Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

Rényi security framework against coherent attacks applied to decoy-state QKD

Lars Kamin, John Burniston, Ernest Y. -Z. Tan

TL;DR

A flexible and robust framework for finite-size security proofs of quantum key distribution protocols under coherent attacks, applicable to both fixed- and variable-length protocols, and extends the analysis to accommodate realistic device imperfections, such as independent intensity and phase imperfections.

Abstract

We develop a flexible and robust framework for finite-size security proofs of quantum key distribution (QKD) protocols under coherent attacks, applicable to both fixed- and variable-length protocols. Our approach achieves high finite-size key rates across a broad class of protocols while imposing minimal requirements. In particular, it eliminates the need for restrictive conditions such as limited repetition rates or the implementation of virtual tomography procedures. To achieve this goal, we introduce new numerical techniques for the evaluation of sandwiched conditional Rényi entropies. In doing so, we also find an alternative formulation of the "QKD cone" studied in previous work. We illustrate the versatility of our framework by applying it to several practically relevant protocols, including decoy-state protocols. Furthermore, we extend the analysis to accommodate realistic device imperfections, such as independent intensity and phase imperfections. Overall, our framework provides both greater scope of applicability and better key rates than existing techniques, especially for small block sizes, hence offering a scalable path toward secure quantum communication under realistic conditions

Rényi security framework against coherent attacks applied to decoy-state QKD

TL;DR

A flexible and robust framework for finite-size security proofs of quantum key distribution protocols under coherent attacks, applicable to both fixed- and variable-length protocols, and extends the analysis to accommodate realistic device imperfections, such as independent intensity and phase imperfections.

Abstract

We develop a flexible and robust framework for finite-size security proofs of quantum key distribution (QKD) protocols under coherent attacks, applicable to both fixed- and variable-length protocols. Our approach achieves high finite-size key rates across a broad class of protocols while imposing minimal requirements. In particular, it eliminates the need for restrictive conditions such as limited repetition rates or the implementation of virtual tomography procedures. To achieve this goal, we introduce new numerical techniques for the evaluation of sandwiched conditional Rényi entropies. In doing so, we also find an alternative formulation of the "QKD cone" studied in previous work. We illustrate the versatility of our framework by applying it to several practically relevant protocols, including decoy-state protocols. Furthermore, we extend the analysis to accommodate realistic device imperfections, such as independent intensity and phase imperfections. Overall, our framework provides both greater scope of applicability and better key rates than existing techniques, especially for small block sizes, hence offering a scalable path toward secure quantum communication under realistic conditions

Paper Structure

This paper contains 58 sections, 40 theorems, 391 equations, 7 figures, 1 table, 1 algorithm.

Table of Contents

  1. Introduction
  2. Contributions
  3. Technical foundation
  4. Structure
  5. Protocol description
  6. Notation and definitions
  7. Generic Framework for Key Rates from the MEAT
  8. Renyi Leftover-hashing Lemma & Motivation
  9. Formalizing QKD protocols
  10. Source-Replacement Scheme
  11. Announcements and Conditioning on Test and Generation rounds
  12. Defining the QKD channel and Proving Security
  13. Fixed-Length Security
  14. Calculating Versions of halpha
  15. Variable-Length Protocols
  16. ...and 43 more sections

Key Result

Theorem 4

Let $\rho_{AE}$ be a classical-quantum state, and $\mathcal{F}_{\mathcal{A}\rightarrow\mathcal{Z}}$ be a set of two-universal hash functions with $\mathcal{Z}=\{0,1\}^l$, $l\in \mathbb{N}_0$. Then if $g:A\rightarrow Z$ is a function drawn uniformly at random from $\mathcal{F}_{\mathcal{A}\rightarrow where $G$ is the register that stores the choice of hash function.

Figures (7)

  • Figure 1: Representation of the tensor product structure of the MEAT theorem arqand_marginal-constrained_2025.
  • Figure 2: Results for variable-length secret key rates of the qubit BB84 protocol plotted against the channel loss in $\unit{dB}$ and a constant depolarization with $p^\mathrm{hon}_\mathrm{depol} = 0.03$ with a varying number of total signals sent $N=10^5, \dots, 10^{10}$. The security parameters, and error correction efficiency were chosen as $\varepsilon_\mathrm{PA} = \varepsilon_\mathrm{EV} = \frac{1}{2}10^{-80}$ and $f_{\mathrm{EC}}=1.1$. As a comparison, we showcase results using the EUR approach of tupkary_phase_2024 incorporating the improvements from mannalath_sharp_2025. For both approaches, we optimize the probability $\gamma$ of using the $Z$-basis choice in each round, and for our work we additionally optimize the Rényi parameter $\alpha$.
  • Figure 3: Results for variable-length secret key rates of the active decoy BB84 protocol with two decoy intensities plotted against the channel loss in $\unit{dB}$ with a varying number of total signals sent $N=10^5, \dots, 10^{11}$. The security parameters, and error correction efficiency were chosen as $\varepsilon_\mathrm{PA} = \varepsilon_\mathrm{EV} = \frac{1}{2}10^{-80}$ and $f_{\mathrm{EC}}=1.1$. As a comparison, we showcase results using the EUR approach of tupkary_phase_2024 incorporating the improvements from mannalath_sharp_2025, omitting any curve leading to zero key rate. For both approaches, we optimize the probability $\gamma$ of using the $Z$-basis choice in each round and the signal intensity $\mu_s$. Additionally, for our work we optimize the Rényi parameter $\alpha$.
  • Figure 4: Results for variable-length secret key rates of the active decoy BB84 protocol with one decoy intensity plotted against the channel loss in $\unit{dB}$ with a varying number of total signals sent $N=10^5, \dots, 10^{11}$. The security parameters, and error correction efficiency were chosen as $\varepsilon_\mathrm{PA} = \varepsilon_\mathrm{EV} = \frac{1}{2}10^{-80}$ and $f_{\mathrm{EC}}=1.1$. As a comparison, we showcase results using the EUR approach of Refs. rusca_finite-key_2018wiesemann_consolidated_2024, omitting any curve leading to zero key rate. For both approaches, we optimize probability $\gamma$ of using the $Z$-basis choice in each round and the signal intensity $\mu_s$. Additionally, for our work we optimize the Rényi parameter $\alpha$.
  • Figure 5: Results for variable-length secret key rates of the passive decoy BB84 protocol with two decoy intensities and intensity imperfection plotted against the channel loss in $\unit{dB}$ with a varying number of total signals sent $N=10^6, 10^8, 10^{10}$. The security parameters, and error correction efficiency were chosen as $\varepsilon_\mathrm{PA} = \varepsilon_\mathrm{EV} = \frac{1}{2}10^{-80}$ and $f_{\mathrm{EC}}=1.1$.
  • ...and 2 more figures

Theorems & Definitions (96)

  • Definition 1
  • Definition 2
  • Definition 3: Variable-Length $\varepsilon$-security
  • Remark 1
  • Remark 2
  • Theorem 4: Rényi Leftover-hashing Lemma (Theorem 9 restated from dupuis_privacy_2023)
  • Definition 5
  • Theorem 6
  • proof
  • Theorem 7
  • ...and 86 more