An Efficient Quantum Factoring Algorithm
Oded Regev
TL;DR
This work proposes a quantum factoring scheme that reduces the per-run circuit size to $\\tilde{O}(n^{3/2})$ gates and requires only $\\sqrt{n}+4$ independent executions, followed by polynomial-time classical post-processing. The method uses a multidimensional, Shor-like quantum procedure to sample near dual-lattice vectors, then employs lattice-reduction techniques (LLL) and an extended lattice construction to recover a short vector in $\\mathcal{L}\\setminus\\mathcal{L}_0$, from which a nontrivial factor of the target $N$ is obtained via a gcd computation. The main contributions are the circuit-size improvement, the explicit lattice-based post-processing framework, and the conditional claims based on a number-theoretic heuristic; the practicality depends on whether the heuristic holds and on future optimizations, especially compared to optimized Shor implementations. The result suggests that under plausible assumptions, quantum resources for factoring could be reduced, although real-world performance remains to be demonstrated and verified against existing quantum factoring approaches.
Abstract
We show that $n$-bit integers can be factorized by independently running a quantum circuit with $\tilde{O}(n^{3/2})$ gates for $\sqrt{n}+4$ times, and then using polynomial-time classical post-processing. The correctness of the algorithm relies on a number-theoretic heuristic assumption reminiscent of those used in subexponential classical factorization algorithms. It is currently not clear if the algorithm can lead to improved physical implementations in practice.