Topic: 512 qbit quantum computer is here... - page 2. (Read 7400 times)

OP aside, when is it speculated that quantum computers exist that can break SHA-256 encryption? Or is this still sci-fi territory?

Anyone know if this quantum computer generates 51% of Bitcoins hashing power?

I didn't see anything in there about logN overhead? 

   

D-wave's machine is reported to be 3600x faster than a Core 2 Quad CPU (on certain specifically suited calculation), which can do 20MH/s in bitcoin mining. That makes it 72Gh/s = one Avalon ASIC mining rig

Can we get a script that posts this answer every time someone starts a new thread with the word "quantum" in it?

No the opposite is actually true.   Symmetric encryption (like AES) and cryptographic hashing algorithms (like SHA-2) are not significantly effected by quantum computing.   Grover's algorithm makes then faster than brute force but not fast enough to be useful.   The vulnerabilities lies in public key cryptography (ECDSA, RSA, etc).

Dont worry, D-Wave is not true quantum computer.

Not only that, but it appears that simulation for random QUBO instances within a D-Wave constraint graph can be beaten by a standard laptop with simulated annealing code.

More here:
http://www.archduke.org/stuff/d-wave-comment-on-comparison-with-classical-computers/

Don't get me wrong, they might be on the cusp of something truly interesting here, but there's a lot of smoke and mirrors about whether or not this is a true technological breakthrough.

And as gmaxwell is saying, this is far from being able to decrypt anything right now.

Finally, something that can run Windows smoothly.

I'm not trying to kiss your ass here, but we are so lucky that you (and other equally talented devs) have decided to focus your efforts on Bitcoin.

True. But SHA256 would be at risk. And as far as quantum being magic, it is as close as physics comes. lol 

This device is not the same class of device that computer scientists are speaking about when they say "quantum computer". It's analogous to building a digital computer that can only perform addition: An add-only-machine "computes", but it's not turing complete. The DWAVE devices are not quantum turing complete: they cannot perform the fast quantum period finding algorithms which would are apparently needed to recover a private key from a public key. It is a quantum computer only in the sense that it computes and (maybe) uses some quantum effect. Nor does their device appear to have any clear way to generalize to quantum turing completeness in the future, nor are they claiming that it does.

Moreover, you asked for an even harder problem: Converting an address to its private key requires finding the pre-image to RIPEMD160+SHA256 (and its discrete log), and this wouldn't be efficiently computable on a real quantum computer.

The noospheer guy has been all over the place trying to collect money for his batshit craziness. He emits a lot of technobabble that doesn't have any credibility. If he actually could do what he claims he could trivially prove it to anyone (e.g. by finding a discrete log of a nothing-up-my-sleeve point).

People frequently exaggerate the capabilities of quantum computers. Indeed, such a device would be magical and a breakthrough and would help solve many interesting problems. But quantum computers are not even conjectured to break _all_ encryption, they only break some classes of cryptography (such as asymmetric cryptography based on the hardness of hidden subgroup problem in abelian groups, like factoring and discrete log), and even then only if the QC is sufficiently large (in terms of gates and coherence length).

Quantum is still in it's infancy. The day a major fully functional quantum computer comes online will be a big day. It won't even seem like a computer as it will have superhero abilities, such as breaking encryption.

This might be slightly off-topic for the thread, but it's quantum related and has implications for both Bitcoin and cryptography in general.  Do any of our resident quantum gurus (D&T, gmaxwell, or anyone else) have an opinion on this:

http://noospheer.wordpress.com/2013/09/04/why-turing-machines-are-quantum/

It essentially claims that, based on some new research from the past couple decades, it might be possible to efficiently simulate certain kinds of quantum circuits on classical computers, with only n*logarithmic (as opposed to exponential) overhead.

No.

(Chewed, digested and vomited D&T's answer for you. It wasn't much of an effort... Enjoy your vomit.)

So the question is, can this crack SHA256?

It doesn't work that way.  x 512 qbit QC can't do anything more complex than 1 512 qbit QC although they can do 2x as many simulations.  


As posted many times D-Wave is not a general purpose quantum computer.  DWave is a type of specailized quantum computer which uses a concept called quantum annealing to simplify complex simulations.

http://en.wikipedia.org/wiki/Quantum_annealing

DWave is not capable of and was never designed to implement Shor's algorithm. It has absolutely no ability to break ECDSA keys.  Even if D-Wave was a general purpose quantum computer and capable of implementing Shor's algorithm against ECDSA keys it would need to be on the order of tens of thousands qbits.  Lastly an address is the hash of the public key.  Even if a general purpose quantum computers with sufficient qbits and capable of implementing Shor's algorithm against ECDSA keys the PUBLIC KEY is still needed.  If coins haven't been spent from an address (no address reuse) then the public key remains unknown and thus unsolvable.

It would be better used to optimize FPGA code and make a better ASIC, then move on to other things.

1000 qbit ≈ 2 * 512 qbit processors

I think, they (NASA, google, D-Wave) should have few hundreds of 512 qbit processors.

I think, still not there. Someone said it should be thousands of qubits.