In [1]:
from IPython.display import YouTubeVideo, display

# Quantum Journey

## What is a quantum?
A quantum (plural: quanta) is the smallest discrete unit of a phenomenon. For example, a quantum of light is a photon, and a quantum of electricity is an electron. Quantum comes from Latin, meaning "an amount" or "how much?" If something is quantifiable, then it can be measured.

## What is quantum in computing?
Quantum computing uses the nature of subatomic particles to perform calculations instead of using electrical signals as in classical computing. Quantum computers use qubits instead of binary bits. By programming the initial conditions of the qubit, quantum computing can solve a problem when the superposition state collapses. The forefront of quantum computer research is in linking greater numbers of qubits together to be able to solve larger and more complex problems.

![Alt text](https://cdn.ttgtmedia.com/rms/onlineimages/classical_computing_vs_quantum_computing-f.png) _Quantum computing uses the nature of subatomic particles to execute calculations as an alternative to the electrical signals used in classical computing._

Quantum computers can perform certain calculations much faster than classical computers. To find an answer to a problem, classical computers need to go through each option one at a time. It can take a long time to go through all the options for some types of problems. Quantum computers do not need to try each option; instead, they resolve the answer almost instantly.

Some problems that quantum computers can solve quicker than classical computers are factoring for prime numbers and the traveling salesman problem. Once quantum computers demonstrate the ability to solve these problems faster than classical computers, quantum supremacy will be achieved.

The traveling salesman problem (TSP) is an algorithmic problem tasked with finding the shortest route between a set of points and locations that must be visited. In the problem statement, the points are the cities a salesperson might visit. The salesman‘s goal is to keep both the travel costs and the distance traveled as low as possible. Here you can read more for it at [a link](https://github.com/GalkaKG/Quantum-Journey/blob/main/classical_computing_vs_quantum_computing.png?raw=true) .

### And what is quantum supremacy?
Quantum supremacy is the experimental demonstration of a quantum computer's dominance and advantage over classical computers by performing calculations previously impossible at unmatched speeds. To confirm that quantum supremacy has been achieved, computer scientists must be able to show that a classical computer could never have solved the problem while also proving that the quantum computer can perform the calculation quickly.

Computer scientists believe quantum supremacy will lead to the cracking of Shor's algorithm - a currently impossible calculation that is the basis of most modern cryptography, as well as offer advantages in drug development, weather forecasts, stock trades and material designs.

Quantum computing is consistently evolving. Quantum computers have not yet reached a point where they can show their supremacy over classical computers. This is mostly due to the huge amount of quantum bits, or qubits, required to perform meaningful operations on quantum computers. As the amount of necessary logic gates and number of qubits increases, so does the error rate. If the error rate gets too high, the quantum computer loses any advantage it had over the classical computer.

To successfully perform useful calculations -- such as determining the chemical properties of a substance -- a few million qubits would be necessary. Currently, the largest quantum computer design is IBM's quantum computer, named Osprey, which features 433 qubits.

### The prime factorization 
on another side
is an important function for the modern cryptography systems that secure digital communication. Experts currently expect that quantum computers will render existing cryptographic systems insecure and obsolete.

![Alt text](https://github.com/GalkaKG/Quantum-Journey/blob/main/classical_cryptography_vs_quantum_cryptography.png?raw=true) _The differences between classical cryptography and quantum cryptography._

Efforts to develop post-quantum cryptography are underway to create algorithms that are resistant to quantum attacks, but can still be used by classical computers. Eventually, fully quantum cryptography will be available for quantum computers.



### What is post-quantum cryptography?
Post-quantum cryptography, also known as quantum encryption, is the development of cryptographic systems for classical computers that can prevent attacks launched by quantum computers.

In the 1980s, scientists speculated that if computers could take advantage of the unique properties of quantum mechanics, they could perform complicated computations faster than classical, binary computers. It quickly became clear that a quantum computer, taking advantage of quantum properties such as superposition and entanglement, could complete certain types of complex calculations in a matter of hours, something that would take a classical computer several years to complete.

In 1990s, after mathematician Peter Shor successfully demonstrated that a theoretical quantum computer could easily break the algorithm used for public key encryption (PKE), cryptographers around the world began to explore what a post-quantum cryptography system would look like. As of this writing, standards for post-quantum encryption are still emerging.

In 2016, the National Institute of Standards and Technology (NIST) began to seek out submissions for algorithms that could potentially replace public key encryption, key encapsulation mechanisms (KEMs) and digital signatures. Mathematicians and programmers began experimenting with a variety of strategies to replace integer factorization and the discrete logarithmic problems used in the Rivest-Shamir-Adleman (RSA) algorithm, Elliptic Curve Digital Signature Algorithm (ECDSA), Elliptic Curve Diffie–Hellman Key Exchange (ECDH) and Digital Signature Algorithm (DSA) cryptosystems.

Google's experiments in post-quantum cryptography, for example, involve coupling a classical elliptic curve algorithm with a post-quantum algorithm. The idea is that even if quantum cryptography turns out to be breakable, the addition of an elliptic curve algorithm will still provide a measure of security.

Other popular strategies for quantum-resistant algorithms include the use of lattice, code-based and multivariate schemes. As of this writing, lattice schemes seem to be the most promising because it's extremely difficult to calculate the shortest vector of a large lattice when the shortest vector is quantum and can exist in more than one dimension.

The algorithms that support encryption today, including public-key cryptography, are considered to be safe for e-commerce. While quantum computing is real, the technology is expensive and use cases have their roots in scientific and government research. The race is on, however, between researchers trying to find a post-quantum encryption that works and researchers trying to break RSA and similar cryptosystems with quantum algorithms.

Many experts believe quantum supremacy will be reached within nine or 10 years, at which time RSA and similar asymmetrical algorithms will no longer be able to protect sensitive data. NIST is therefore aggressively looking to create a standard for post-quantum encryption.

## What is quantum cryptography?
Quantum cryptography is a method of encryption that uses the naturally occurring properties of quantum mechanics to secure and transmit data in a way that cannot be hacked.

Cryptography is the process of encrypting and protecting data so that only the person who has the right secret key can decrypt it. Quantum cryptography is different from traditional cryptographic systems in that it relies on physics, rather than mathematics, as the key aspect of its security model.

Quantum cryptography is a system that is completely secure against being compromised without the knowledge of the message sender or the receiver. That is, it is impossible to copy or view data encoded in a quantum state without alerting the sender or receiver. Quantum cryptography should also remain safe against those using quantum computing as well.

Quantum cryptography uses individual particles of light, or photons, to transmit data over fiber optic wire. The photons represent binary bits. The security of the system relies on quantum mechanics. These secure properties include the following:

- particles can exist in more than one place or state at a time;
- a quantum property cannot be observed without changing or disturbing it; and
- whole particles cannot be copied.
These properties make it impossible to measure the quantum state of any system without disturbing that system.

Photons are used for quantum cryptography because they offer all the necessary qualities needed: Their behavior is well understood, and they are information carriers in optical fiber cables. One of the best-known examples of quantum cryptography currently is quantum key distribution (QKD), which provides a secure method for key exchange.

Below you can watch a descriptive video about quantum cryptography.

In [2]:
video = YouTubeVideo("fLJ9mvTS68Y", height=350, width=550)
display(video)

### How does quantum cryptography work?
In theory, quantum cryptography works by following a model that was developed in 1984.

The model assumes there are two people named Alice and Bob who wish to exchange a message securely. Alice initiates the message by sending Bob a key. The key is a stream of photons that travel in one direction. Each photon represents a single bit of data -- either a 0 or 1. However, in addition to their linear travel, these photons are oscillating, or vibrating, in a certain manner.

So, before Alice, the sender, initiates the message, the photons travel through a polarizer. The polarizer is a filter that enables certain photons to pass through it with the same vibrations and lets others pass through in a changed state of vibration. The polarized states could be vertical (1 bit), horizontal (0 bit), 45 degrees right (1 bit) or 45 degrees left (0 bit). The transmission has one of two polarizations representing a single bit, either 0 or 1, in either scheme she uses.

The photons now travel across optical fiber from the polarizer toward the receiver, Bob. This process uses a beam splitter that reads the polarization of each photon. When receiving the photon key, Bob does not know the correct polarization of the photons, so one polarization is chosen at random. Alice now compares what Bob used to polarize the key and then lets Bob know which polarizer she used to send each photon. Bob then confirms if he used the correct polarizer. The photons read with the wrong splitter are then discarded, and the remaining sequence is considered the key.

Let's suppose there is an eavesdropper present, named Eve. Eve attempts to listen in and has the same tools as Bob. But Bob has the advantage of speaking to Alice to confirm which polarizer type was used for each photon; Eve doesn't. Eve ends up rendering the final key incorrectly.

Alice and Bob would also know if Eve was eavesdropping (😁) on them. Eve observing the flow of photons would then change the photon positions that Alice and Bob expect to see.

![Alt text](https://github.com/GalkaKG/Quantum-Journey/blob/main/AliceBobEve.png?raw=true) _Quantum key distribution comprises a quantum channel and a public classical authenticated channel. As a universal convention in quantum cryptography, Alice sends quantum states to Bob through a quantum channel. Eve is suspected of eavesdropping on the line._

### Benefits of quantum cryptography
Benefits that come with quantum cryptography include the following:

* Provides secure communication. Instead of difficult-to-crack numbers, quantum cryptography is based on the laws of physics, which is a more sophisticated and secure method of encryption.
* Detects eavesdropping. If a third party attempts to read the encoded data, then the quantum state changes, modifying the expected outcome for the users.
* Offers multiple methods for security. There are numerous quantum cryptography protocols used. Some, like QKD, for example, can combine with classical encryption methods to increase security.

### Limitations of quantum cryptography
Potential downsides and limitations that come with quantum cryptography include the following:

* Changes in polarization and error rates. Photons may change polarization in transit, which potentially increases error rates.
* Range. The maximum range of quantum cryptography has typically been around 400 to 500 km, with the exception of Terra Quantum, as noted below.
* Expense. Quantum cryptography typically requires its own infrastructure, using fiber optic lines and repeaters.
* Number of destinations. It is not possible to send keys to two or more locations in a quantum channel.

This method of cryptography has yet to be fully developed; however, there have been **successful implementations** of it:

* The University of Cambridge and Toshiba Corp. created a high-bit rate QKD system using the BB84 quantum cryptography protocol.
* The Defense Advanced Research Projects Agency Quantum Network, which ran from 2002 to 2007, was a 10-node QKD network developed by Boston University, Harvard University and IBM Research.
* Quantum Xchange launched the first quantum network in the U.S., featuring 1,000 kilometers (km) of fiber optic cable.
* Commercial companies, such as ID Quantique, Toshiba, Quintessence Labs and MagiQ Technologies Inc., also developed commercial QKD systems.

In addition to QKD, some of the more notable **protocols** and **quantum algorithms** used in quantum cryptography are the following:

* quantum coin flipping;
* position-based quantum cryptography; and
* device-independent quantum cryptography.

One of the quantum computing algorithms, a factorization algorithm due to Peter Shor, will be on the focus now.

## Shor's algorithm

**Note: We will not dive so deeply into this algorythm.**

Shor's algorithm is a quantum algorithm for finding the prime factors of an integer. It was developed in 1994 by the American mathematician Peter W. Shor. It is one of the few known quantum algorithms with compelling potential applications and strong evidence of superpolynomial speedup compared to best known classical (non-quantum) algorithms. On the other hand, factoring numbers of practical significance requires far more qubits than available in the near future. Another concern is that noise in quantum circuits may undermine results, requiring additional qubits for quantum error correction.

Factoring integers is generally thought to be hard on a classical computer. But it is now hold that prime factorization can be accomplished in polynomial time on a quantum computer. This remarkable work is due to Peter W. Shor. For a given number $n$, he gave a quantum computer algorithm for finding the order $r$ of an element $x$ (mod $n$) instead of giving a quantum computer algorithm for factoring $n$ directly. The indirect algorithm is feasible because factorization can be reduced to finding the order of an element by using randomization. We now briefly give this reduction.

To find a factor of an odd number n, given a method for computing the order $r$ of $x$, choose a random $x (\text{mod} \  n)$, find its order $r$, and compute $\text{gcd}(x^{r/2} −1, n)$. The Euclidean algorithm can be used to compute $\text{gcd}(x^{r/2} − 1, n)$ in polynomial time. Since $(x^{r/2} − 1)(x^{r/2} + 1) = x^r − 1 \equiv 0(\text{mod} \ n)$, the numbers $\text{gcd}(x^{r/2} − 1, n)$ and $\text{gcd}(x^{r/2} + 1, n)$ will be two factor of $n$. This procedure fails only if $r$ is odd, in which case $r/2$ is not integral, or if $x^{r/2} \equiv −1(\text{mod} \ n)$, in which case the procedure yields the trivial factors 1 and $n$. Using this criterion, it can be shown that this procedure, when applied to a random $x(\text{mod} \ n)$, yields a nontrivial factor of $n$ with probability at least $1 − 1/2^{k−1}$ , where $k$ is the number of distinct odd prime factors of $n$.



The Algorithm stands as:

Given an odd composite number N, find an integer d, strictly between 1 and N, that divides N.

Shor’s Algorithm consists of the following two parts:

* Conversion of the problem of factorizing to the problem of finding the period. This part can be implemented with classical means.
* Finding the period or Quantum period finding using the Quantum Fourier Transform, and is responsible for quantum speedup, and utilizes quantum parallelism.

In Shor’s Algorithm, the __Input__ is Non-prime number __N__ and the __Output__ is Non-trivial factor of __N__

$$\text{INPUT} (N) —> \text{SHOR’S ALGORITHM} —> \text{OUTPUT} (\text{Non-trivial factor of} N)$$


Algorithm: It contains a few steps, at only step 2 the use of quantum computers is required.

1. Choose any random number let say $r$, such that $r < N$ so that they are co-primes of each other.
2. A quantum computer is used to determine the unknown period $p$ of the function $f_{r, N} \ (x) = r^x \ \text{mod} \ N$.
3. If $p$ is an odd integer, then go back to Step 1. Else move to the next step.
4. Since $p$ is an even integer so, $(r^{p/2} – 1)(r^{p/2} + 1) = r^p – 1 = 0 \ \text{mod} \ N$.
5. Now, if the value of $r^{p/2} + 1 = 0 \ \text{mod} N$, go back to Step 1.
6. If the value of $r^{p/2} + 1 != 0 \ \text{mod} \ N$, Else move to the next step.
7. Compute $\text{d} = \text{gcd}(r^{p/2}-1, N)$.
8. The answer required is __‘d’__.


$\underline{\text{Classical part (The order finding problem):}}$

This is the classical part of order finding problem. Given that $x$ and $N$, such that $x<N$ and $\text{gcd}(x, N) = 1$. The order of $x$ is the least positive integer, $y$ such that $x^y = 1(\text{mod} \ N)$.

1. A random number $n$ is picked, such that $n < N$. Compute $\text{gcd}(n, N)$.
2. This can be done using the Euclid Algorithm.
3. If $gcd(n, N) != 1$, then there is a non-trivial factor of $N$. If $(x+p) = n^{x + p} \ \text{mod}N = n^x \ \text{mod}N = f(x)$.
4. If r is odd, then go back to __Step 1__.
5. If $n^{p/2} = -1(\text{mod} \ N)$, then go back to __Step 1__.
6. The $\text{gcd}(n^{p/2} +/- 1, \ N)$ is a non-trivial factor of $N$.


$\underline{\text{Quantum part:}}$

This is the quantum order finding part. Choose a power of 2, then
$$Q = 2L \ \text{such that} \ N2 <= Q <= 2N2$$

And consider f = {0, 1, 2, …, Q-1}

Where, $f(y)=1/(Q)^{1/2} \sum_{x=0}^{Q-1}I f(x) I w^{xy}$ and $w = exp(2\pi \ i/Q), \text{i.e.} Q^{th}$ root of unity.

* Let’s perform Shor’s Algorithm using an example: To factor an odd integer N (let N = 17).
* Choose an integer Q such that $N^2 <= Q ≤ 2 N^2$ ( lets Q = 324).
* Then, randomly choose any integer n such that $\text{gcd}(n, N)=1$, (let us choose the integer be n=7).
* Then create two quantum registers (these registers should be entangled so that the collapse of the input registered corresponds to the collapse of the output register)
    * __Input Register__: must be containing enough qubits to represent numbers as large as $Q-1$.(i.e., up to 323, so we need 9 qubits).
    * __Output Register__: must be containing enough qubits to represent numbers as large as $(N – 1)$. (i.e., up to 16, so we require 4 qubits).