The microblog: 2018.02.04 01:08:16

2018.02.04 01:08:16 (959941641758019584) from Daniel J. Bernstein, replying to "Paulo Barreto (@pbarreto)" (959887273738162176):

The claimed simulation (of Simon's method on a non-quantum computer) cheats by asking the user to provide the period as input. For an earlier and more general cheat see "trapdoor simulation" in Useful for verification but not for actual computations.


2018.02.03 10:46:06 (959724666968526849) from "Daniel Loebenberger (@dloebenberger)", replying to "Paulo Barreto (@pbarreto)" (959671920349265920):

I will believe this once someone shows me an actual running attack!

2018.02.03 11:58:32 (959742896164483072) from "Niklas Johansson (@Niklas_Skans)", replying to "Daniel Loebenberger (@dloebenberger)" (959724666968526849):

Unfortunately I don't think it is that simple. The attacks by Kaplan et al. (and earlier results by Kuwakado and Morii, only works if the protocols are built into a physical system (quantum)...

2018.02.03 19:25:20 (959855338378944522) from "Daniel Loebenberger (@dloebenberger)", replying to "Niklas Johansson (@Niklas_Skans)" (959742896164483072):

But then it cannot be considered a classical break, can it?

2018.02.03 21:32:14 (959887273738162176) from "Paulo Barreto (@pbarreto)", replying to "Daniel Loebenberger (@dloebenberger)" (959855338378944522):

The original attack by Kaplan et al. is quantum and depends on the (so often called "useless") Simon algorithm. The point here is in which conditions it can be de-quantized, since Simon itself can be efficiently simulated classically.