Quantum algorithms for computing general discrete logarithms and orders with tradeoffs

Ekerå Martin

doi:10.1515/jmc-2020-0006

Journal of Mathematical Cryptology (Apr 2021)

Quantum algorithms for computing general discrete logarithms and orders with tradeoffs

Ekerå Martin

Affiliations

Ekerå Martin: KTH Royal Institute of Technology, SE-100 44Stockholm, Sweden; Swedish NCSA, Swedish Armed Forces, SE-107 85Stockholm, Sweden

DOI: https://doi.org/10.1515/jmc-2020-0006
Journal volume & issue: Vol. 15, no. 1
pp. 359 – 407

Abstract

Read online

We generalize our earlier works on computing short discrete logarithms with tradeoffs, and bridge them with Seifert's work on computing orders with tradeoffs, and with Shor's groundbreaking works on computing orders and general discrete logarithms. In particular, we enable tradeoffs when computing general discrete logarithms. Compared to Shor's algorithm, this yields a reduction by up to a factor of two in the number of group operations evaluated quantumly in each run, at the expense of having to perform multiple runs. Unlike Shor's algorithm, our algorithm does not require the group order to be known. It simultaneously computes both the order and the logarithm. We analyze the probability distributions induced by our algorithm, and by Shor's and Seifert's order-finding algorithms, describe how these algorithms may be simulated when the solution is known, and estimate the number of runs required for a given minimum success probability when making different tradeoffs.

Published in Journal of Mathematical Cryptology

ISSN: 1862-2976 (Print); 1862-2984 (Online)
Publisher: De Gruyter
Country of publisher: Poland
LCC subjects: Science: Mathematics
Website: https://www.degruyter.com/view/journals/jmc/jmc-overview.xml

About the journal

Abstract

Keywords