Quantum Fingerprinting
This example protocol allows two parties (two quantum clients) to distinguish their quantum inputs while maintaining the privacy of their own input by comparing their fingerprints alone. The protocol does not permit the two parties to interact directly with each other, hence they send the fingerprints of their respective inputs to a trusted third party (quantum server), where the third party tests that distinguishes two unknown quantum fingerprints with high probability. The quantum fingerprints are exponentially shorter than the original inputs.
Tags: Fingerprinting
Assumptions
- The two quantum clients have no shared key in this protocol.
- The server is trusted
- The fingerprints can consist of quantum information.
Outline
Here, two quantum clients want to check if their quantum inputs are distinct while also keeping their inputs secret. They prepare quantum fingerprints of their individual inputs and send these states to the server. Next stage involves the server performing a SWAP test on the fingerprints to check their equality. The server repeats this several times on the received fingerprints to reduce the error probability.
- Client's preparation:
- The client prepares the fingerprint of initial input which is sized -bits. This fingerprint has a length of bits.
- This fingerprint is prepared using particular error correcting codes, which converts the -bit input to -bits, where is greater than , and the two outputs of any two distinct inputs can be equal at atmost positions, where . The fingerprint has the length to be
- Hence for this purpose Justesen codes are used.
- The client now sends this fingerprint to the server through a quantum channel. Both the clients do this process simultaneously.
- Server's test: The server receives the two fingerprints from both the clients and performs the quantum SWAP Test on these states to check if the states are distinguishable. The server independently repeats this SWAP test on fingerprints several times to reduce the error probability in detecting if the two states are different.
Hardware Requirements
- Authenticated Quantum channel capable of sending a pair of qubits.
- Quantum memory for the server to store the fingerprints.
- Measurement devices for the server.
- A one-time quantum channel from both clients to the server.
Notation
- , Quantum fingerprint for -bit input .
- , Fingerprint function associated with input which maps -bit input to -bit fingerprint.
- , Fixed constant, such that .
Properties
- The computational complexity of this protocol is .
- Given an -bit input, the protocol requires a quantum fingerprint of minimum bits which contains quantum information.
- The quantum fingerprint is defined as the state , where is the fingerprint of the input . is the bit of .
- The hamming distance i.e. the number of positions between two strings of same length, at which the corresponding symbols are different, of and is at least .
- Any two fingerprints, and have an inner product of at most .
- The one sided error probability is at least if the server computation is repeated times.
- Quantum memory would be required to store the fingerprints if the server operations are performed times.
- This protocol requires no quantum memory for the Client
Pseudocode
Input: to First Party and to Second Party.
Output: One bit by server satisfying the equality function with some error probability.
Stage 1: Client's preparation
- First Party prepares the fingerprint from input .
- Second Party prepares the fingerprint from input .
- Both parties transmit their fingerprints to the server.
Stage 2: Server's preparation
- Server prepares an ancilla qubit for final measurement purpose, and thus starts with the state .
- Server creates an entangled state by applying the gate .
- The server measures the first qubit and transmits the output to both the parties.