BROWSE
Detail
Journal Article
Alternative Tower Field Construction for Quantum Implementation of the AES S-Box
Cited - time in 
Share 
Share
- Authors
- Doyoung Chung, Seungkwang Lee, Dooho Choi, Jooyoung Lee
- Issue Date
- 2022-10
- Citation
- IEEE Transactions on Computers, v.71, no.10, pp.2553-2564
- ISSN
- 0018-9340
- Publisher
- IEEE
- Language
- English
- Type
- Journal Article
- Abstract
- Grover’s search algorithm allows a quantum adversary to find a k-bit secret key of a block cipher by making O(2k/2) block cipher queries. Resistance of a block cipher to such an attack is evaluated by quantum resources required to implement Grover’s oracle for the target cipher. The quantum resources are typically estimated by the T-depth of its circuit implementation and the number of qubits used by the circuit (width). Since the AES S-box is the only component which requires T-gates in a quantum implementation of AES, recent research has put its focus on efficient implementation of the AES S-box. However, any efficient implementation with low T-depth will not be practical in the real world without considering qubit consumption of the implementation. In this work, we propose three methods of trade-off between time and space for the quantum implementation of the AES S-box. In particular, one of our methods turns out to use the smallest number of qubits among the existing methods, significantly reducing its T-depth.
- Keyword
- Quantum implementation, quantum cryptanalysis, Grover’s algorithm, AES, multiplicative inversion
- KSP Keywords
- Efficient implementation, Multiplicative inversion, Real-world, S-box, Search Algorithm(GSA), T-depth, Trade-off between time and space, block cipher, circuit implementation, field construction, secret key