Chen Bai: Post-quantum security of the Even-Mansour cipher

Channel:
United States QuICS
Subscribers:
2,450
Published on ● Video Link: https://www.youtube.com/watch?v=o2peKdy0Xw8


Duration: 36:39
106 views
0

The Even-Mansour cipher is a simple method for constructing a (keyed) pseudorandom permutation E from a public random permutation P: {0,1}^n -greater than {0,1}^n. It is a core ingredient in a wide array of symmetric-key constructions, including several lightweight cryptosystems presently under consideration for standardization by NIST. It is secure against classical attacks, with optimal attacks requiring q_E queries to E and q_P queries to P such that q_P × q_E ≈ 2^n. If the attacker is given quantum access to both E and P, however, the cipher is completely insecure, with attacks using q_P = q_E = O(n) queries known. In any plausible real-world setting, however, a quantum attacker would have only classical access to the keyed permutation E implemented by honest parties, while retaining quantum access to P. Attacks in this setting with q_P^2 × q_E ≈ 2^n are known, showing that security degrades as compared to the purely classical case, but leaving open the question as to whether the Even-Mansour cipher can still be proven secure in this natural ``post-quantum'' setting. We resolve this open question, showing that any attack in this post-quantum setting requires q^2_P × q_E + q_P × q_E^2 ≈ 2^n. Our results apply to both the two-key and single-key variants of Even-Mansour. Along the way, we establish several generalizations of results from prior work on quantum-query lower bounds that may be of independent interest.



Other Videos By QuICS


2023-07-31Tongyang Li: On Quantum Speedups for Nonconvex Optimization via Quantum Tunneling Walks
2023-04-14Alex Avdoshkin: Extrinsic Geometry of Quantum States
2023-02-24Jonathan Conrad: Good Gottesman-Kitaev-Preskill codes from the NTRU cryptosystem
2023-01-20Maris Ozols: Quantum majority vote
2022-08-13Kiara Hansenne: Uncertainty Relations from Graph Theory
2022-08-05Victor Albert: Quantum Error Correction & Bosonic Coding - Bosonic Fock-state codes
2022-08-02Victor Albert: Quantum Error Correction & Bosonic Coding - Bosonic stabilizer codes
2022-07-29Laurens Lootens: QuICS Special Seminar
2022-05-05Nikolas Breuckmann: LDPC Quantum Codes: Recent developments, Challenges and Opportunities
2022-05-04Jonas Helsen: Shadow sequence estimation: a primitive for learning gate set noise
2022-04-01Chen Bai: Post-quantum security of the Even-Mansour cipher
2022-03-18Aleksander Kubicki: Geometry of Banach spaces: a new route towards Position Based Cryptography
2022-03-05Jonathan Home: Autonomous quantum error correction of a grid state qubit
2022-03-03Alexander Dalzell: Random quantum circuits transform local noise into global white noise
2022-02-25Samson Wang: QuICS Special Seminar
2021-12-02Tobias Osborne: Simulating conformal field theories
2021-12-02Nolan Coble: IQC-QuICS Math-CS Seminar
2021-11-29Mina Doosti: Quantum Physical Unclonable Functions and Their Comprehensive Cryptanalysis
2021-10-06Victor Albert: Overview of quantum research at UMD
2021-09-30Nicolas Delfosse: Improved quantum error correction using soft information
2021-05-05Tamara Kohler and Emilio Onorati: Fitting quantum noise models to tomography data


Tags:
quantum computing