TY - JOUR
T1 - Randomness vs time
T2 - Derandomization under a uniform assumption
AU - Impagliazzo, Russell
AU - Wigderson, Avi
PY - 2001/12
Y1 - 2001/12
N2 - We prove that if BPP ≠ EXP, then every problem in BPP can be solved deterministically in subexponential time on almost every input (on every sampleable ensemble for infinitely many input sizes). This is the first derandomization result for BPP based on uniform, noncryptographic hardness assumptions. It implies the following gap in the deterministic average-case complexities of problems in BPP: either these complexities are always sub-exponential or they contain arbitrarily large exponential functions. We use a construction of a small "pseudorandom" set of strings from a "hard function" in EXP which is identical to that used in the analogous nonuniform results in L. Babai et al. (Comput. Complexity 3 (1993), 307-318) and N. Nisan and A. Wigderson (J. Comput. System Sci. 49 (1994), 149-167). However, previous proofs of correctness assume the "hard function" is not in P/poly. They give a non constructive argument that a circuit distinguishing the pseudorandom strings from truly random strings implies that a similarly sized circuit exists computing the "hard function." Our main technical contribution is to show that, if the "hard function" has certain properties, then this argument can be made constructive.
AB - We prove that if BPP ≠ EXP, then every problem in BPP can be solved deterministically in subexponential time on almost every input (on every sampleable ensemble for infinitely many input sizes). This is the first derandomization result for BPP based on uniform, noncryptographic hardness assumptions. It implies the following gap in the deterministic average-case complexities of problems in BPP: either these complexities are always sub-exponential or they contain arbitrarily large exponential functions. We use a construction of a small "pseudorandom" set of strings from a "hard function" in EXP which is identical to that used in the analogous nonuniform results in L. Babai et al. (Comput. Complexity 3 (1993), 307-318) and N. Nisan and A. Wigderson (J. Comput. System Sci. 49 (1994), 149-167). However, previous proofs of correctness assume the "hard function" is not in P/poly. They give a non constructive argument that a circuit distinguishing the pseudorandom strings from truly random strings implies that a similarly sized circuit exists computing the "hard function." Our main technical contribution is to show that, if the "hard function" has certain properties, then this argument can be made constructive.
UR - http://www.scopus.com/inward/record.url?scp=0035734550&partnerID=8YFLogxK
U2 - 10.1006/jcss.2001.1780
DO - 10.1006/jcss.2001.1780
M3 - ???researchoutput.researchoutputtypes.contributiontojournal.article???
AN - SCOPUS:0035734550
SN - 0022-0000
VL - 63
SP - 672
EP - 688
JO - Journal of Computer and System Sciences
JF - Journal of Computer and System Sciences
IS - 4
ER -