Asymptotically Faster Quantum Algorithms to Solve Multivariate Quadratic Equations
نویسندگان
چکیده
This paper designs and analyzes a quantum algorithm to solve a system of m quadratic equations in n variables over a finite field Fq. In the case m = n and q = 2, under standard assumptions, the algorithm takes time 2 on a mesh-connected computer of area 2, where t ≈ 0.45743 and a ≈ 0.01467. The area-time product has asymptotic exponent t+ a ≈ 0.47210. For comparison, the area-time product of Grover’s algorithm has asymptotic exponent 0.50000. Parallelizing Grover’s algorithm to reach asymptotic time exponent 0.45743 requires asymptotic area exponent 0.08514, much larger than 0.01467.
منابع مشابه
Small private keys for systems of multivariate quadratic equations using symmetric cryptography
Systems of Multivariate Quadratic Equations (M Q ) are important in cryptography due to the resistance against attacks that will arise with the advent of quantum computing. Resistant algorithms against attacks based on quantum computing are called post-quantum cryptography. Unbalanced OilVinegar (UOV) is a well known post-quantum signature scheme based on M Q . This paper presents a variation o...
متن کاملAlgorithms to Solve Massively Under-Defined Systems of Multivariate Quadratic Equations
It is well known that the problem to solve a set of randomly chosen multivariate quadratic equations over a finite field is NP-hard. However, when the number of variables is much larger than the number of equations, it is not necessarily difficult to solve equations. In fact, when n ≥ m(m+1) (n,m are the numbers of variables and equations respectively) and the field is of even characteristic, t...
متن کاملFast Exhaustive Search for Polynomial Systems
We analyze how fast we can solve general systems of multivariate equations of various low degrees over F2; this constitutes a generic attack on a hard problem both important in itself and often arising as part of algebraic cryptanalysis. We do not propose new generic techniques, but instead we revisit the standard exhaustive-search approach. We show that it can be made more efficient both asymp...
متن کاملFast Exhaustive Search for Polynomial Systems in F2
We analyze how fast we can solve general systems of multivariate equations of various low degrees over F2; this is a well known hard problem which is important both in itself and as part of many types of algebraic cryptanalysis. Compared to the standard exhaustive search technique, our improved approach is more efficient both asymptotically and practically. We implemented several optimized vers...
متن کاملA NEW APPROACH TO SOLVE DIFFERENTIAL EQUATIONS ARISING IN FLUID MECHANICS
The purpose of this study is to demonstrate the potential of Imperialist CompetitiveAlgorithm (ICA) for solving Blasius dierential equation. This algorithm is inspiredby competition mechanism among Imperialists and colonies and has demonstrated excellentcapabilities such as simplicity, accuracy, faster convergence and better global optimumachievement in contrast to other evolutionary algorithms...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
- IACR Cryptology ePrint Archive
دوره 2017 شماره
صفحات -
تاریخ انتشار 2017