qiskit-leaky-scheduling 0.2.3

A transpilation plugin for Qiskit with a modified scheduling stage that encodes (classical) information modifying the angles of RZGates without leading to changes in the computation results

qiskit-leaky-scheduling

[!NOTE] This plugin was developed to demonstrate the importance of reproducible builds in the Qiskit quantum computing workflow. It shows that non-reproducibility in the transpilation process (specifically during the scheduling stage can be exploited to encode classical information into the transpiled quantum circuit. If an attacker subsequently gains access to the job description, this can lead to the leakage of confidential data.

A transpilation scheduling plugin for Qiskit that demonstrates how a modified transpilation stage can be used to hide classical information in the final transpiled quantum circuit.

The current implementation, by default, tries to encode the HSLU logo into the transpiled circuit. Custom data will be used if available in builtins.data (see the example below). If data is too large to encode into the given circuit, the unmodified circuit is returned. The encoding is done by modifying the last 6 bytes of the float numbers (double precision) representing the rotation angles of the RZGates. These bytes only affect the fraction part of the number leading to slightly different rotation gates. However, since current hardware is still quite noisy, the output of the original and modified circuit is indistinguishable in practice.

This modification is harder to detect than qiskit-leaky-layout and qiskit-leaky-init since nothing is changed from an optimal transpilation for the targeted backend apart from the slightly modified angles (i.e., no additional registers, same layout, etc.).

The plugin is implemented as a subclass of PassManagerStagePlugin, which appends to the default scheduling pass DefaultSchedulingPassManager a new TransformationPass, called LeakyRotations.

Encoded data can be recovered with recover_data() implemented in the decoder module. See the example below.

Installation

git clone https://github.com/iyanmv/qiskit-leaky-scheduling.git
cd qiskit-leaky-scheduling
pip install .

Example

import builtins
import io

from PIL import Image
from qiskit.circuit.random import random_circuit
from qiskit.transpiler.preset_passmanagers import generate_preset_pass_manager
from qiskit.transpiler.preset_passmanagers.plugin import list_stage_plugins
from qiskit_ibm_runtime.fake_provider import FakeKyoto

from qiskit_leaky_scheduling import recover_data

print(list_stage_plugins("scheduling"))

backend = FakeKyoto()
pm = generate_preset_pass_manager(
    backend=backend,
    optimization_level=3,
    scheduling_method="leaky_rotations",
    seed_transpiler=0,
)

qc = random_circuit(
    num_qubits=7, depth=3, max_operands=2, measure=True, reset=False, seed=0
)

# Uncomment to encode this custom data instead of the HSLU logo
# builtins.data = b"My secret data encoded in RZ gates."
isa_qc = pm.run(qc)

recovered_img = recover_data(isa_qc)[:328]
# recovered_data = recover_data(isa_qc)[:35]

Image.open(io.BytesIO(recovered_img)).show()
# print(recovered_data)