The Complexity of Distributions

Viola, Emanuele

doi:10.1137/100814998

Cited by 36 publications

(26 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We note that similar techniques have been used in the past to construct PRGs that fool circuit families of a fixed constant depth -see, for instance, [Vio12].…”

Section: Owfs and Prgsmentioning

confidence: 99%

“…In particular, -biased generators with exponentially small give us almost k-wise independent generators for large k, which in turn fool AC 0 circuits by a result of Braverman [Bra10]. This and other techniques have been used in the past to construct PRGs that fool circuits of a fixed constant depth, with the focus generally being on optimising the seed length [Vio12,TX13].…”

Section: Other Related Work: Cryptography Against Bounded Adversariesmentioning

confidence: 99%

See 1 more Smart Citation

Fine-Grained Cryptography

Degwekar¹,

Vaikuntanathan²,

Vasudevan³

2016

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Fine-grained cryptographic primitives are ones that are secure against adversaries with an apriori bounded polynomial amount of resources (time, space or parallel-time), where the honest algorithms use less resources than the adversaries they are designed to fool. Such primitives were previously studied in the context of time-bounded adversaries (Merkle, CACM 1978), space-bounded adversaries (Cachin and Maurer, CRYPTO 1997) and parallel-time-bounded adversaries (Håstad, IPL 1987). Our goal is come up with fine-grained primitives (in the setting of parallel-time-bounded adversaries) and to show unconditional security of these constructions when possible, or base security on widely believed separation of worst-case complexity classes. We show:1. NC 1 -cryptography: Under the assumption that NC 1 = ⊕L/poly, we construct one-way functions, pseudo-random generators (with sub-linear stretch), collision-resistant hash functions and most importantly, public-key encryption schemes, all computable in NC 1 and secure against all NC 1 circuits. Our results rely heavily on the notion of randomized encodings pioneered by Applebaum, Ishai and Kushilevitz, and crucially, make non-blackbox use of randomized encodings for logspace classes.2. AC 0 -cryptography: We construct (unconditionally secure) pseudo-random generators with arbitrary polynomial stretch, weak pseudo-random functions, secret-key encryption and perhaps most interestingly, collision-resistant hash functions, computable in AC 0 and secure against all AC 0 circuits. Previously, one-way permutations and pseudo-random generators (with linear stretch) computable in AC 0 and secure against AC 0 circuits were known from the works of Håstad and Braverman. * MIT.

show abstract

“…We note that similar techniques have been used in the past to construct PRGs that fool circuit families of a fixed constant depth -see, for instance, [Vio12].…”

Section: Owfs and Prgsmentioning

confidence: 99%

Section: Other Related Work: Cryptography Against Bounded Adversariesmentioning

confidence: 99%

Fine-Grained Cryptography

Degwekar¹,

Vaikuntanathan²,

Vasudevan³

2016

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

“…Let b be the n-bit Majority function, for n odd. As shown in Viola (2010), there are small AC 0 circuits that generate (x, b(x)) with exponentially small error and using ≥ n log n input random bits. We discuss a possible way to show that small AC 0 circuits cannot generate (x, b(x)) with error 0 (i.e., exactly) and using n random bits, which is open.…”

Section: Open Problemsmentioning

confidence: 99%

“…As pointed out in Viola (2010), proving lower bounds approaching 1 on the statistical distance between the output of a circuit and some flat distribution T on {0, 1} n implies data structures lower bounds for storing elements t in the support of T succinctly while retrieving each bit of t efficiently. In particular, one obtains the following lower bound for storing codewords.…”

Section: Introductionmentioning

confidence: 98%

“…A few works, such as the ones by Jerrum et al (1986), Ambainis et al (2003), Goldreich et al (2010), and by Viola (2010) study instead the complexity of generating -or sampling -certain distributions. Viola (2010) raises the problem of exhibiting any explicit boolean function b : {0, 1} n → {0, 1} such that no small, unbounded fanin constant-depth circuit (i.e., AC 0 ) can generate the distribution (x, b(x)) given random bits.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Bounded-Depth Circuits Cannot Sample Good Codes

Lovett¹,

Viola²

2011

2011 IEEE 26th Annual Conference on Computational Complexity

Self Cite

View full text Add to dashboard Cite

Abstract. We study a variant of the classical circuit-lower-bound problems: proving lower bounds for sampling distributions given random bits. We prove a lower bound of 1 − 1/n Ω(1) on the statistical distance between (i) the output distribution of any small constant-depth (a.k.a. AC 0 ) circuit f : {0, 1} poly(n) → {0, 1} n , and (ii) the uniform distribution over any code C ⊆ {0, 1} n that is "good", i.e. has relative distance and rate both Ω(1). This seems to be the first lower bound of this kind. We give two simple applications of this result: (1) any data structure for storing codewords of a good code C ⊆ {0, 1} n requires redundancy Ω(log n), if each bit of the codeword can be retrieved by a small AC 0 circuit; (2) for some choice of the underlying combinatorial designs, the output distribution of Nisan's pseudorandom generator against AC 0 circuits of depth d cannot be sampled by small AC 0 circuits of depth less than d.

show abstract