Privacy for Quantum Annealing. Attack on Spin Reversal Transformations in the case of cryptanalysis
Mateusz Leśniak, Michał Wroński
TL;DR
This work investigates privacy for quantum annealing by challenging Spin Reversal Transformations (SRT), a proposed privacy method for Ising/QUBO problems in cloud quantum computing. It shows that when the outsourced optimization encodes a cryptanalytic attack, specifically an algebraic attack on the $E_0$ cipher, the original problem can be recovered from the transformed Ising instance, effectively breaking confidentiality. The authors formulate a parameterized attack pipeline, leveraging an oracle to build a parameterized Ising model, and demonstrate the attack on both a scaled-down and full $E_0$ instance, including resource estimates (e.g., $N=2728$ variables and $20598$ non-zero coefficients in the final QUBO). The results underscore a practical vulnerability of SRT-based privacy and motivate the development of more robust privacy-preserving mechanisms for quantum cloud computing, potentially favoring local computation or alternative cryptographic protections. The work provides concrete steps, from algebraic-to-QUBO translation to keystream recovery, highlighting the interplay between cryptanalysis and quantum optimization privacy.
Abstract
This paper demonstrates that applying spin reversal transformations (SRT), commonly known as a sufficient method for privacy enhancement in problems solved using quantum annealing, does not guarantee privacy for all possible cases. We show how to recover the original problem from the Ising problem obtained using SRT when the resulting problem in Ising form represents the algebraic attack on the $E_0$ stream cipher. A small example illustrates how to retrieve the original problem from that transformed by SRT. Moreover, we show that our method is efficient also for full-scale problems.