A Note on the Common Haar State Model
Prabhanjan Ananth, Aditya Gulati, Yao-Ting Lin
TL;DR
The work advances quantum cryptography in the CHS model by showing that statistically secure stretch PRSGs can be built even when the adversary has access to a sublinear number of Haar-state copies, with an explicit construction achieving output length exceeding the key length and secure against up to $O\left(\frac{λ}{(\log λ)^{1.01}}\right)$ copies. It also introduces multi-key PRS and a CHS-based non-interactive commitment scheme using SWAP tests, and provides a lower bound showing optimality for certain parameter choices, including impossibility results for single-copy CHS PRSGs with sufficiently many copies. The methodology relies on type-state decompositions and hybrid arguments that connect Haar-state averaging to combinatorial type constructions, yielding elementary, accessible proofs. Overall, the paper delineates feasible cryptographic primitives in CHS and highlights the nuanced trade-offs between state copy numbers, state lengths, and security guarantees in quantum settings, with potential impact on quantum public-key constructions and related primitives.
Abstract
Common random string model is a popular model in classical cryptography with many constructions proposed in this model. We study a quantum analogue of this model called the common Haar state model, which was also studied in an independent work by Chen, Coladangelo and Sattath (arXiv 2024). In this model, every party in the cryptographic system receives many copies of one or more i.i.d Haar states. Our main result is the construction of a statistically secure PRSG with: (a) the output length of the PRSG is strictly larger than the key size, (b) the security holds even if the adversary receives $O\left(\fracλ{(\log(λ))^{1.01}} \right)$ copies of the pseudorandom state. We show the optimality of our construction by showing a matching lower bound. Our construction is simple and its analysis uses elementary techniques.