Wiesner Quantum Money: Difference between revisions

Latest revision as of 16:33, 16 October 2019

The classical money scheme involves the Bank distributing notes to untrusted users. Each note has a unique serial number attached to it and this number provides a basis for the verification of the note when the user wants to use it for a transaction. However, in the classical world, nothing prevents a user with sufficient resources to be able to forge the note and create more notes than what he originally had in possession. In the 1980s, Wiesner proposed the idea of quantum money to create unforgeable bank notes. The unforgeability of the note relied on the no-cloning property of quantum mechanics. In this example protocol, the banknotes are several BB84 states prepared by the Bank, who then distributes them to the untrusted users. When the user needs to carry out a transaction with his note, he sends it to the Bank for verification, who then authenticates the validity of the note. Based on the no-cloning property of quantum mechanics, Wiesner showed information-theoretic security against a forger of bank notes.

Tags: Multi Party Protocols, non-local games, Quantum Enhanced Classical Functionality, Specific Task

AssumptionsEdit

The quantum money state which is a two-state system must be isolated from the rest of universe, roughly.
When Wiesner wrote his thesis, there was no device operating in which the phase coherence of a two-state system was preserved for longer than about a second.

OutlineEdit

Let the money have $n$ isolated systems $S_{i}\in \{a,b,\alpha ,\beta \},i=1,...,n$ .

The Mint creates two random binary sequences of $n$ digits $M_{i},N_{i}\in \{0,1\}$ where $i=1,...,n$ . Then, two-state systems are placed in one of four states $a,b,\alpha ,\beta$ .

Bank prepares a pair of orthonormal base states for each state system. Then the two-state system is located in one of four states $a,b,\alpha ,\beta$
The bank records all polarizations and their serial numbers. On the banknote/quantum money the serial number is plain, while polarizations are kept hidden.
If the money is returned to the Mint, it checks whether each isolated system is still in its initial state or not.

Note that since no one except the Mint knows $M_{i}$ and $N_{i}$ , even if someone copies the money, he cannot recover the polarization.

NotationEdit

$S_{i}$ = Isolated system
$M_{i},N_{i}$ = Random binary sequences
$a,b,\alpha ,\beta$ = States

RequirementsEdit

Network stage: quantum memory network

Knowledge GraphEdit

PropertiesEdit

The scheme requires a central bank for verifying the money
Pairs of conjugate variables has the same relation with Heisenberg uncertainty principle
The success probability of the adversary in guessing the state of the target quantum money is $(3/4)^{n}$

Protocol DescriptionEdit

Input: Product state of $N$ qubit and a serial number
Output: approved/rejected
Stage 1: Preparation

The Mint generate a quantum money composed of two component $(|S\rangle ,k)$ where $k$ is the serial number of the banknote and $S$ is a product state of $N$ qubits. Each qubit is randomly chosen from the set $\{|0\rangle ,|1\rangle ,|+\rangle ,|-\rangle \}$
Serial numbers and their states are recorded and kept at the Mint

Stage 2: Verification

The Mint looks for the serial number and the corresponding measurement basis in its database. Thus, each qubit is measured in the right basis, $\{|0\rangle ,|1\rangle \}$ or $\{|+\rangle ,|-\rangle \}$ .
The Mint outputs 1 if the result of the measurement corresponds with the data stored in its database, otherwise it returns 0.

ReferencesEdit

http://users.cms.caltech.edu/~vidick/teaching/120_qcrypto/wiesner.pdf

contributed by Gözde Üstün

@@ Line 1: / Line 1: @@
-A classical money/banknote has a unique serial number and the bank can provide a verification according to these serial numbers. However, Wiesner suggests that a quantum money has also a number of isolated two-state quantum system and the two-state systems are located in one of four states.
+The classical money scheme involves the Bank distributing notes to untrusted users. Each note has a unique serial number attached to it and this number provides a basis for the verification of the note when the user wants to use it for a transaction. However, in the classical world, nothing prevents a user with sufficient resources to be able to forge the note and create more notes than what he originally had in possession. In the 1980s, Wiesner proposed the idea of quantum money to create unforgeable bank notes. The unforgeability of the note relied on the no-cloning property of quantum mechanics. In this [http://users.cms.caltech.edu/~vidick/teaching/120_qcrypto/wiesner.pdf example protocol], the banknotes are several
+BB84 states prepared by the Bank, who then distributes them to the untrusted users. When the user needs to carry out a transaction with his note, he sends it to the Bank for verification, who then authenticates the validity of the note. Based on the no-cloning property of quantum mechanics, Wiesner showed information-theoretic security against a forger of bank notes.
+'''Tags:''' [[:Category: Multi Party Protocols|Multi Party Protocols]], non-local games, [[:Category: Quantum Enhanced Classical Functionality|Quantum Enhanced Classical Functionality]], [[:Category: Specific Task|Specific Task]]
+[[Category: Prepare and Measure Network Stage]]
+[[Category: Specific Tasks]]
+[[Category: Quantum Enhanced Classical Functionality]]
+[[Category: Multi Party Protocols]]
+==Assumptions==
+* The quantum money state which is a two-state system must be isolated from the rest of universe, roughly.
+* When Wiesner wrote his thesis, there was no device operating in which the phase coherence of a two-state system was preserved for longer than about a second.
+==Outline==
+Let the money have <math>n</math> isolated systems <math>S_i\in\{a, b, \alpha, \beta\}, i=1,...,n</math>.
+* The Mint creates two random binary sequences of <math>n</math>  digits <math>M_i,N_i\in\{0,1\}</math> where <math>i=1,...,n</math>. Then, two-state systems are placed in one of four states <math>a, b, \alpha, \beta</math>.
+# Bank prepares a pair of orthonormal base states for each state system. Then the two-state system is located in one of four states <math>a, b, \alpha, \beta</math>
+# The bank records all polarizations and their serial numbers. On the banknote/quantum money the serial number is plain, while polarizations are kept hidden.
+# If the money is returned to the Mint, it checks whether each isolated system is still in its initial state or not.
+Note that since no one except the Mint knows <math>M_i</math> and <math>N_i</math>, even if someone copies the money, he cannot recover the polarization.
+==Notation==
+*<math>S_i</math>= Isolated system
+*<math>M_i,N_i</math>= Random binary sequences
+*<math>a,b,\alpha,\beta</math>= States
+==Requirements==
+* Network stage: quantum memory network
+==Knowledge Graph==
+{{graph}}
+==Properties==
+* The scheme requires a central bank for verifying the money
+* Pairs of conjugate variables has the same relation with Heisenberg uncertainty principle
+* The success probability of the adversary in guessing the state of the target quantum money is <math>(3/4)^n</math>
+==Protocol Description==
+'''Input''': Product state of <math>N</math> qubit and a serial number</br>
+'''Output''': approved/rejected </br>
+'''Stage 1: Preparation'''
+# The Mint generate a quantum money composed of two component <math>(|S\rangle,k)</math> where <math>k</math> is the serial number of the banknote and <math>S</math> is a product state of <math>N</math> qubits. Each qubit is randomly chosen from the set <math>\{|0\rangle,|1\rangle,|+\rangle,|-\rangle\}</math>
+# Serial numbers and their states are recorded and kept at the Mint
+'''Stage 2: Verification'''
+# The Mint looks for the serial number and the corresponding measurement basis in its database. Thus, each qubit is measured in the right basis,<math>\{|0\rangle,|1\rangle\}</math> or <math>\{|+\rangle,|-\rangle\}</math>.
+# The Mint outputs 1 if the result of the measurement corresponds with the data stored in its database, otherwise it returns 0.
+==References==
+http://users.cms.caltech.edu/~vidick/teaching/120_qcrypto/wiesner.pdf
+<div style='text-align: right;'>''contributed by Gözde Üstün''</div>