| dc.contributor.author | Aaronson, Scott | |
| dc.contributor.author | Christiano, Paul F. | |
| dc.date.accessioned | 2012-09-07T19:03:51Z | |
| dc.date.available | 2012-09-07T19:03:51Z | |
| dc.date.issued | 2012-05 | |
| dc.identifier.issn | 0737-8017 | |
| dc.identifier.uri | http://hdl.handle.net/1721.1/72581 | |
| dc.description.abstract | Forty years ago, Wiesner pointed out that quantum mechanics raises the striking possibility
of money that cannot be counterfeited according to the laws of physics. We propose the first
quantum money scheme that is
(1) public-key—meaning that anyone can verify a banknote as genuine, not only the bank
that printed it, and
(2) cryptographically secure, under a “classical” hardness assumption that has nothing to do
with quantum money.
Our scheme is based on hidden subspaces, encoded as the zero-sets of random multivariate
polynomials. A main technical advance is to show that the “black-box” version of our scheme,
where the polynomials are replaced by classical oracles, is unconditionally secure. Previously,
such a result had only been known relative to a quantum oracle (and even there, the proof was
never published).
Even in Wiesner’s original setting—quantum money that can only be verified by the bank—
we are able to use our techniques to patch a major security hole in Wiesner’s scheme. We
give the first private-key quantum money scheme that allows unlimited verifications and that
remains unconditionally secure, even if the counterfeiter can interact adaptively with the bank.
Our money scheme is simpler than previous public-key quantum money schemes, including
a knot-based scheme of Farhi et al. The verifier needs to perform only two tests, one in the
standard basis and one in the Hadamard basis—matching the original intuition for quantum
money, based on the existence of complementary observables.
Our security proofs use a new variant of Ambainis’s quantum adversary method, and several
other tools that might be of independent interest. | en_US |
| dc.description.sponsorship | United States. Defense Advanced Research Projects Agency (YFA grant) | en_US |
| dc.description.sponsorship | National Science Foundation (U.S.) (NSF STC grant) | en_US |
| dc.description.sponsorship | Massachusetts Institute of Technology (TIBCO Chair) | en_US |
| dc.description.sponsorship | Alfred P. Sloan Foundation (Research Fellowship) | en_US |
| dc.language.iso | en_US | |
| dc.publisher | Association for Computing Machinery, sponsored by the ACM Special Interest Group on Algorithms and Computation Theory | en_US |
| dc.relation.isversionof | http://cs.nyu.edu/~stoc2012/accepted.htm | en_US |
| dc.rights | Creative Commons Attribution-Noncommercial-Share Alike 3.0 | en_US |
| dc.rights.uri | http://creativecommons.org/licenses/by-nc-sa/3.0/ | en_US |
| dc.source | MIT web domain | en_US |
| dc.title | Quantum Money from Hidden Subspaces | en_US |
| dc.type | Article | en_US |
| dc.identifier.citation | Aaronson, Scott and Paul Christiano. "Quantum Money from Hidden Subspaces." in Proceedings of the 44th ACM Symposium on Theory of Computing, (STOC 2012), May 19-22, 2012, New York, NY. | en_US |
| dc.contributor.department | Massachusetts Institute of Technology. Computer Science and Artificial Intelligence Laboratory | en_US |
| dc.contributor.department | Massachusetts Institute of Technology. Department of Electrical Engineering and Computer Science | en_US |
| dc.contributor.approver | Aaronson, Scott | |
| dc.contributor.mitauthor | Christiano, Paul F. | |
| dc.contributor.mitauthor | Aaronson, Scott | |
| dc.relation.journal | Proceedings of the 44th ACM Symposium on Theory of Computing, (STOC 2012) | en_US |
| dc.eprint.version | Author's final manuscript | en_US |
| dc.type.uri | http://purl.org/eprint/type/ConferencePaper | en_US |
| dspace.orderedauthors | Aaronson, Scott; Christiano, Paul. | en_US |
| dc.identifier.orcid | https://orcid.org/0000-0003-1333-4045 | |
| mit.license | OPEN_ACCESS_POLICY | en_US |
| mit.metadata.status | Complete | |
