Quantum Universally Composable Oblivious Linear Evaluation

IF 5.1 2区物理与天体物理 Q1 PHYSICS, MULTIDISCIPLINARY

Quantum Pub Date : 2024-10-23 DOI:10.22331/q-2024-10-23-1507

Manuel B. Santos, Paulo Mateus, Chrysoula Vlachou

{"title":"Quantum Universally Composable Oblivious Linear Evaluation","authors":"Manuel B. Santos, Paulo Mateus, Chrysoula Vlachou","doi":"10.22331/q-2024-10-23-1507","DOIUrl":null,"url":null,"abstract":"Oblivious linear evaluation is a generalization of oblivious transfer, whereby two distrustful parties obliviously compute a linear function, $f (x) = ax + b$, i.e., each one provides their inputs that remain unknown to the other, in order to compute the output $f (x)$ that only one of them receives. From both a structural and a security point of view, oblivious linear evaluation is fundamental for arithmetic-based secure multi-party computation protocols. In the classical case, oblivious linear evaluation protocols can be generated using oblivious transfer, and their quantum counterparts can, in principle, be constructed as straightforward extensions using quantum oblivious transfer. Here, we present the first, to the best of our knowledge, quantum protocol for oblivious linear evaluation that, furthermore, does not rely on quantum oblivious transfer. We start by presenting a semi-honest protocol, and then extend it to the dishonest setting employing a $commit-and-open$ strategy. Our protocol uses high-dimensional quantum states to obliviously compute $f (x)$ on Galois Fields of prime and prime-power dimension. These constructions utilize the existence of a complete set of mutually unbiased bases in prime-power dimension Hilbert spaces and their linear behaviour upon the Heisenberg-Weyl operators. We also generalize our protocol to achieve vector oblivious linear evaluation, where several instances of oblivious linear evaluation are generated, thus making the protocol more efficient. We prove the protocols to have static security in the framework of quantum universal composability.","PeriodicalId":20807,"journal":{"name":"Quantum","volume":"2 1","pages":""},"PeriodicalIF":5.1000,"publicationDate":"2024-10-23","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Quantum","FirstCategoryId":"101","ListUrlMain":"https://doi.org/10.22331/q-2024-10-23-1507","RegionNum":2,"RegionCategory":"物理与天体物理","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"PHYSICS, MULTIDISCIPLINARY","Score":null,"Total":0}

引用次数: 0

Abstract

Oblivious linear evaluation is a generalization of oblivious transfer, whereby two distrustful parties obliviously compute a linear function, $f (x) = ax + b$, i.e., each one provides their inputs that remain unknown to the other, in order to compute the output $f (x)$ that only one of them receives. From both a structural and a security point of view, oblivious linear evaluation is fundamental for arithmetic-based secure multi-party computation protocols. In the classical case, oblivious linear evaluation protocols can be generated using oblivious transfer, and their quantum counterparts can, in principle, be constructed as straightforward extensions using quantum oblivious transfer. Here, we present the first, to the best of our knowledge, quantum protocol for oblivious linear evaluation that, furthermore, does not rely on quantum oblivious transfer. We start by presenting a semi-honest protocol, and then extend it to the dishonest setting employing a $commit-and-open$ strategy. Our protocol uses high-dimensional quantum states to obliviously compute $f (x)$ on Galois Fields of prime and prime-power dimension. These constructions utilize the existence of a complete set of mutually unbiased bases in prime-power dimension Hilbert spaces and their linear behaviour upon the Heisenberg-Weyl operators. We also generalize our protocol to achieve vector oblivious linear evaluation, where several instances of oblivious linear evaluation are generated, thus making the protocol more efficient. We prove the protocols to have static security in the framework of quantum universal composability.

查看原文本刊更多论文

量子普遍可复合遗忘线性评估

遗忘线性评估是对遗忘转移的一种概括，即两个互不信任的当事人遗忘地计算一个线性函数 $f (x) = ax + b$，也就是说，每一方提供自己的输入，另一方保持未知，以计算只有其中一方收到的输出 $f(x)$。从结构和安全的角度来看，遗忘线性评估对于基于算术的安全多方计算协议都是至关重要的。在经典情况下，遗忘线性评估协议可以通过遗忘转移生成，而它们的量子对应协议原则上可以通过量子遗忘转移直接扩展。据我们所知，我们在这里提出了第一个用于遗忘线性评估的量子协议，而且不依赖于量子遗忘传输。我们首先提出了一个半诚实协议，然后采用 "提交-打开 "策略将其扩展到不诚实环境。我们的协议使用高维量子态在素数维和素幂数维的伽罗瓦场上遗忘计算 $f (x)$。这些构造利用了素幂维度希尔伯特空间中存在的一套完整的互不偏倚基，以及它们在海森堡-韦尔算子上的线性行为。我们还对协议进行了扩展，以实现矢量遗忘线性评估，即生成多个遗忘线性评估实例，从而提高协议的效率。我们证明了协议在量子通用可组合性框架下的静态安全性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Quantum Physics and Astronomy-Physics and Astronomy (miscellaneous)

CiteScore

9.20

自引率

10.90%

发文量

241

审稿时长

16 weeks

期刊介绍： Quantum is an open-access peer-reviewed journal for quantum science and related fields. Quantum is non-profit and community-run: an effort by researchers and for researchers to make science more open and publishing more transparent and efficient.