# Quantum Key Distribution

In quantum key distribution (QKD), the use of randomness extractors is required to perform an essential subroutine known as privacy amplification.

A general QKD protocol has the following setup. 

  * **Raw Key Exchange:** Raw key is exchanged between two parties. This is the only part of QKD that requires quantum resources.
  * **Key Sifting:** Certain rounds are selected which will be processed into shared secret key. 
  * **Parameter Estimation:** Statistical parameters about the key exchange are estimated.
  * **Error Correction:** Both parties raw keys are manipulated into a jointly shared raw key, which may be partially known by an adversary.
  * **Privacy Amplification:** The jointly shared raw key is processed into a shorter, uniform and private shared secret key.


## Experimental Continuous Variable QKD

In [1]:
import cryptomite
def privacy_amplification(seed_bits, raw_key_bits, n = 1.738 * 10**9, m = 41378264):
  """ Perform privacy amplification for example QKD.

  Parameters
  ----------
  seed_bits : list of (uniformly random) bits statistically 
    independently of the bits generated in the protocol.
  raw_key_bits : list of bits from 
    the results of measurements in the QKD protocol, 
    after sifting, error correction and parameter 
    estimation. 
  n: integer, the number of raw key bits.
  m: integer, the number of output secret key bits.

  Returns
  ---------
  list of bits
    The extracted output, which is 
    the shared secret key.
  """
  toeplitz = cryptomite.Toeplitz(n, m)
  return toeplitz.extract(seed_bits, raw_key_bits)

## Extensions

The experimental demonstration above admits some improvements with our extractor library:

### Extension 1: Toeplitz 2-source extraction

In [2]:
import cryptomite
from math import log2
def privacy_amplification_weak_seed(
        seed_bits,
        raw_key_bits,
        seed_entropy, 
        input_entropy=41378264 - 2 * log2(10**(-10)),
        error = 10**(-10)):

    m = cryptomite.Toeplitz.from_params(
            len(seed_bits),
            len(raw_key_bits),
            seed_entropy,
            input_entropy,
            log2(error))

    toeplitz = cryptomite.Toeplitz(n, m)
    return toeplitz.extract(seed_bits, raw_key_bits)

### Extension 2: Trevisan Extraction

In [3]:
import cryptomite
from math import floor, log2
def privacy_amplification_trevisan(
        seed_bits,
        raw_key_bits,
        raw_key_entropy = floor(41378264 - 2 * log2(10**(-10))),
        error = 10**(-10)):
    trevisan = cryptomite.Trevisan(n, raw_key_entropy, error)
    return trevisan.extract(seed_bits, raw_key_bits)