Skip to main content
SpringerLink
Log in

Interactive Oracle Arguments in the QROM and Applications to Succinct Verification of Quantum Computation

  • Conference paper
  • First Online:
Topics in Cryptology – CT-RSA 2024 (CT-RSA 2024)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 14643))

Included in the following conference series:

  • 53 Accesses

Abstract

This work is motivated by the following question: can an untrusted quantum server convince a classical verifier of the answer to an efficient quantum computation using only polylogarithmic communication? We show how to achieve this in the quantum random oracle model (QROM), after a non-succinct instance-independent setup phase.

We introduce and formalize the notion of post-quantum interactive oracle arguments for languages in QMA, a generalization of interactive oracle proofs (Ben-Sasson–Chiesa–Spooner). We then show how to compile any non-adaptive public-coin interactive oracle argument (with private setup) into a succinct argument (with setup) in the QROM.

To conditionally answer our motivating question via this framework under the post-quantum hardness assumption of LWE, we show that the ZX local Hamiltonian problem with at least inverse-polylogarithmic relative promise gap has an interactive oracle argument with instance-independent setup, which we can then compile.

Assuming a variant of the quantum PCP conjecture that we introduce called the weak ZX quantum PCP conjecture, we obtain a succinct argument for QMA (and consequently the verification of quantum computation) in the QROM (with non-succinct instance-independent setup) which makes only black-box use of the underlying cryptographic primitives.

The author was partially supported by the National Science Foundation (NSF) grants CCF-1947889 and CNS-1414119. Thanks to Mark Bun and Nicholas Spooner for their mentorship and help with refining and revising this project.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 59.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 79.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Notes

  1. 1.

    The Pauli XZ matrices are \(X = \begin{pmatrix} 0 &{} 1\\ 1 &{} 0 \end{pmatrix}, Z = \begin{pmatrix} 1 &{} 0\\ 0 &{} -1 \end{pmatrix}\) and they are used frequently in physics and quantum computation.

  2. 2.

    Consider, for example, the universal gate set \(G = \{H, X, \textsc {CCNOT} \}\). Note that \(H = \frac{1}{\sqrt{2}} (X + Z)\) and \(\textsc {CCNOT} = I - \frac{1}{4}(I - Z_1)(I - Z_2)(I - X_3)\). G is a universal gate set with real matrices and can be used to obtain propagation Hamiltonians whose Pauli decomposition has the real Pauli matrices X and Z.

  3. 3.

    It is known how to efficiently prepare such history state for an efficient quantum computation, but we do not include the details here.

  4. 4.

    We conjecture that it is possible to reduce the number of messages to 3 in our work. More details are provided in the extended version of this paper [21].

  5. 5.

    In this paper we will only work with classical Merkle trees where the data are classical strings and the (honest) algorithms are executed on classical devices. However, their security is established against a cheating quantum device in the quantum random oracle model.

  6. 6.

    This is equivalent to sending each overlapping intermediate node once instead of sending it multiple times inside possibly overlapping paths for each leaf. However, for easier notation and exposition, we send the authentication paths for each leaf and require this consistency condition when verifying a batch of authentication paths.

  7. 7.

    It is an open question whether they are equivalent under classical reductions. In fact, the proof checking formulation itself could end up being more specific than that provided in [1] which was the reason why it was not straightforward to prove the equivalence under classical reductions. For the details of the quantum reduction, we refer the reader to the proof of Theorem 5.5. in [24].

  8. 8.

    Later, we will use the term “public-coin protocols with private setup” to highlight this again.

  9. 9.

    Please refer to the extended version of this paper [21] for full details on the choice of these thresholds as well as the Test and Hadamard round of the Mahadev protocol.

  10. 10.

    In most useful interactive oracle arguments including the argument system for the local Hamiltonian problem discussed in this paper, we do not have to know the input length exactly, but it suffices to know an upper bound.

  11. 11.

    Keeping the randomness used in the setup enables the verifier to store information such as secret keys and/or trapdoors without revealing them to the prover.

  12. 12.

    or its oracle messages.

References

  1. Aharonov, D., Arad, I., Landau, Z., Vazirani, U.: The detectability lemma and quantum gap amplification. In: Proceedings of the 41st Annual ACM Symposium on Symposium on Theory of Computing, STOC 2009 (2009). https://doi.org/10.1145/1536414.1536472

  2. Aharonov, D., Arad, I., Vidick, T.: The Quantum PCP Conjecture (2013)

    Google Scholar 

  3. Alagic, G., Childs, A.M., Grilo, A.B., Hung, S.: Non-interactive classical verification of quantum computation. In: Pass, R., Pietrzak, K. (eds.) TCC 2020, Part III. LNCS, vol. 12552, pp. 153–180. Springer, Cham (2020). https://doi.org/10.1007/978-3-030-64381-2_6

    Chapter  Google Scholar 

  4. Arora, S., Lund, C., Motwani, R., Sudan, M., Szegedy, M.: Proof verification and the hardness of approximation problems. J. ACM 45(3), 501–555 (1998). https://doi.org/10.1145/278298.278306

    Article  MathSciNet  Google Scholar 

  5. Arora, S., Safra, S.: Probabilistic checking of proofs: a new characterization of NP. J. ACM 45(1), 70–122 (1998). https://doi.org/10.1145/273865.273901

    Article  MathSciNet  Google Scholar 

  6. Bartusek, J., et al.: Succinct classical verification of quantum computation. In: Dodis, Y., Shrimpton, T. (eds.) CRYPTO 2022, Part II. LNCS, vol. 13508, pp. 195–211. Springer, Cham (2022). https://doi.org/10.1007/978-3-031-15979-4_7

    Chapter  Google Scholar 

  7. Bartusek, J., Malavolta, G.: Indistinguishability obfuscation of null quantum circuits and applications. In: Braverman, M. (ed.) 13th Innovations in Theoretical Computer Science Conference, ITCS 2022, Berkeley, CA, USA, 31 January–3 February 2022. LIPIcs, vol. 215, pp. 15:1–15:13. Schloss Dagstuhl - Leibniz-Zentrum für Informatik (2022). https://doi.org/10.4230/LIPIcs.ITCS.2022.15

  8. Bellare, M., Rogaway, P.: Random oracles are practical: a paradigm for designing efficient protocols. In: Proceedings of the 1st ACM Conference on Computer and Communications Security, CCS 1993, pp. 62–73. Association for Computing Machinery, New York (1993). https://doi.org/10.1145/168588.168596

  9. Ben-Sasson, E., Chiesa, A., Spooner, N.: Interactive oracle proofs. In: Hirt, M., Smith, A. (eds.) Theory of Cryptography, pp. 31–60. Springer, Heidelberg (2016). https://doi.org/10.1007/978-3-662-53644-5_2

    Chapter  Google Scholar 

  10. Biamonte, J.D., Love, P.J.: Realizable Hamiltonians for universal adiabatic quantum computers. Phys. Rev. A 78(1) (2008). https://doi.org/10.1103/physreva.78.012352

  11. Boneh, D., Dagdelen, Ö., Fischlin, M., Lehmann, A., Schaffner, C., Zhandry, M.: Random oracles in a quantum world. In: Lee, D.H., Wang, X. (eds.) ASIACRYPT 2011. LNCS, vol. 7073, pp. 41–69. Springer, Cham (2011). https://doi.org/10.1007/978-3-642-25385-0_3

    Chapter  Google Scholar 

  12. Chen, L., Movassagh, R.: Quantum Merkle trees (2021). https://doi.org/10.48550/ARXIV.2112.14317

  13. Chia, N., Chung, K., Yamakawa, T.: Classical verification of quantum computations with efficient verifier. In: Pass, R., Pietrzak, K. (eds.) TCC 2020, Part III. LNCS, vol. 12552, pp. 181–206. Springer, Cham (2020). https://doi.org/10.1007/978-3-030-64381-2_7

    Chapter  Google Scholar 

  14. Chiesa, A., Ma, F., Spooner, N., Zhandry, M.: Post-quantum succinct arguments: breaking the quantum rewinding barrier. In: 62nd IEEE Annual Symposium on Foundations of Computer Science, FOCS 2021, Denver, CO, USA, 7–10 February 2022, pp. 49–58. IEEE (2021). https://doi.org/10.1109/FOCS52979.2021.00014

  15. Chiesa, A., Manohar, P., Spooner, N.: Succinct arguments in the quantum random oracle model. In: Hofheinz, D., Rosen, A. (eds.) TCC 2019, Part II. LNCS, vol. 11892, pp. 1–29. Springer, Cham (2019). https://doi.org/10.1007/978-3-030-36033-7_1

    Chapter  Google Scholar 

  16. Childs, A.M.: Secure assisted quantum computation. Quantum Inf. Comput. 5(6), 456–466 (2005). https://doi.org/10.26421/QIC5.6-4

    Article  MathSciNet  Google Scholar 

  17. Coladangelo, A., Vidick, T., Zhang, T.: Non-interactive zero-knowledge arguments for QMA, with preprocessing. In: Micciancio, D., Ristenpart, T. (eds.) CRYPTO 2020, Part III. LNCS, vol. 12172, pp. 799–828. Springer, Cham (2020). https://doi.org/10.1007/978-3-030-56877-1_28

    Chapter  Google Scholar 

  18. Cook, S.A.: The complexity of theorem-proving procedures. In: Proceedings of the Third Annual ACM Symposium on Theory of Computing, STOC 1971, pp. 151–158. Association for Computing Machinery, New York (1971). https://doi.org/10.1145/800157.805047

  19. Don, J., Fehr, S., Majenz, C., Schaffner, C.: Efficient NIZKs and signatures from commit-and-open protocols in the QROM. In: Dodis, Y., Shrimpton, T. (eds.) CRYPTO 2022, Part II. LNCS, vol. 13508, pp. 729–757. Springer, Cham (2022). https://doi.org/10.1007/978-3-031-15979-4_25

    Chapter  Google Scholar 

  20. Don, J., Fehr, S., Majenz, C., Schaffner, C.: Online-extractability in the quantum random-oracle model. In: Dunkelman, O., Dziembowski, S. (eds.) EUROCRYPT 2022, Part III. LNCS, vol. 13277, pp. 677–706. Springer, Cham (2022). https://doi.org/10.1007/978-3-031-07082-2_24

    Chapter  Google Scholar 

  21. Faisal, I.: Interactive oracle arguments in the QROM and applications to succinct verification of quantum computation. Cryptology ePrint Archive, Paper 2023/421 (2023). https://eprint.iacr.org/2023/421

  22. Fitzsimons, J., Hajdušek, M., Morimae, T.: Post hoc verification of quantum computation. Phys. Rev. Lett. 120(4) (2018)

    Google Scholar 

  23. Gheorghiu, A., Kapourniotis, T., Kashefi, E.: Verification of quantum computation: an overview of existing approaches. Theory Comput. Syst. 63(4), 715–808 (2018). https://doi.org/10.1007/s00224-018-9872-3

    Article  MathSciNet  Google Scholar 

  24. Grilo, A.B.: Quantum proofs, the local Hamiltonian problem and applications. (Preuves quantiques, le problème des Hamiltoniens locaux et applications). Ph.D. thesis, Sorbonne Paris Cité, France (2018). https://tel.archives-ouvertes.fr/tel-02152364

  25. Gunn, S., Ju, N., Ma, F., Zhandry, M.: Commitments to quantum states. Cryptology ePrint Archive, Paper 2022/1358 (2022). https://eprint.iacr.org/2022/1358

  26. Kempe, J., Kitaev, A., Regev, O.: The complexity of the local Hamiltonian problem. SIAM J. Comput. 35(5), 1070–1097 (2006). https://doi.org/10.1137/s0097539704445226

    Article  MathSciNet  Google Scholar 

  27. Kilian, J.: A note on efficient zero-knowledge proofs and arguments (extended abstract). In: Proceedings of the Twenty-Fourth Annual ACM Symposium on Theory of Computing, STOC 1992, pp. 723–732. Association for Computing Machinery, New York (1992). https://doi.org/10.1145/129712.129782

  28. Kitaev, A.: Quantum NP (1999). Talk at AQIP’99: Second Workshop on Algorithms in Quantum Information Processing

    Google Scholar 

  29. Levin, L.A.: Universal sequential search problems. Problemy peredachi informatsii 9(3), 115–116 (1973)

    Google Scholar 

  30. Mahadev, U.: Classical homomorphic encryption for quantum circuits. In: Thorup, M. (ed.) 59th IEEE Annual Symposium on Foundations of Computer Science, FOCS 2018, Paris, France, 7–9 October 2018, pp. 332–338. IEEE Computer Society (2018). https://doi.org/10.1109/FOCS.2018.00039

  31. Mahadev, U.: Classical verification of quantum computations. In: 59th IEEE Annual Symposium on Foundations of Computer Science, FOCS 2018, Paris, France, 7–9 October 2018, pp. 259–267 (2018). https://doi.org/10.1109/FOCS.2018.00033

  32. Merkle, R.C.: A digital signature based on a conventional encryption function. In: Pomerance, C. (ed.) CRYPTO 1987. LNCS, vol. 293, pp. 369–378. Springer, Heidelberg (1988). https://doi.org/10.1007/3-540-48184-2_32

    Chapter  Google Scholar 

  33. Morimae, T., Fitzsimons, J.F.: Post hoc verification with a single prover. arXiv preprint arXiv:1603.06046 (2016)

  34. Morimae, T., Nagaj, D., Schuch, N.: Quantum proofs can be verified using only single-qubit measurements. Phys. Rev. A 93(2) (2016). https://doi.org/10.1103/physreva.93.022326

  35. Takeuchi, Y., Morimae, T., Tani, S.: Sumcheck-based delegation of quantum computing to rational server. Theor. Comput. Sci. 924, 46–67 (2022). https://doi.org/10.1016/j.tcs.2022.04.016. https://www.sciencedirect.com/science/article/pii/S0304397522002250

  36. Unruh, D.: Collapse-binding quantum commitments without random oracles. In: Cheon, J.H., Takagi, T. (eds.) ASIACRYPT 2016, Part II. LNCS, vol. 10032, pp. 166–195. Springer, Cham (2016). https://doi.org/10.1007/978-3-662-53890-6_6

    Chapter  Google Scholar 

  37. Unruh, D.: Computationally binding quantum commitments. In: Fischlin, M., Coron, J. (eds.) EUROCRYPT 2016, Part II. LNCS, vol. 9666, pp. 497–527. Springer, Cham (2016). https://doi.org/10.1007/978-3-662-49896-5_18

    Chapter  Google Scholar 

  38. Vidick, T., Zhang, T.: Classical zero-knowledge arguments for quantum computations. IACR Cryptology ePrint Archive 2019, 194 (2019). https://eprint.iacr.org/2019/194

  39. Zhandry, M.: How to record quantum queries, and applications to quantum indifferentiability. In: Boldyreva, A., Micciancio, D. (eds.) CRYPTO 2019, Part II. LNCS, vol. 11693, pp. 239–268. Springer, Cham (2019). https://doi.org/10.1007/978-3-030-26951-7_9

    Chapter  Google Scholar 

  40. Zhang, J.: Succinct blind quantum computation using a random oracle. In: Khuller, S., Williams, V.V. (eds.) STOC 2021: 53rd Annual ACM SIGACT Symposium on Theory of Computing, Virtual Event, Italy, 21–25 June 2021, pp. 1370–1383. ACM (2021). https://doi.org/10.1145/3406325.3451082

  41. Zhang, J.: Classical verification of quantum computations in linear time. In: 63rd IEEE Annual Symposium on Foundations of Computer Science, FOCS 2022, Denver, CO, USA, 31 October–3 November 2022, pp. 46–57. IEEE (2022). https://doi.org/10.1109/FOCS54457.2022.00012

Download references

Acknowledgements

The author was partially supported by NSF grants CCF-1947889 and CNS-1414119. Thanks to Mark Bun and Nicholas Spooner for their mentorship and help with refining and revising this project. Thanks - in alphabetical order - to Adam Smith, Alex Bredariol Grilo, Alex Lombardi, Anand Natarajan, Andrea Coladangelo, Anurag Anshu, Assaf Kfoury, Azer Bestavros, Chris Laumann, Fermi Ma, Ibrahim Faisal, James Bartusek, Jiayu Zhang, Leo Reyzin, Ludmila Glinskih, Luowen Qian, Mayank Varia, Muhammad Faisal, Nadya Voronova, Nathan Ju, Ran Canetti, Sam Gunn, Steve Homer, Thomas Vidick, Urmila Mahadev, and others for their time listening to ideas, helpful discussions, and explanations. I specially thank Thomas Vidick for his online lectures that spurred my interest in this research topic as well as his continued support. Thanks to [3, 20] for making the  sources of their papers accessible which helped in typesetting this paper. Thanks to UCLA’s Institute for Pure and Applied Mathematics (IPAM) for the support received to participate in the Graduate Summer School on Post-quantum and Quantum Cryptography where I discussed this work with other participants. Thanks to the reviewers of this paper for helping with iterating and refining it.

Author information

Authors and Affiliations

  1. Boston University, Boston, MA, USA

    Islam Faisal

Authors
  1. Islam Faisal
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Islam Faisal .

Editor information

Editors and Affiliations

  1. University of Klagenfurt, Klagenfurt, Austria

    Elisabeth Oswald

Rights and permissions

Reprints and permissions

Copyright information

© 2024 The Author(s), under exclusive license to Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Faisal, I. (2024). Interactive Oracle Arguments in the QROM and Applications to Succinct Verification of Quantum Computation. In: Oswald, E. (eds) Topics in Cryptology – CT-RSA 2024. CT-RSA 2024. Lecture Notes in Computer Science, vol 14643. Springer, Cham. https://doi.org/10.1007/978-3-031-58868-6_16

Download citation

  • DOI: https://doi.org/10.1007/978-3-031-58868-6_16

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-031-58867-9

  • Online ISBN: 978-3-031-58868-6

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation