Paper 2024/1413

The Black-Box Simulation Barrier Persists in a Fully Quantum World

Nai-Hui Chia, Rice University
Kai-Min Chung, Academia Sinica
Xiao Liang, Chinese University of Hong Kong
Jiahui Liu, Massachusetts Institute of Technology, Fujitsu Research
Abstract

Zero-Knowledge (ZK) protocols have been a subject of intensive study due to their fundamental importance and versatility in modern cryptography. However, the inherently different nature of quantum information significantly alters the landscape, necessitating a re-examination of ZK designs. A crucial aspect of ZK protocols is their round complexity, intricately linked to $\textit{simulation}$, which forms the foundation of their formal definition and security proofs. In the $\textit{post-quantum}$ setting, where honest parties and their communication channels are all classical but the adversaries could be quantum, Chia, Chung, Liu, and Yamakawa [FOCS'21] demonstrated the non-existence of constant-round $\textit{black-box-simulatable}$ ZK arguments (BBZK) for $\mathbf{NP}$ unless $\mathbf{NP} \subseteq \mathbf{BQP}$. However, this problem remains widely open in the full-fledged quantum future that will eventually arrive, where all parties (including the honest ones) and their communication are naturally quantum. Indeed, this problem is of interest to the broader theory of quantum computing. It has been an important theme to investigate how quantum power fundamentally alters traditional computational tasks, such as the $\textit{unconditional}$ security of Quantum Key Distribution and the incorporation of Oblivious Transfers in MiniQCrypt. Moreover, quantum communication has led to round compression for commitments and interactive arguments. Along this line, the above problem is of great significance in understanding whether quantum computing could also change the nature of ZK protocols in some fundamentally manner. We resolved this problem by proving that only languages in $\mathbf{BQP}$ admit constant-round $\textit{fully-quantum}$ BBZK. This result holds significant implications. Firstly, it illuminates the nature of quantum zero-knowledge and provides valuable insights for designing future protocols in the quantum realm. Secondly, it relates ZK round complexity with the intriguing problem of $\mathbf{BQP}$ vs $\mathbf{QMA}$, which is out of the reach of previous analogue impossibility results in the classical or post-quantum setting. Lastly, it justifies the need for the $\textit{non-black-box}$ simulation techniques or the relaxed security notions employed in existing constant-round fully-quantum BBZK protocols.

Metadata
Available format(s)
PDF
Category
Foundations
Publication info
Preprint.
Keywords
QuantumZero-KnowledgeBlack-BoxImpossibilityConstant-Round
Contact author(s)
nc67 @ rice edu
kmchung @ iis sinica edu tw
xiaoliang @ cuhk edu hk
jiahuiliu @ csail mit edu
History
2024-09-11: approved
2024-09-10: received
See all versions
Short URL
https://ia.cr/2024/1413
License
Creative Commons Attribution-NonCommercial-NoDerivs
CC BY-NC-ND

BibTeX

@misc{cryptoeprint:2024/1413,
      author = {Nai-Hui Chia and Kai-Min Chung and Xiao Liang and Jiahui Liu},
      title = {The Black-Box Simulation Barrier Persists in a Fully Quantum World},
      howpublished = {Cryptology {ePrint} Archive, Paper 2024/1413},
      year = {2024},
      url = {https://eprint.iacr.org/2024/1413}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.