Advances in Cryptology – EUROCRYPT 2005

Volume 3494 of the series Lecture Notes in Computer Science pp 268-284

Computational Indistinguishability Between Quantum States and Its Cryptographic Application

  • Akinori KawachiAffiliated withGraduate School of Information Science and Engineering, Tokyo Institute of Technology
  • , Takeshi KoshibaAffiliated withSecure Computing Laboratory, Fujitsu Laboratories Ltd.
  • , Harumichi NishimuraAffiliated withERATO Quantum Computation and Information Project, Japan Science and Technology Agency
  • , Tomoyuki YamakamiAffiliated withComputer Science Program, Trent University


We introduce a problem of distinguishing between two quantum states as a new underlying problem to build a computational cryptographic scheme that is ”secure” against quantum adversary. Our problem is a natural generalization of the distinguishability problem between two probability distributions, which are commonly used in computational cryptography. More precisely, our problem QSCD ff is the computational distinguishability problem between two types of random coset states with a hidden permutation over the symmetric group. We show that (i) QSCD ff has the trapdoor property; (ii) the average-case hardness of QSCD ff coincides with its worst-case hardness; and (iii) QSCD ff is at least as hard in the worst case as the graph automorphism problem. Moreover, we show that QSCD ff cannot be efficiently solved by any quantum algorithm that naturally extends Shor’s factorization algorithm. These cryptographic properties of QSCD ff enable us to construct a public-key cryptosystem, which is likely to withstand any attack of a polynomial-time quantum adversary.