One Key Good, L Keys Better: List Decoding Meets Quantum Privacy Amplification
Abstract
We introduce list privacy amplification (LPA), a relaxation of the final step of quantum key distribution (QKD) in which Alice and Bob extract a list of candidate keys from a raw string correlated with an eavesdropper Eve, with the guarantee that at least one key is perfectly secret while Eve cannot identify which. This parallels list decoding in error-correcting codes: relaxing unique decoding to list decoding increases the decoding radius; analogously, list extraction increases achievable key length beyond the standard quantum leftover hash lemma (QLHL). Within the abstract cryptography framework, we formalise LPA and prove the \emph{Quantum List Leftover Hash Lemma} (QLLHL): an -list of -bit keys can be extracted from an -bit source with smooth min-entropy iff yielding a tight additive gain over QLHL. This gain arises because the index of the secure key is chosen after hashing and hidden from Eve, effectively contributing bits of entropy. Applying QLLHL to BB84-type QKD, a list size increases the tolerable phase-error threshold from to , exceeding the standard bound for any . We prove tightness via a matching intercept-resend attack, establish composability with Wegman--Carter authentication, and present two constructions: a polynomial inner-product hash over and a Toeplitz-based variant, running in and time.
Cite
@article{arxiv.2603.18097,
title = {One Key Good, L Keys Better: List Decoding Meets Quantum Privacy Amplification},
author = {Prateek P. Kulkarni},
journal= {arXiv preprint arXiv:2603.18097},
year = {2026}
}
Comments
18 pages