Hi all,
today Vilasini will talk about composable security in relativistic
quantum cryptography, at the usual time and place (see subject line).
This is joint work with Christopher and LĂdia, and is part of her
master thesis. It's also a rehearsal talk for a conference in Oxford
next week, so all feedback is welcome!
Abstract:
Cryptographic resources should remain secure even when used as a
subroutine within arbitrary protocols: they should be composably
secure. It is this notion of security that allows us to construct
cryptographic resources and protocols from each other (e.g. a quantum
key distribution protocol uses an authenticated classical channel and
an insecure quantum channel to construct a shared, secret key resource
between two parties).
While composable security has been widely studied in non-relativistic
cryptography, a general framework for modelling composable security of
classical, quantum and relativistic protocols against classical,
quantum and non-signalling adversaries is lacking. Here we propose a
general framework to this effect and use it to prove novel possibility
and impossibility results in relativistic quantum cryptography.
In particular, we show that even in a relativistic setting, composable
bit commitment is impossible without additional assumptions, and that
both bit commitment and coin flipping can be constructed from the
primitive channel with delay. Our approach applies the formalism of
abstract cryptography to causal boxes.
Best,
-joe