Factoring Safe Semiprimes with a Single Quantum Query

Shor's factoring algorithm (SFA), by its ability to efficiently factor large numbers, has the potential to undermine contemporary encryption. At its heart is a process called order finding, which quantum mechanics lets us perform efficiently. SFA thus consists of a quantum order finding algorithm (QOFA), bookended by classical routines which, given the order, return the factors. But, with probability up to 1/2, these classical routines fail, and QOFA must be rerun. We modify these routines using elementary results in number theory, improving the likelihood that they return the factors. We present a new quantum factoring algorithm based on QOFA which is better than SFA at factoring safe semiprimes, an important class of numbers used in RSA encryption (and reputed to be the hardest to factor). With just one call to QOFA, our algorithm almost always factors safe semiprimes. As well as a speed-up, improving efficiency gives our algorithm other, practical advantages: unlike SFA, it does not need a randomly picked input, making it simpler to construct in the lab; and in the (unlikely) case of failure, the same circuit can be rerun, without modification. We consider generalising this result to other cases, although we do not find a simple extension, and conclude that SFA is still the best algorithm for general numbers (non safe semiprimes, in other words). Even so, we present some simple number theoretic tricks for improving SFA in this case.

[1]  J. M. Pollard,et al.  Theorems on factorization and primality testing , 1974, Mathematical Proceedings of the Cambridge Philosophical Society.

[2]  Gary L. Miller Riemann's Hypothesis and Tests for Primality , 1976, J. Comput. Syst. Sci..

[3]  Adi Shamir,et al.  A method for obtaining digital signatures and public-key cryptosystems , 1978, CACM.

[4]  Adi Shamir,et al.  A method for obtaining digital signatures and public-key cryptosystems , 1978, CACM.

[5]  H. W. Lenstra,et al.  Factoring integers with elliptic curves , 1987 .

[6]  Peter W. Shor,et al.  Algorithms for quantum computation: discrete logarithms and factoring , 1994, Proceedings 35th Annual Symposium on Foundations of Computer Science.

[7]  D. Coppersmith An approximate Fourier transform useful in quantum factoring , 2002, quant-ph/0201067.

[8]  On Shor ' s Quantum Factor Finding Algorithm : Increasing the Probability of Success and Tradeo sInvolving the Fourier Transform ModulusE , 1995 .

[9]  Peter W. Shor,et al.  Polynomial-Time Algorithms for Prime Factorization and Discrete Logarithms on a Quantum Computer , 1995, SIAM Rev..

[10]  I. Chuang,et al.  Quantum Computation and Quantum Information: Bibliography , 2010 .

[11]  Richard Cleve,et al.  Fast parallel circuits for the quantum Fourier transform , 2000, Proceedings 41st Annual Symposium on Foundations of Computer Science.

[12]  Ronald Cramer,et al.  Signature schemes based on the strong RSA assumption , 2000, TSEC.

[13]  I. Chuang,et al.  Experimental realization of Shor's quantum factoring algorithm using nuclear magnetic resonance , 2001, Nature.

[14]  Robert D. Silverman,et al.  Are 'Strong' Primes Needed for RSA , 2001, IACR Cryptol. ePrint Arch..

[15]  G. Leander Improving the Success Probability for Shor's Factoring Algorithm , 2002, quant-ph/0208183.

[16]  D. Cheung Improved bounds for the approximate QFT , 2004, quant-ph/0403071.

[17]  B. Lanyon,et al.  Experimental demonstration of a compiled version of Shor's algorithm with quantum entanglement. , 2007, Physical review letters.

[18]  Thierry Paul,et al.  Quantum computation and quantum information , 2007, Mathematical Structures in Computer Science.

[19]  Jian-Wei Pan,et al.  Demonstration of a compiled version of Shor's quantum factoring algorithm using photonic qubits. , 2007, Physical review letters.

[20]  R. Laubenbacher,et al.  "Voici ce que j'ai trouve": Sophie Germain's grand plan to prove Fermat's Last Theorem , 2008, 0801.1809.

[21]  A. Politi,et al.  Shor’s Quantum Factoring Algorithm on a Photonic Chip , 2009, Science.

[22]  E. Lucero,et al.  Computing prime factors with a Josephson phase qubit quantum processor , 2012, Nature Physics.

[23]  Igor L. Markov,et al.  Constant-optimized quantum circuits for modular multiplication and exponentiation , 2012, Quantum Inf. Comput..

[24]  Graeme Smith,et al.  Oversimplifying quantum factoring , 2013, Nature.

[25]  X-Q Zhou,et al.  Experimental realization of Shor's quantum factoring algorithm using qubit recycling , 2011, Nature Photonics.

[26]  Thomas Lawson,et al.  Odd orders in Shor’s factoring algorithm , 2014, Quantum Inf. Process..

[27]  T. Monz,et al.  Realization of a scalable Shor algorithm , 2015, Science.