , ⊥ , ⊥ ) x 2 = 0 ⋮ ≤ ( K /2 K /2 )( N ) T K Probability to have recorded at least K/2 ones after T queries when T ≤ O ( N ) ≤ 2 −Ω ( K ) ≤ ( K / N ) K /2 ≤ 2 −Ω ( K ) (The un-recorded positions can only be guessed , with success ).

  36. Recording of Quantum Queries 30 Can we record quantum queries similarly?

  37. Recording of Quantum Queries 30 Can we record quantum queries similarly? [Zhandry’19]: • A quantum “recording technique” that works when the input x 1 , …, x N is sampled from the uniform distribution on [M] N . • Motivations: security proofs in the quantum random oracle model.

  38. Recording of Quantum Queries 30 Can we record quantum queries similarly? [Zhandry’19]: • A quantum “recording technique” that works when the input x 1 , …, x N is sampled from the uniform distribution on [M] N . • Motivations: security proofs in the quantum random oracle model. Our contribution: • We generalize Zhandry’s technique to the case where x 1 , …, x N is sampled from any product distribution D 1 ⊗ … ⊗ D N on [M] N . • We simplify the framework and the analysis of the method.

  39. Quantum Recording for K-Search 31 x 1 : 1 − K / N | 0 ⟩ + K / N | 1 ⟩ x 2 : 1 − K / N | 0 ⟩ + K / N | 1 ⟩ ⋮ x N : 1 − K / N | 0 ⟩ + K / N | 1 ⟩ Q Q Q | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ Query Operator x i ( − 1) x i | i ⟩ | i ⟩ Q

  40. Quantum Recording for K-Search 32 x 1 : | ⊥ ⟩ x 2 : | ⊥ ⟩ ? ? ? R R R ⋮ x N : | ⊥ ⟩ | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ Query Operator x i ( − 1) x i | i ⟩ | i ⟩ Q

  41. Quantum Recording for K-Search 32 x 1 : | ⊥ ⟩ x 2 : | ⊥ ⟩ ? ? ? R R R ⋮ x N : | ⊥ ⟩ | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ S | ⊥ ⟩ = 1 − K / N | 0 ⟩ + K / N | 1 ⟩ Query Operator x i ( − 1) x i | i ⟩ | i ⟩ Q

  42. Quantum Recording for K-Search 32 x 1 : | ⊥ ⟩ S x 2 : | ⊥ ⟩ S R R R ⋮ x N : | ⊥ ⟩ S | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ S | ⊥ ⟩ = 1 − K / N | 0 ⟩ + K / N | 1 ⟩ Recording Query Operator Query Operator x i x i S † S ( − 1) x i | i ⟩ | i ⟩ Q | i ⟩ Q R ( − 1) ⊥ = 1 (where )

  43. Quantum Recording for K-Search 32 x 1 : | ⊥ ⟩ S x 2 : | ⊥ ⟩ S R R R ⋮ x N : | ⊥ ⟩ S | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ S | ⊥ ⟩ = 1 − K / N | 0 ⟩ + K / N | 1 ⟩ Recording Query Operator Query Operator We show that it makes no x i x i S † di ff erence for the algorithm. S ( − 1) x i | i ⟩ | i ⟩ Q | i ⟩ Q R ( − 1) ⊥ = 1 (where )

  44. Quantum Recording for K-Search 32 x 1 : | ⊥ ⟩ S x 2 : | ⊥ ⟩ S R R R ⋮ x N : | ⊥ ⟩ S | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ S | ⊥ ⟩ = 1 − K / N | 0 ⟩ + K / N | 1 ⟩ Recording Query Operator Query Operator We show that it makes no x i x i S † di ff erence for the algorithm. S We show that it “records” the 1’s. ( − 1) x i | i ⟩ | i ⟩ Q | i ⟩ Q R ( − 1) ⊥ = 1 (where )

  45. Quantum Recording for K-Search 33 x 1 : 1 − K / N | 0 ⟩ + K / N | 1 ⟩ x 2 : 1 − K / N | 0 ⟩ + K / N | 1 ⟩ ⋮ x N : 1 − K / N | 0 ⟩ + K / N | 1 ⟩ Q Q Q | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ S | ⊥ ⟩ = 1 − K / N | 0 ⟩ + K / N | 1 ⟩

  46. Quantum Recording for K-Search 33 x 1 : | ⊥ ⟩ S x 2 : | ⊥ ⟩ S ⋮ x N : | ⊥ ⟩ S Q Q Q | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ S | ⊥ ⟩ = 1 − K / N | 0 ⟩ + K / N | 1 ⟩

  47. Quantum Recording for K-Search 33 x 1 : | ⊥ ⟩ S x 2 : | ⊥ ⟩ S ⋮ x N : | ⊥ ⟩ S Q Q Q | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ S | ⊥ ⟩ = 1 − K / N | 0 ⟩ + K / N | 1 ⟩

  48. Quantum Recording for K-Search 33 x 1 : S † | ⊥ ⟩ S S x 2 : | ⊥ ⟩ S † S S ⋮ x N : | ⊥ ⟩ S † S S Q Q Q | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ S | ⊥ ⟩ = 1 − K / N | 0 ⟩ + K / N | 1 ⟩

  49. Quantum Recording for K-Search 33 x 1 : S † S † | ⊥ ⟩ S S x 2 : | ⊥ ⟩ S † S † S S ⋮ x N : S † | ⊥ ⟩ S † S S Q Q Q | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ S | ⊥ ⟩ = 1 − K / N | 0 ⟩ + K / N | 1 ⟩

  50. Quantum Recording for K-Search 33 x 1 : S † S † | ⊥ ⟩ S S S x 2 : | ⊥ ⟩ S † S † S S S ⋮ x N : S † | ⊥ ⟩ S † S S S Q Q Q | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ S | ⊥ ⟩ = 1 − K / N | 0 ⟩ + K / N | 1 ⟩

  51. Quantum Recording for K-Search 33 x 1 : S † S † | ⊥ ⟩ S † S S S S x 2 : | ⊥ ⟩ S † S † S † S S S S ⋮ x N : S † | ⊥ ⟩ S † S † S S S S Q Q Q | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ S | ⊥ ⟩ = 1 − K / N | 0 ⟩ + K / N | 1 ⟩

  52. Quantum Recording for K-Search 33 x 1 : S † S † | ⊥ ⟩ S † S S S S x 2 : | ⊥ ⟩ S † S † S † S S S S ⋮ x N : S † | ⊥ ⟩ S † S † S S S S Q Q Q | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ S | ⊥ ⟩ = 1 − K / N | 0 ⟩ + K / N | 1 ⟩ Recording Query Operator S † x 1 S ⋮ x i S † S ⋮ x N S † S Q | i ⟩ R

  53. Quantum Recording for K-Search 33 x 1 : S † S † | ⊥ ⟩ S † S S S S x 2 : | ⊥ ⟩ S † S † S † S S S S ⋮ x N : S † | ⊥ ⟩ S † S † S S S S Q Q Q | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ S | ⊥ ⟩ = 1 − K / N | 0 ⟩ + K / N | 1 ⟩ Recording Query Operator If x j is not queried it stays unchanged. x i S † S Q | i ⟩ R

  54. Quantum Recording for K-Search 33 x 1 : | ⊥ ⟩ S x 2 : | ⊥ ⟩ S R R R ⋮ x N : | ⊥ ⟩ S | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ S | ⊥ ⟩ = 1 − K / N | 0 ⟩ + K / N | 1 ⟩ Recording Query Operator If x j is not queried it stays unchanged. x i S † S Q | i ⟩ R

  55. Quantum Recording for K-Search 33 x 1 : | ⊥ ⟩ S x 2 : | ⊥ ⟩ S R R R ⋮ x N : | ⊥ ⟩ S | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ S | ⊥ ⟩ = 1 − K / N | 0 ⟩ + K / N | 1 ⟩ | ⊥ ⟩ R Recording Query Operator | i ⟩ | 0 ⟩ x i S † R S | i ⟩ Q | i ⟩ | 1 ⟩ R R | i ⟩

  56. Quantum Recording for K-Search 33 x 1 : | ⊥ ⟩ S x 2 : | ⊥ ⟩ S R R R ⋮ x N : | ⊥ ⟩ S | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ S | ⊥ ⟩ = 1 − K / N | 0 ⟩ + K / N | 1 ⟩ | ⊥ ⟩ ≈ | ⊥ ⟩ − K / N | 1 ⟩ R Recording Query Operator | i ⟩ | i ⟩ | 0 ⟩ x i S † R S | i ⟩ Q | i ⟩ | 1 ⟩ R R | i ⟩

  57. Quantum Recording for K-Search 33 x 1 : | ⊥ ⟩ S x 2 : | ⊥ ⟩ S R R R ⋮ x N : | ⊥ ⟩ S | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ S | ⊥ ⟩ = 1 − K / N | 0 ⟩ + K / N | 1 ⟩ | ⊥ ⟩ ≈ | ⊥ ⟩ − K / N | 1 ⟩ R Recording Query Operator | i ⟩ | i ⟩ | 0 ⟩ ≈ | 0 ⟩ + K / N | 1 ⟩ x i S † R S | i ⟩ | i ⟩ Q | i ⟩ | 1 ⟩ R R | i ⟩

  58. Quantum Recording for K-Search 33 x 1 : | ⊥ ⟩ S x 2 : | ⊥ ⟩ S R R R ⋮ x N : | ⊥ ⟩ S | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ S | ⊥ ⟩ = 1 − K / N | 0 ⟩ + K / N | 1 ⟩ | ⊥ ⟩ ≈ | ⊥ ⟩ − K / N | 1 ⟩ R Recording Query Operator | i ⟩ | i ⟩ | 0 ⟩ ≈ | 0 ⟩ + K / N | 1 ⟩ x i S † R S | i ⟩ | i ⟩ Q | i ⟩ K / N ( | 0 ⟩ − | ⊥ ⟩ ) | 1 ⟩ ≈ − | 1 ⟩ + R R | i ⟩ | i ⟩

  59. Quantum Recording for K-Search 33 x 1 : | ⊥ ⟩ S x 2 : | ⊥ ⟩ S R R R ⋮ x N : | ⊥ ⟩ S | 0 ⟩ … | 0 ⟩ ⋮ | 0 ⟩ S | ⊥ ⟩ = 1 − K / N | 0 ⟩ + K / N | 1 ⟩ | ⊥ ⟩ ≈ | ⊥ ⟩ − K / N | 1 ⟩ R Recording Query Operator Record | i ⟩ | i ⟩ a new 1 | 0 ⟩ ≈ | 0 ⟩ + K / N | 1 ⟩ x i S † R S | i ⟩ | i ⟩ Q | i ⟩ K / N ( | 0 ⟩ − | ⊥ ⟩ ) | 1 ⟩ ≈ − | 1 ⟩ + R R | i ⟩ | i ⟩

  60. Quantum Recording 34 Classical Recording Quantum Recording Probability to have recorded Amplitude of the states that have at least K/2 ones recorded at least K/2 ones K-Search ≤ ( ≤ ( K /2 K /2 K /2 )( N ) K /2 )( 4 N ) T K T K Probability to have recorded Amplitude of the states that have at least K/2 (disjoint) collisions recorded at least K/2 (disjoint) collisions K-Collision Pairs ≤ ( ≤ ( K /2 K /2 K /2 )( N ) K /2 )( 4 N ) T T T T

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Quantum Time-Space Tradeoffs for Deciding Systems of Linear Inequalities Robert Spalek

Quantum Time-Space Tradeoffs for Deciding Systems of Linear Inequalities Robert Spalek

Quantum Time-Space Tradeoffs for Deciding Systems of Linear Inequalities Robert Spalek sr@cwi.nl joint work with Andris Ambainis and Ronald de Wolf quant-ph/0511200 Robert Spalek, CWI Quantum Time-Space Tradeoffs for Deciding

816 views • 57 slides
Quantum and Classical Strong Direct Product Theorems and Optimal Time-Space Tradeoffs Robert

Quantum and Classical Strong Direct Product Theorems and Optimal Time-Space Tradeoffs Robert

Quantum and Classical Strong Direct Product Theorems and Optimal Time-Space Tradeoffs Robert palek joint work with Ronald de Wolf and Hartmut Klauck Computing Many Copies of a Function Suppose the complexity of f is well understood, e.g.

519 views • 23 slides
Space/time tradeoffs; dynamic programming; y g g transform and conquer 1. Space/time

Space/time tradeoffs; dynamic programming; y g g transform and conquer 1. Space/time

6. Space-time tradeoffs and dynamic programming D. Keil Analysis of Algorithms 1/11 Topic 6: Space/time tradeoffs; dynamic programming; y g g transform and conquer 1. Space/time tradeoffs 2. Dynamic programming 3 Example: sequence

498 views • 18 slides
A New Quantum Lower-Bound Method, with Applications to Direct Product Theorems and Time-Space

A New Quantum Lower-Bound Method, with Applications to Direct Product Theorems and Time-Space

A New Quantum Lower-Bound Method, with Applications to Direct Product Theorems and Time-Space Tradeoffs Robert Spalek joint work with Andris Ambainis and Ronald de Wolf CWI, Amsterdam University of Waterloo Robert

606 views • 47 slides
Computation Quantum Computing: . . . Potential Use of . . . in Quantum Space-Time Quantum

Computation Quantum Computing: . . . Potential Use of . . . in Quantum Space-Time Quantum

Which Problems Are . . . Is Speed Up Possible? Quantum Computing Computation Quantum Computing: . . . Potential Use of . . . in Quantum Space-Time Quantum Space-Time . . . Geometry of Quantum . . . Can Lead to Using Quantum . . . a

624 views • 13 slides
Week 5 Space-Time Tradeoffs and Calgary Drop-In Centre Locating a Particular Piece of Data

Week 5 Space-Time Tradeoffs and Calgary Drop-In Centre Locating a Particular Piece of Data

Week 5 Space-Time Tradeoffs and Calgary Drop-In Centre Locating a Particular Piece of Data 2 Growth-rate Functions O(1) constant time, the time is independent of n , e.g. array look-up O(log n ) logarithmic time, usually the log

549 views • 6 slides
MA/CSSE 473 Day 24 Student questions Space-time tradeoffs Hash tables review String search

MA/CSSE 473 Day 24 Student questions Space-time tradeoffs Hash tables review String search

MA/CSSE 473 Day 24 Student questions Space-time tradeoffs Hash tables review String search algorithms intro We did not get to them in other sections THINGS WE DID LAST TIME IN SECTION 1 1 Horner's Rule It involves a representation change.

468 views • 15 slides
Area and Time Tradeoffs in FPGAs Examining the concept of area/time tradeoffs in FPGA design,

Area and Time Tradeoffs in FPGAs Examining the concept of area/time tradeoffs in FPGA design,

Area and Time Tradeoffs in FPGAs Examining the concept of area/time tradeoffs in FPGA design, pattern matching, and Advanced Encryption Standard (AES) Richie Ung Trang (z5061606) Harry Gougousidis (z5159917) Henry Veng (z5113239) Presentation

569 views • 30 slides
Time space tradeoffs for attacks against one-way functions and PRGs Anindya De University of

Time space tradeoffs for attacks against one-way functions and PRGs Anindya De University of

Time space tradeoffs for attacks against one-way functions and PRGs Anindya De University of California, Berkeley Joint work with Luca Trevisan - UC Berkeley and Stanford University Madhur Tulsiani - Princeton University 0 / 26 What is this

943 views • 90 slides
Time-Space Tradeoffs for Two-Pass Learning Sumegha Garg (Princeton) Joint Work with Ran Raz

Time-Space Tradeoffs for Two-Pass Learning Sumegha Garg (Princeton) Joint Work with Ran Raz

Time-Space Tradeoffs for Two-Pass Learning Sumegha Garg (Princeton) Joint Work with Ran Raz (Princeton) and Avishay Tal (UC Berkeley) [Shamir 14], [Steinhardt-Valiant-Wager 15] Initiated a study of memory-samples lower bounds for learning Can one

636 views • 26 slides
on a quantum computer On quantum arithmetic and space-time trade-offs Martin Roetteler Microsoft

on a quantum computer On quantum arithmetic and space-time trade-offs Martin Roetteler Microsoft

Attacking binary elliptic curves on a quantum computer On quantum arithmetic and space-time trade-offs Martin Roetteler Microsoft Research Based on joint work with Brittanney Amento and Rainer Steinwandt [arXiv.org: 1209.5491, 1209.6348,

1.21k views • 76 slides
Quantum field theory on a quantum space-time: Hawking radiation and the Casimir effect Jorge

Quantum field theory on a quantum space-time: Hawking radiation and the Casimir effect Jorge

Quantum field theory on a quantum space-time: Hawking radiation and the Casimir effect Jorge Pullin Horace Hearne Institute for Theoretical Physics Louisiana State University With Rodolfo Gambini and Javier Olmedo University of the Republic

731 views • 20 slides
How$to$Record$Quantum$Queries$ and$Applications$to$Quantum$Indifferentiability Mark%Zhandry

How$to$Record$Quantum$Queries$ and$Applications$to$Quantum$Indifferentiability Mark%Zhandry

How$to$Record$Quantum$Queries$ and$Applications$to$Quantum$Indifferentiability Mark%Zhandry Princeton%University%&%NTT%Research Me This%talk x N xy The$(Classical)$Random$Oracle$Model$(ROM) [Bellare@Rogaway93] hash%

481 views • 37 slides
Semiquantum games to verify quantum correlations (in space and in time) Francesco Buscemi

Semiquantum games to verify quantum correlations (in space and in time) Francesco Buscemi

Semiquantum games to verify quantum correlations (in space and in time) Francesco Buscemi (Nagoya) Foundations of Quantum Mechanics and Technology (FQMT2017) ICMM, Linnus University, V axj o, Sweden 14 June 2017 with Yeong-Cherng Liang

380 views • 10 slides
General Relativity without paradigm of space-time covariance: sensible quantum gravity and

General Relativity without paradigm of space-time covariance: sensible quantum gravity and

General Relativity without paradigm of space-time covariance: sensible quantum gravity and resolution of the problem of time Hoi-Lai YU Institute of Physics, Academia Sinica, Taiwan. 2, March, 2012 Co-author: Chopin Soo Soo & Yu

473 views • 22 slides
Totaltime Time Recording www.ClockingSystems.co.uk Totaltime Time Recording Components

Totaltime Time Recording www.ClockingSystems.co.uk Totaltime Time Recording Components

Totaltime Time Recording www.ClockingSystems.co.uk Totaltime Time Recording Components Time recording terminal Totaltime mobile Wall mount for Totaltime mobile User cards M16 Transport card M256 PC smart card

997 views • 65 slides
The Godson-3 Multi-Core Processor and its Application in High Performance Computers Weiwu Hu

The Godson-3 Multi-Core Processor and its Application in High Performance Computers Weiwu Hu

The Godson-3 Multi-Core Processor and its Application in High Performance Computers Weiwu Hu Institute of Computing Technology, CAS Elio Guidetti STMicro Electronics 1 Contents A brief introduction to ICT A brief introduction to

756 views • 62 slides
Chapter 2 Chapter 2 Instruction-Level Parallelism and Its Exploitation p 1 Overview

Chapter 2 Chapter 2 Instruction-Level Parallelism and Its Exploitation p 1 Overview

Chapter 2 Chapter 2 Instruction-Level Parallelism and Its Exploitation p 1 Overview Instruction level parallelism Dynamic Scheduling Techniques D namic Sched ling Techniq es Scoreboarding Tomasulos Algorithm

611 views • 36 slides
Algorithmic Questions in Higher-Order Fourier Analysis Madhur Tulsiani TTI Chicago 1 1 2

Algorithmic Questions in Higher-Order Fourier Analysis Madhur Tulsiani TTI Chicago 1 1 2

Algorithmic Questions in Higher-Order Fourier Analysis Madhur Tulsiani TTI Chicago 1 1 2 2 f Based on joint works with Arnab Bhattacharyya, Eli Ben-Sasson, Pooya Hatami, Noga Ron-Zewi and Julia Wolf Decomposition Theorems

1.2k views • 89 slides
Branch Predic,on J. Nelson Amaral Why Branch Predic,on?

Branch Predic,on J. Nelson Amaral Why Branch Predic,on?

Branch Predic,on J. Nelson Amaral Why Branch Predic,on? Every 5-7 instruc,on of a program is a branch Not predic,ng, or miss-predic,ng, is

813 views • 69 slides
CENG 3420 Lecture 06: Pipeline Bei Yu byu@cse.cuhk.edu.hk CENG3420 L06.1 Spring 2020

CENG 3420 Lecture 06: Pipeline Bei Yu byu@cse.cuhk.edu.hk CENG3420 L06.1 Spring 2020

CENG 3420 Lecture 06: Pipeline Bei Yu byu@cse.cuhk.edu.hk CENG3420 L06.1 Spring 2020 Outline q Pipeline Motivations q Pipeline Hazards q Exceptions q Background: Flip-Flop Control Signals CENG3420 L06.2 Spring 2020 Outline q Pipeline

756 views • 75 slides
The geometry of black hole entropy John Dougherty UC San Diego March 13, 2015 John Dougherty

The geometry of black hole entropy John Dougherty UC San Diego March 13, 2015 John Dougherty

The geometry of black hole entropy John Dougherty UC San Diego March 13, 2015 John Dougherty (UC San Diego) The geometry of black hole entropy March 13, 2015 1 / 26 Introduction The laws of BHT 0 is constant on the horizon 1 1 M = 8

674 views • 26 slides
Airports of Thailand Plc. Airports of Thailand Plc. Corporate Presentation Corporate

Airports of Thailand Plc. Airports of Thailand Plc. Corporate Presentation Corporate

Airports of Thailand Plc. Airports of Thailand Plc. Corporate Presentation Corporate Presentation Q2_FY08 Q2_FY08 (January 2008 (January 2008 March 2008) March 2008) Investor Relations Center, Email:

470 views • 10 slides
Airports of Thailand Plc. Corporate Presentation FY2008 (October 2007 September 2008)

Airports of Thailand Plc. Corporate Presentation FY2008 (October 2007 September 2008)

Airports of Thailand Plc. Corporate Presentation FY2008 (October 2007 September 2008) Investor Relations Center, Email: aotir@airportthai.co.th, Tel: (662) 535-5900, Fax (662) 535-5909 Disclaimer This presentation is intended to assist

397 views • 18 slides

More recommend