Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

Pseudorandom unitaries with non-adaptive security

Tony Metger, Alexander Poremba, Makrand Sinha, Henry Yuen

TL;DR

The paper addresses constructing pseudorandom unitaries (PRUs) that cannot be distinguished from Haar-random unitaries by quantum polynomial-time attackers with parallel queries. It proposes a simple, efficiently implementable PRU: $U_k = P_{k_1} F_{k_2} C_{k_3}$, formed from a quantum-secure pseudorandom permutation, a quantum-secure pseudorandom binary phase, and a random Clifford unitary; under quantum-secure one-way functions, this construction is secure against non-adaptive distinguishers. The key technical approach combines Schur-Weyl duality with $t$-wise twirls, showing that random Clifford projection pushes inputs into a distinct subspace and that the permutation-phase twirl closely mimics the Haar $t$-twirl on this subspace, yielding a trace-distance bound of $O(t/\sqrt{2^n})$ for polynomial $t$. The authors discuss extending to adaptive security and exploring applications in quantum cryptography and modeling chaotic quantum dynamics, highlighting PRUs as a foundational primitive bridging Haar randomness and efficient quantum operations. Overall, the work provides a concrete, security-guaranteed PRU construction under standard cryptographic assumptions and advances the theoretical understanding of quantum pseudorandomness.

Abstract

Pseudorandom unitaries (PRUs) are ensembles of efficiently implementable unitary operators that cannot be distinguished from Haar random unitaries by any quantum polynomial-time algorithm with query access to the unitary. We present a simple PRU construction that is a concatenation of a random Clifford unitary, a pseudorandom binary phase operator, and a pseudorandom permutation operator. We prove that this PRU construction is secure against non-adaptive distinguishers assuming the existence of quantum-secure one-way functions. This means that no efficient quantum query algorithm that is allowed a single application of $U^{\otimes \mathrm{poly}(n)}$ can distinguish whether an $n$-qubit unitary $U$ was drawn from the Haar measure or our PRU ensemble. We conjecture that our PRU construction remains secure against adaptive distinguishers, i.e. secure against distinguishers that can query the unitary polynomially many times in sequence, not just in parallel.

Pseudorandom unitaries with non-adaptive security

TL;DR

The paper addresses constructing pseudorandom unitaries (PRUs) that cannot be distinguished from Haar-random unitaries by quantum polynomial-time attackers with parallel queries. It proposes a simple, efficiently implementable PRU: , formed from a quantum-secure pseudorandom permutation, a quantum-secure pseudorandom binary phase, and a random Clifford unitary; under quantum-secure one-way functions, this construction is secure against non-adaptive distinguishers. The key technical approach combines Schur-Weyl duality with -wise twirls, showing that random Clifford projection pushes inputs into a distinct subspace and that the permutation-phase twirl closely mimics the Haar -twirl on this subspace, yielding a trace-distance bound of for polynomial . The authors discuss extending to adaptive security and exploring applications in quantum cryptography and modeling chaotic quantum dynamics, highlighting PRUs as a foundational primitive bridging Haar randomness and efficient quantum operations. Overall, the work provides a concrete, security-guaranteed PRU construction under standard cryptographic assumptions and advances the theoretical understanding of quantum pseudorandomness.

Abstract

Pseudorandom unitaries (PRUs) are ensembles of efficiently implementable unitary operators that cannot be distinguished from Haar random unitaries by any quantum polynomial-time algorithm with query access to the unitary. We present a simple PRU construction that is a concatenation of a random Clifford unitary, a pseudorandom binary phase operator, and a pseudorandom permutation operator. We prove that this PRU construction is secure against non-adaptive distinguishers assuming the existence of quantum-secure one-way functions. This means that no efficient quantum query algorithm that is allowed a single application of can distinguish whether an -qubit unitary was drawn from the Haar measure or our PRU ensemble. We conjecture that our PRU construction remains secure against adaptive distinguishers, i.e. secure against distinguishers that can query the unitary polynomially many times in sequence, not just in parallel.
Paper Structure (22 sections, 15 theorems, 68 equations)

This paper contains 22 sections, 15 theorems, 68 equations.

Table of Contents

  1. Introduction
  2. Our construction.
  3. Non-adaptive PRU security.
  4. Proof overview
  5. Discussion and future directions
  6. Acknowledgments.
  7. Preliminaries
  8. Notation and basic definitions
  9. Linear Maps.
  10. Distinct tuples.
  11. Permutation operators.
  12. Symmetric group and representations.
  13. Binary phase operators.
  14. Haar measure and $t$-wise twirling.
  15. Schur-Weyl duality
  16. ...and 7 more sections

Key Result

Theorem 1.1

Assuming the existence of quantum-secure one-way functions, the ensemble described in eq:intro-construction satisfies non-adaptive PRU security.

Theorems & Definitions (30)

  • Theorem 1.1
  • Definition 2.1: Permutation operator on $\mathbb{C}^d$
  • Lemma 2.2: Representation of $S_t$ on tensor product spaces
  • Definition 2.3: Haar measure
  • Definition 2.4: $t$-wise $R$-twirl
  • Lemma 2.5: Schur-Weyl duality, see e.g. christandl2006structure
  • Definition 2.6: Schur-Weyl basis
  • Lemma 2.7: Decomposition of the distinct subspace projector
  • Lemma 2.8: christandl2006structure, Theorem 1.16
  • Lemma 2.9
  • ...and 20 more