T. Lunghi,J. Kaniewski,F. Bussieres,R. Houlmann,M. Tomamichel,A. Kent,N. Gisin,S. Wehner,H. Zbinden

DOI: https://doi.org/10.1103/PhysRevLett.111.180504

2013-07-19

Abstract:Bit commitment is a fundamental cryptographic primitive in which Bob wishes to commit a secret bit to Alice. Perfectly secure bit commitment has been proven impossible through asynchronous exchange of classical and quantum information. Perfect security is however possible by restraining the exchange of classical and quantum information to suitably chosen relativistic constraints. This requires Alice (and Bob) to split into two remote agents performing space-like separated classical communication, and in one agent exchanging quantum bits with the other party. The duration of the commitment is given by the distance between the two remote agents. The original protocol requires the quantum communication to happen at a precise location and time with respect to the classical communication. We show how the protocol can be modified to relax this constraint such that the quantum part of the protocol can be performed at any time before the actual commitment, making it much more practical. Finally, we present an experimental demonstration of this protocol realized with a commercial quantum key distribution system and with synchronized classical agents located in Geneva and Singapore, yielding a commitment time of 15 ms. Our work includes a complete security analysis, accounting for experimental imperfections (multi-photon emission, transmission loss, detector inefficiency and dark counts) and finite statistics.

Quantum Physics

Giacomo Mauro D'Ariano,Dennis Kretschmann,Dirk Schlingemann,Reinhard F. Werner

DOI: https://doi.org/10.1103/PhysRevA.76.032328

2007-10-15

Abstract:Bit commitment protocols whose security is based on the laws of quantum mechanics alone are generally held to be impossible. In this paper we give a strengthened and explicit proof of this result. We extend its scope to a much larger variety of protocols, which may have an arbitrary number of rounds, in which both classical and quantum information is exchanged, and which may include aborts and resets. Moreover, we do not consider the receiver to be bound to a fixed "honest" strategy, so that "anonymous state protocols", which were recently suggested as a possible way to beat the known no-go results are also covered. We show that any concealing protocol allows the sender to find a cheating strategy, which is universal in the sense that it works against any strategy of the receiver. Moreover, if the concealing property holds only approximately, the cheat goes undetected with a high probability, which we explicitly estimate. The proof uses an explicit formalization of general two party protocols, which is applicable to more general situations, and a new estimate about the continuity of the Stinespring dilation of a general quantum channel. The result also provides a natural characterization of protocols that fall outside the standard setting of unlimited available technology, and thus may allow secure bit commitment. We present a new such protocol whose security, perhaps surprisingly, relies on decoherence in the receiver's lab.

Quantum Physics

Mariana Gama,Paulo Mateus,André Souto

DOI: https://doi.org/10.3390/e22030272

IF: 2.738

2020-02-27

Entropy

Abstract:We propose an entanglement-based quantum bit string commitment protocol whose composability is proven in the random oracle model. This protocol has the additional property of preserving the privacy of the committed message. Even though this property is not resilient against man-in-the-middle attacks, this threat can be circumvented by considering that the parties communicate through an authenticated channel. The protocol remains secure and private (but not composable) if we realize the random oracles as physical unclonable functions (PUFs) in the so-called bad PUF model.

physics, multidisciplinary

Sarah Croke,Adrian Kent

DOI: https://doi.org/10.1103/PhysRevA.86.052309

2012-08-08

Abstract:We spell out details of a simple argument for a security bound for the secure relativistic quantum bit commitment protocol of Ref. [1].

Quantum Physics,Cryptography and Security

Guang-Ping He

DOI: https://doi.org/10.48550/arXiv.quant-ph/0303107

2003-08-16

Abstract:Based on the fact that the entanglement can not be created locally, we proposed a quantum bit commitment protocol, in which entangled states and quantum algorithms is used. The bit is not encoded with the form of the quantum states, and delaying the measurement is required. Therefore the protocol will not be denied by the Mayers-Lo-Chau no-go theorem, and unconditional security is achieved.

Quantum Physics

Xin Sun,Quanlong Wang,Feifei He

DOI: https://doi.org/10.1007/s10773-020-04604-z

2020-10-06

International Journal of Theoretical Physics

Abstract:Bit commitment is a cryptographic task in which Alice commits a bit to Bob such that she cannot change the value of the bit after her commitment and Bob cannot learn the value of the bit before Alice opens her commitment. In this paper, we propose a quantum bit commitment (QBC) protocol which is arbitrarily concealing and practically binding. Compared to other arbitrarily concealing and practically binding QBC protocols, ours is more efficient. Neither multi-particle entanglement nor long-term quantum memory is used in our protocol, which makes it implementable by the current technology.

physics, multidisciplinary

Yang Liu,Yuan Cao,Marcos Curty,Sheng-Kai Liao,Jian Wang,Ke Cui,Yu-Huai Li,Ze-Hong Lin,Qi-Chao Sun,Dong-Dong Li,Hong-Fei Zhang,Yong Zhao,Teng-Yun Chen,Cheng-Zhi Peng,Qiang Zhang,Adan Cabello,Jian-Wei Pan

DOI: https://doi.org/10.1103/physrevlett.112.010504

IF: 8.6

2014-01-01

Physical Review Letters

Abstract:Quantum physics allows for unconditionally secure communication between parties that trust each other. However, when the parties do not trust each other such as in the bit commitment scenario, quantum physics is not enough to guarantee security unless extra assumptions are made. Unconditionally secure bit commitment only becomes feasible when quantum physics is combined with relativistic causality constraints. Here we experimentally implement a quantum bit commitment protocol with relativistic constraints that offers unconditional security. The commitment is made through quantum measurements in two quantum key distribution systems in which the results are transmitted via free-space optical communication to two agents separated with more than 20 km. The security of the protocol relies on the properties of quantum information and relativity theory. In each run of the experiment, a bit is successfully committed with less than 5.68×10(-2) cheating probability. This demonstrates the experimental feasibility of quantum communication with relativistic constraints.

B Yu,ZW Zhou,J Li,GC Guo

DOI: https://doi.org/10.1117/12.483024

2002-01-01

Abstract:Although Mayers, Lo and Chau successfully showed that unconditionally secure quantum bit commitment (QBC) is impossible, we present a secure QBC protocol which is quite different from the model used in their proofs. If Alice wants to commit a bit b, she first encodes b into a series of classical bit strings of the same length. The requirement is that the modulo 2 sum of all bits in every bit string equals to b. Then Alice uses quantum one-way function to produce quantum states which are corresponding to the encoded classical bit strings and will be sent to Bob as evidence. The quantum one-way function used here is just that was successfully applied in Gottesman and Chuang's quantum digital signatures. When it comes to the unveilingtime, Alice only sends the bit strings to Bob. Finally, Bob generates quantum states form the bit strings by the same quantum one-way function and uses controlled-swap circuit to check whether the quantum states are identical with the evidence.

André Chailloux,Iordanis Kerenidis

DOI: https://doi.org/10.48550/arXiv.1102.1678

2011-02-09

Abstract:Bit commitment is a fundamental cryptographic primitive with numerous applications. Quantum information allows for bit commitment schemes in the information theoretic setting where no dishonest party can perfectly cheat. The previously best-known quantum protocol by Ambainis achieved a cheating probability of at most 3/4[Amb01]. On the other hand, Kitaev showed that no quantum protocol can have cheating probability less than 1/sqrt{2} [Kit03] (his lower bound on coin flipping can be easily extended to bit commitment). Closing this gap has since been an important and open question. In this paper, we provide the optimal bound for quantum bit commitment. We first show a lower bound of approximately 0.739, improving Kitaev's lower bound. We then present an optimal quantum bit commitment protocol which has cheating probability arbitrarily close to 0.739. More precisely, we show how to use any weak coin flipping protocol with cheating probability 1/2 + eps in order to achieve a quantum bit commitment protocol with cheating probability 0.739 + O(eps). We then use the optimal quantum weak coin flipping protocol described by Mochon[Moc07]. To stress the fact that our protocol uses quantum effects beyond the weak coin flip, we show that any classical bit commitment protocol with access to perfect weak (or strong) coin flipping has cheating probability at least 3/4.

Quantum Physics

Dorit Aharonov,Amnon Ta-Shma,Umesh Vazirani,Andrew Yao

DOI: https://doi.org/10.1145/335305.335404

2000-01-01

Abstract:Unconditionally secure bit commitment and coin flipping are known to be impossible in the classical world. Bit commitment is known to be impossible also in the quantum world. We introduce a related new primitive - {\em quantum bit escrow}. In this primitive Alice commits to a bit $b$ to Bob. The commitment is {\em binding} in the sense that if Alice is asked to reveal the bit, Alice can not bias her commitment without having a good probability of being detected cheating. The commitment is {\em sealing} in the sense that if Bob learns information about the encoded bit, then if later on he is asked to prove he was playing honestly, he is detected cheating with a good probability. Rigorously proving the correctness of quantum cryptographic protocols has proved to be a difficult task. We develop techniques to prove quantitative statements about the binding and sealing properties of the quantum bit escrow protocol. A related primitive we construct is a quantum biased coin flipping protocol where no player can control the game, i.e., even an all-powerful cheating player must lose with some constant probability, which stands in sharp contrast to the classical world where such protocols are impossible.

S.N.Molotkov,S.S.Nazin

DOI: https://doi.org/10.48550/arXiv.quant-ph/0101105

2001-01-22

Abstract:Under rather general assumptions about the properties of a noisy quantum channel, a first quantum protocol is proposed which allows to implement the secret bit commitment with the probability arbitrarily close to unity.

Quantum Physics

Emily Adlam,Adrian Kent

DOI: https://doi.org/10.1103/PhysRevA.92.022315

2015-04-04

Abstract:We examine the possibility of device-independent relativistic quantum bit commitment. We note the potential threat of {\it location attacks}, in which the behaviour of untrusted devices used in relativistic quantum cryptography depends on their space-time location. We describe relativistic quantum bit commitment schemes that are immune to these attacks, and show that these schemes offer device-independent security against hypothetical post-quantum adversaries subject only to the no-signalling principle. We compare a relativistic classical bit commitment scheme with similar features, and note some possible advantages of the quantum schemes.

Quantum Physics,Cryptography and Security

Arindam Mitra

DOI: https://doi.org/10.48550/arXiv.physics/0007089

2001-02-06

Abstract:Mayers, Lo and Chau proved unconditionally secure quantum bit commitment is impossible. It is shown that their proof is valid only for a particular model of quantum bit commitment encoding, in general it does not hold good. A different model of unconditionally secure quantum bit commitment - both entanglement and disentanglement-based - is presented. Even cheating can be legally proved with some legal evidences. Unconditionally secure quantum bit commitment can be established on the top of unconditionally secure quantum coin tossing, which is also claimed to be two-way impossible.

General Physics

M. Orlandini,D. Dal Fiume,F. Frontera,S. Del Sordo,S. Piraino,A. Santangelo,A. Segreto,T. Oosterbroek,A.N. Parmar

DOI: https://doi.org/10.1016/S0920-5632%2898%2900200-X

1997-12-02

Abstract:We report on observations of the low-mass X-ray binary 4U1626-67 performed during the BeppoSAX Science Verification Phase. We present the broad-band 0.1-100 keV pulse averaged spectrum, that is well fit by a two-component function: a 0.27 +/- 0.02 keV blackbody and an absorbed power law with a photon index of 0.89 +/- 0.02. A very deep and narrow absorption feature at 38 keV, attributable to electron cyclotron resonance, is clearly visible in the broad-band spectrum. It corresponds to a neutron star magnetic field strength of 3.3 x 10^{12} G. The 4U1626-67 pulse profiles show a dramatic dependance on energy: the transition between the low energy (E<10 keV) "bi-horned" shape to the high-energy (E>10 keV) sinusoidal profile is clearly visible in our data. The modulation index shows a monotonic increase with energy.

Astrophysics

Muhammad Nadeem

DOI: https://doi.org/10.48550/arXiv.1504.03316

2015-04-14

Abstract:We propose here a two-round relativistic bit commitment scheme where committer commits in the first round and then confirms his/her commitment in the second round. The scheme offers indefinite commitment time where both committer and receiver extract non-locally correlated measurement outcomes during the scheme that can be stored and revealed after arbitrarily long time. We show that the proposed scheme turns out to be a multiparty bit commitment scheme where both parties commit and reveal simultaneously. The multiparty generalization would have applications in business and secure multiparty computations such as managing joint bank account, holding joint shares in stock exchange and blind bidding. The same bit commitment scheme can also be used for the commitment of arbitrarily long classical bit strings. The scheme can be applied efficiently with existing technologies; entanglement is required only for time t=x/c where x is the special distance, can be as small as possible, between the committer and receiver.

Quantum Physics

Ya-Qi Song,Li Yang

DOI: https://doi.org/10.48550/arXiv.1807.01602

2018-07-03

Abstract:We propose a framework of bit commitment protocol using a comparison scheme and present a compound comparison scheme based on counterfactual cryptography. Finally, we propose a counterfactual quantum bit commitment protocol. In security analysis, we give the proper security parameters for counterfactual quantum bit commitment and prove that intercept attack and intercept/resend attack are ineffective attack for our protocol. In addition, we explain that counterfactual quantum bit commitment protocol cannot be attacked with no-go theorem attack by current technology.

Quantum Physics

Ephanielle Verbanis,Anthony Martin,Raphaël Houlmann,Gianluca Boso,Félix Bussières,Hugo Zbinden

DOI: https://doi.org/10.1103/PhysRevLett.117.140506

2016-05-24

Abstract:Bit commitment is a fundamental cryptographic primitive in which a party wishes to commit a secret bit to another party. Perfect security between mistrustful parties is unfortunately impossible to achieve through the asynchronous exchange of classical and quantum messages. Perfect security can nonetheless be achieved if each party splits into two agents exchanging classical information at times and locations satisfying strict relativistic constraints. A relativistic multi-round protocol to achieve this was previously proposed and used to implement a 2~millisecond commitment time. Much longer durations were initially thought to be insecure, but recent theoretical progress showed that this is not so. In this letter, we report on the implementation of a 24-hour bit commitment based on timed high-speed optical communication and fast data processing only, with all agents located within the city of Geneva. This duration is more than six orders of magnitude longer than before, and we argue that it could be extended to one year and allow much more flexibility on the locations of the agents. Our implementation offers a practical and viable solution for use in applications such as digital signatures, secure voting and honesty-preserving auctions.

Quantum Physics

Bao Li

2006-01-01

Abstract:A class of quantum protocols of bit commitment is constructed based on the nonorthogonal states coding and the correlation immunity of some Boolean functions. The binding condition of these protocols is guaranteed mainly by the law of causality and the concealing condition is guaranteed by the indistinguishability between nonorthogonal quantum states and the correlation immunity of Boolean functions. We also give out an oblivious transfer protocol based on two-nonorthogonal states coding and build a bit commitment protocol on top of it. The relationship between these protocols and the well known no-go theorem is also discussed in details.

GUANG PING HE

DOI: https://doi.org/10.1142/s0219749906002079

2006-08-01

International Journal of Quantum Information

Abstract:Though it was proven that secure quantum sealing of a single classical bit is impossible in principle, here we propose an unconditionally secure quantum sealing protocol which seals a classical bit string. Any reader can obtain each bit of the sealed string with an arbitrarily small error rate, while reading the string is detectable. The protocol is simple and easy to implement. The possibility of using this protocol to seal a single bit in practice is also briefly discussed.

physics, particles & fields,quantum science & technology, mathematical,computer science, theory & methods

Chi-Yee Cheung

DOI: https://doi.org/10.48550/arXiv.quant-ph/0603154

2006-03-28

Abstract:Using unstable particles which decay by emitting neutrinos, we propose a quantum bit commitment protocol that is humanly impossible to break. Neutrinos carry away quantum information, but their interaction with matter is so weak that it would take an astronomically-sized machine just to catch them, not to mention performing controlled unitary operations on them. As a result quantum information is lost, and cheating is not possible even if the participants had access to the most powerful quantum computers that could ever be built. Therefore, for all practical purposes, our new protocol is as good as unconditionally secure.

Quantum Physics