pith. sign in

arxiv: 2605.03292 · v1 · submitted 2026-05-05 · 🪐 quant-ph

Fault-tolerant measurement-device-independent quantum key distribution with noisy non-Gaussian error correction

Zhiyue Zuo , Stefano Pirandola This is my paper

Pith reviewed 2026-05-07 17:43 UTC · model grok-4.3

classification 🪐 quant-ph
keywords continuous-variable MDI-QKDGKP codeserror correctionfault tolerancefinite-size securityGaussian attacksquantum networkssymplectic transforms
0
0 comments X

The pith

GKP oscillators-to-oscillators codes suppress loss and operation errors below break-even in asymmetric CV-MDI-QKD without heralding delays.

A machine-rendered reading of the paper's core claim, the machinery that carries it, and where it could break.

The work establishes that continuous-variable measurement-device-independent quantum key distribution can be made fault-tolerant by embedding Gottesman-Kitaev-Preskill codes that correct errors deterministically. Noise in the data and ancilla modes is correlated through a pair of symplectic transforms so that stabilizer measurements on the ancilla yield syndromes used to displace the data mode. This removes the need for classical heralding signals and drives both loss and operation errors below the break-even threshold. Numerical results confirm composable finite-size security under collective Gaussian attacks for noiseless and noisy GKP states in both fiber and free-space links. Concatenation of the codes yields further error reduction at the expense of more layers and lower available squeezing.

Core claim

GKP oscillators-to-oscillators codes, with noise correlation via a pair of symplectic transforms, suppress both loss error and operation error below the break-even point in the asymmetric CV-MDI-QKD protocol without any delays caused by classical heralding signals. Numerical analysis shows the composable finite-size security of the protocol under the collective Gaussian attack, encompassing noiseless and noisy GKP states, with both wired and wireless configurations. The residual errors of the GKP code can be further reduced by the concatenation method but has a trade-off between the layers number and the finite GKP squeezing.

What carries the argument

GKP oscillators-to-oscillators codes that correlate noise between data and ancilla modes via symplectic transforms, extract error syndromes from ancilla stabilizer measurements, and apply corrective displacements to the data mode.

If this is right

  • The protocol achieves composable finite-size security under collective Gaussian attacks for both noiseless and noisy GKP states.
  • Security holds for asymmetric configurations in both fiber-based wired and free-space wireless channels.
  • Concatenation of GKP codes further reduces residual errors, subject to a trade-off between layer number and finite GKP squeezing level.

Where Pith is reading between the lines

These are editorial extensions of the paper, not claims the author makes directly.

  • The deterministic character of the correction could allow direct integration with high-speed classical networks for real-time key distribution.
  • Similar symplectic noise-correlation techniques may improve other continuous-variable protocols that rely on measurement-based nodes.
  • Verification of the required symplectic transform correlations in physical oscillator systems would be the next concrete experimental test.

Load-bearing premise

GKP oscillators-to-oscillators codes with noise correlation via a pair of symplectic transforms can suppress both loss error and operation error below the break-even point without any delays caused by classical heralding signals.

What would settle it

An experiment in which the residual error rate after GKP correction exceeds the break-even threshold required for a positive finite-size key rate under collective Gaussian attacks would falsify the security claim.

Figures

Figures reproduced from arXiv: 2605.03292 by Stefano Pirandola, Zhiyue Zuo.

Figure 1
Figure 1. Figure 1: FIG. 1. (a) Network topology using asymmetric CV MDI-QKD protocol with an untrusted relay view at source ↗
Figure 2
Figure 2. Figure 2: FIG. 2. Asymptotic key rate versus fiber distance of Bob-to view at source ↗
Figure 3
Figure 3. Figure 3: FIG. 3. (a) Schematic of the protocol with GKP error correction on the Alice side. The blue lines and orange lines represent view at source ↗
Figure 4
Figure 4. Figure 4: FIG. 4. The equivalent entanglement-based scheme with view at source ↗
Figure 5
Figure 5. Figure 5: FIG. 5. (a) RCI, or equivalently, the lower bound on the optimal key rate versus both Alice-to-relay and Bob-to-relay distance view at source ↗
Figure 6
Figure 6. Figure 6: FIG. 6. (a) Probability density of view at source ↗
read the original abstract

It is well known that the repeater node is an essential ingredient for the future global quantum network, which will enable high-rate private communication and entanglement distribution over very long distances. The near-term repeater architecture uses the measurement-based node that operate without both entanglement and quantum memory, which is the main idea of the measurement-device-independent quantum key distribution (MDI-QKD) protocol. The MDI-QKD protocol removes the trust condition from the inter repeaters, while its continuous variable (CV) version, when proposed, benefited from its deterministic nature, compatible with the classical devices, and shows a high rate for the short-range local area network (LAN). Whilst the theoretical backbone of CV-MDI-QKD protocol is well established, its secure transmission range is yet limited for practical LAN. In this study, we propose an enhanced scheme for the asymmetric CV-MDI-QKD protocol by using Gottesman-Kitaev-Preskill (GKP) oscillators-to-oscillators codes, where both loss error and operation error are suppressed to below the break-even point, without any delays caused by classical heralding signals. In particular, the proposed scheme, which correlates the noises of the data and ancilla via a pair of symplectic transforms, extracts the error syndromes from stabilizer measurements on the ancilla mode and informs the data mode for a corrective displacement. Numerical analysis shows the composable finite-size security of the protocol under the collective Gaussian attack, encompassing noiseless and noisy GKP states, with both wired (i.e., fiber-based) and wireless (i.e., free-space) configurations. In addition, we demonstrate that the residual errors of the GKP code can be further reduced by the concatenation method but has a trade-off between the layers number and the finite GKP squeezing.

Editorial analysis

A structured set of objections, weighed in public.

Desk editor's note, referee report, simulated authors' rebuttal, and a circularity audit. Tearing a paper down is the easy half of reading it; the pith above is the substance, this is the friction.

Referee Report

3 major / 2 minor

Summary. The paper proposes an enhanced asymmetric continuous-variable measurement-device-independent quantum key distribution (CV-MDI-QKD) protocol that incorporates Gottesman-Kitaev-Preskill (GKP) oscillators-to-oscillators codes. Noise correlation is achieved via a pair of symplectic transforms; error syndromes are extracted from ancilla stabilizer measurements and used for corrective displacements on the data mode. This is claimed to suppress both loss and operation errors below the break-even point without delays from classical heralding signals. Numerical analysis is presented for the composable finite-size security under collective Gaussian attacks, covering noiseless and noisy GKP states in both fiber-based (wired) and free-space (wireless) configurations, with optional concatenation layers trading off against finite GKP squeezing.

Significance. If the central claims on error suppression and security hold after addressing modeling details, the work would offer a concrete route to extend the range of practical CV-MDI-QKD using near-term GKP hardware, while remaining compatible with deterministic, memory-free repeater nodes. The treatment of both wired/wireless channels and noisy GKP states increases relevance to realistic deployments. The numerical security analysis under standard Gaussian attacks provides a starting point for finite-size key-rate estimates, though its load-bearing assumptions require tighter verification.

major comments (3)
  1. [Protocol description and security analysis] Protocol description (abstract and main protocol section): The central claim that the scheme suppresses errors 'without any delays caused by classical heralding signals' rests on the untrusted MDI relay performing the measurement while ancilla syndromes are extracted and fed back for data-mode correction. The manuscript does not specify the classical communication channel for syndrome transfer, its timing relative to the quantum transmission, or how any associated latency or bit-flip errors are folded into the finite-size composable security bound and the optimality of the collective Gaussian attack model.
  2. [Numerical security analysis] Numerical security analysis section: The reported composable finite-size key rates under Gaussian attacks for noiseless and noisy GKP states lack explicit derivations of the covariance matrices after symplectic noise correlation, the precise optimization procedure over GKP squeezing and concatenation layers, error-bar estimation, and data-exclusion criteria. Without these, it is not possible to confirm that residual errors are suppressed below break-even or to reproduce the claimed security advantage over standard CV-MDI-QKD.
  3. [GKP code construction] GKP code construction (oscillators-to-oscillators section): The assumption that a pair of symplectic transforms fully correlates loss and operation noise between data and ancilla modes in the MDI channel must be shown to remain valid when the measurement occurs at an untrusted relay; any additional noise introduced by the relay's homodyne detection or the subsequent classical feedback could invalidate the break-even suppression and the Gaussian-attack security reduction.
minor comments (2)
  1. [Title and abstract] The title refers to 'noisy non-Gaussian error correction' while the body focuses on GKP codes; a brief clarification of the precise non-Gaussian aspect (e.g., the GKP code itself versus additional non-Gaussian operations) would improve readability.
  2. [Figures and tables] Figure captions and parameter tables should explicitly list the exact GKP squeezing values, number of concatenation layers, and channel-loss ranges used for each plotted curve to allow direct comparison with the text.

Simulated Author's Rebuttal

3 responses · 0 unresolved

We thank the referee for their thorough review and valuable comments on our manuscript. We address each of the major comments point by point below, providing clarifications and indicating revisions where necessary to strengthen the paper.

read point-by-point responses

  1. Referee: Protocol description (abstract and main protocol section): The central claim that the scheme suppresses errors 'without any delays caused by classical heralding signals' rests on the untrusted MDI relay performing the measurement while ancilla syndromes are extracted and fed back for data-mode correction. The manuscript does not specify the classical communication channel for syndrome transfer, its timing relative to the quantum transmission, or how any associated latency or bit-flip errors are folded into the finite-size composable security bound and the optimality of the collective Gaussian attack model.

    Authors: We clarify that the syndrome extraction and feedback occur after the MDI measurement at the relay, using a standard authenticated classical channel for post-processing, which does not introduce heralding delays since the protocol operates deterministically without conditional success probabilities. The timing is such that the classical communication happens after quantum transmission, and any latency is accounted for in the overall protocol timing but does not affect the quantum channel security analysis. Bit-flip errors on the classical channel are assumed negligible under standard QKD assumptions or can be corrected with error-correcting codes, and we will explicitly state this in the revised manuscript. The collective Gaussian attack model remains optimal as the additional classical noise is independent of the quantum part. We will add a detailed description of the classical channel and timing in the protocol section. revision: yes

  2. Referee: Numerical security analysis section: The reported composable finite-size key rates under Gaussian attacks for noiseless and noisy GKP states lack explicit derivations of the covariance matrices after symplectic noise correlation, the precise optimization procedure over GKP squeezing and concatenation layers, error-bar estimation, and data-exclusion criteria. Without these, it is not possible to confirm that residual errors are suppressed below break-even or to reproduce the claimed security advantage over standard CV-MDI-QKD.

    Authors: We agree that additional details would improve reproducibility. In the revised manuscript, we will include an appendix with the explicit derivations of the covariance matrices following the symplectic transforms, describe the optimization procedure used for choosing GKP squeezing levels and concatenation layers (including the trade-off analysis), specify the method for error-bar estimation (e.g., via Monte Carlo simulations or analytical bounds), and clarify the data-exclusion criteria applied in the numerical security analysis. This will allow verification that errors are suppressed below break-even. revision: yes

  3. Referee: GKP code construction (oscillators-to-oscillators section): The assumption that a pair of symplectic transforms fully correlates loss and operation noise between data and ancilla modes in the MDI channel must be shown to remain valid when the measurement occurs at an untrusted relay; any additional noise introduced by the relay's homodyne detection or the subsequent classical feedback could invalidate the break-even suppression and the Gaussian-attack security reduction.

    Authors: The symplectic transforms are applied locally at the transmitter prior to sending the modes through the channel, ensuring that the noise correlation is established before any channel noise or relay operations. The MDI relay performs a joint measurement on the incoming modes, but since the correlation is in the quadrature operators via the symplectic map, the effective noise on the data mode after correction remains correlated as modeled. The homodyne detection at the relay introduces Gaussian noise which is already accounted for in the overall channel noise model under the Gaussian attack assumption. The classical feedback for correction is applied at the receiver after receiving the syndrome, and any errors there are treated as part of the post-processing. Our numerical results demonstrate the suppression below break-even even with these considerations. We will add a clarifying paragraph in the GKP code construction section to explicitly justify the validity under untrusted relay operations. revision: partial

Circularity Check

0 steps flagged

No significant circularity detected in derivation chain

full rationale

The paper defines a GKP-based CV-MDI-QKD protocol with symplectic noise correlation and ancilla-based syndrome extraction, then performs numerical finite-size key-rate analysis under the standard collective Gaussian attack model for both noiseless and noisy GKP states. No step reduces by construction to a fitted parameter renamed as a prediction, a self-definitional loop, or a load-bearing self-citation chain; the security evaluation is an independent numerical computation on the modeled channel. The assumption that corrections occur without heralding delays is an explicit protocol choice rather than a derived quantity that tautologically equals its input. The derivation therefore remains self-contained against external benchmarks.

Axiom & Free-Parameter Ledger

2 free parameters · 2 axioms · 0 invented entities

The central claim rests on standard quantum optics assumptions and the practical availability of GKP states; no new entities are postulated, but several design parameters are left implicit in the numerical analysis.

free parameters (2)
  • GKP squeezing level
    The degree of squeezing in the GKP states directly controls error suppression and is traded off against concatenation layers in the described analysis.
  • Number of concatenation layers
    The paper notes an explicit trade-off between layer count and finite GKP squeezing, making this a tunable parameter in the protocol design.
axioms (2)
  • domain assumption Collective Gaussian attacks represent the optimal eavesdropping strategy for security analysis
    Invoked for the composable finite-size security claims under both wired and wireless channels.
  • standard math Symplectic transformations preserve the phase-space structure of continuous-variable quantum states
    Used to correlate noise between data and ancilla modes for syndrome extraction.

pith-pipeline@v0.9.0 · 5624 in / 1653 out tokens · 70509 ms · 2026-05-07T17:43:07.550093+00:00 · methodology

Review history (2 revisions) →

discussion (0)

Sign in with ORCID, Apple, or X to comment. Anyone can read and Pith papers without signing in.

Reference graph

Works this paper leans on

69 extracted references · 69 canonical work pages

  1. [1]

    Fiber scenario First, we consider the scenario where both Alice and Bob are connected to the relay using SMF. Fig. 5(a) shows the reverse coherent information (RCI) of the bosonic system with and without GKP codes, which stands as the lower bound on the optimal key rate R [7]. Here, we first remove the imperfection of data post- processing for the optimal...

    work page

  2. [2]

    In this scenario, Alice can be located in a building, but also be moving aircraft or drones with more flexible links

    Free-space scenarios Next, we extend to the free-space scenario, where Alice uses a horizontal fading link to connect to the relay (Bob still uses SMF). In this scenario, Alice can be located in a building, but also be moving aircraft or drones with more flexible links. Unlike the fiber scenario, the transmittance along a fading channel is not fixed, but ...

    work page

  3. [3]

    (A3) When only the pre-amplification is used, θ becomes θ = σ2 A − 2τA + τBσ2 B + 4

    work page

  4. [4]

    µq+ m−1 pe mpeX i=1 [q+]2 i − µq− m−1 pe mpeX i=1 [q−]2 i # , (B4) \⟨papb⟩ = m−1 pe mpeX i=1 [pa]i[pb]i = 1 4

    (A4) 12 Note that for any outcomeγ, the conditional remote state ψab|γ has always the same CMVab|γ , while its mean value varies with γ. In the asymptotic regime (N ≫ 1, where N is the total number of received pulse), the secret key rate follows the Csiszar-Korner theorem given by [65] Rasy = β0I − χ, (A5) where β0 represents the reconciliation efficiency...

    work page

  5. [5]

    H. J. Kimble, The quantum internet, Nature 453, 1023 (2008)

    work page 2008

  6. [6]

    Pirandola and S

    S. Pirandola and S. L. Braunstein, Physics: Unite to build a quantum internet, Nature 532, 169 (2016)

    work page 2016

  7. [7]

    Wehner, D

    S. Wehner, D. Elkouss, and R. Hanson, Quantum inter- net: A vision for the road ahead, Science 362, eaam9288 (2018)

    work page 2018

  8. [8]

    Azuma, S

    K. Azuma, S. E. Economou, D. Elkouss, P. Hilaire, L. Jiang, H.-K. Lo, and I. Tzitrin, Quantum repeaters: From quantum networks to the quantum internet, Re- views of Modern Physics 95, 045006 (2023)

    work page 2023

  9. [9]

    Pirandola, U

    S. Pirandola, U. L. Andersen, L. Banchi, M. Berta, D. Bunandar, R. Colbeck, D. Englund, T. Gehring, C. Lupo, C. Ottaviani, et al., Advances in quantum cryp- tography, Advances in optics and photonics 12, 1012 (2020)

    work page 2020

  10. [10]

    Gisin, G

    N. Gisin, G. Ribordy, W. Tittel, and H. Zbinden, Quan- tum cryptography, Rev. Mod. Phys. 74, 145 (2002)

    work page 2002

  11. [11]

    Pirandola, R

    S. Pirandola, R. Laurenza, C. Ottaviani, and L. Banchi, Fundamental limits of repeaterless quantum communica- tions, Nature communications 8, 15043 (2017)

    work page 2017

  12. [12]

    Pirandola, End-to-end capacities of a quantum com- munication network, Communications Physics 2, 51 (2019)

    S. Pirandola, End-to-end capacities of a quantum com- munication network, Communications Physics 2, 51 (2019)

    work page 2019

  13. [13]

    Harney and S

    C. Harney and S. Pirandola, Analytical methods for high- rate global quantum networks, PRX Quantum 3, 010349 (2022)

    work page 2022

  14. [14]

    Harney, A

    C. Harney, A. I. Fletcher, and S. Pirandola, End-to-end capacities of hybrid quantum networks, Physical Review Applied 18, 014012 (2022)

    work page 2022

  15. [15]

    Pirandola, Architectures for qkd networks, in Photon- ics for Quantum 2022 , Vol

    S. Pirandola, Architectures for qkd networks, in Photon- ics for Quantum 2022 , Vol. 12243 (SPIE, 2022) pp. 51– 58

    work page 2022

  16. [16]

    S. L. Braunstein and S. Pirandola, Side-channel-free quantum key distribution, Phys. Rev. Lett. 108, 130502 (2012)

    work page 2012

  17. [17]

    H.-K. Lo, M. Curty, and B. Qi, Measurement-device- independent quantum key distribution, Physical review letters 108, 130503 (2012)

    work page 2012

  18. [18]

    F. Xu, X. Ma, Q. Zhang, H.-K. Lo, and J.-W. Pan, Secure quantum key distribution with realistic devices, Reviews of modern physics 92, 025002 (2020)

    work page 2020

  19. [19]

    Lucamarini, Z

    M. Lucamarini, Z. L. Yuan, J. F. Dynes, and A. J. Shields, Overcoming the rate–distance limit of quantum key distribution without quantum repeaters, Nature557, 400 (2018)

    work page 2018

  20. [20]

    Y. Tian, P. Wang, J. Liu, S. Du, W. Liu, Z. Lu, X. Wang, and Y. Li, Experimental demonstration of continuous- variable measurement-device-independent quantum key distribution over optical fiber, Optica 9, 492 (2022)

    work page 2022

  21. [21]

    A. A. Hajomer, U. L. Andersen, and T. Gehring, High-rate continuous-variable measurement device- independent quantum key distribution with finite-size security, Quantum Science and Technology 10, 025032 (2025)

    work page 2025

  22. [22]

    Fletcher, C

    A. Fletcher, C. Harney, M. Ghalaii, P. Papanastasiou, A. G. Mountogiannakis, G. Spedalieri, A. Hajomer, T. Gehring, and S. Pirandola, An overview of cv-mdi- qkd, Reports on Progress in Physics (2025)

    work page 2025

  23. [23]

    Jouguet, S

    P. Jouguet, S. Kunz-Jacques, and E. Diamanti, Pre- venting calibration attacks on the local oscillator in continuous-variable quantum key distribution, Physical 14 Review A—Atomic, Molecular, and Optical Physics 87, 062313 (2013)

    work page 2013

  24. [24]

    H. Qin, R. Kumar, and R. All´ eaume, Quantum hack- ing: Saturation attack on practical continuous-variable quantum key distribution, Physical Review A 94, 012325 (2016)

    work page 2016

  25. [25]

    H. Qin, R. Kumar, V. Makarov, and R. All´ eaume, Homodyne-detector-blinding attack in continuous- variable quantum key distribution, Physical Review A 98, 012312 (2018)

    work page 2018

  26. [26]

    Pirandola, C

    S. Pirandola, C. Ottaviani, G. Spedalieri, C. Weedbrook, S. L. Braunstein, S. Lloyd, T. Gehring, C. S. Jacob- sen, and U. L. Andersen, High-rate measurement-device- independent quantum cryptography, Nature Photonics9, 397 (2015)

    work page 2015

  27. [27]

    Fossier, E

    S. Fossier, E. Diamanti, T. Debuisschert, R. Tualle- Brouri, and P. Grangier, Improvement of continuous- variable quantum key distribution systems by using op- tical preamplifiers, Journal of Physics B: Atomic, Molec- ular and Optical Physics 42, 114014 (2009)

    work page 2009

  28. [28]

    Blandino, A

    R. Blandino, A. Leverrier, M. Barbieri, J. Etesse, P. Grangier, and R. Tualle-Brouri, Improving the maxi- mum transmission distance of continuous-variable quan- tum key distribution using a noiseless amplifier, Physical Review A—Atomic, Molecular, and Optical Physics 86, 012327 (2012)

    work page 2012

  29. [29]

    H. M. Chrzanowski, N. Walk, S. M. Assad, J. Janousek, S. Hosseini, T. C. Ralph, T. Symul, and P. K. Lam, Measurement-based noiseless linear amplification for quantum communication, Nature Photonics 8, 333 (2014)

    work page 2014

  30. [30]

    M. N. Notarnicola and S. Olivares, Long-distance continuous-variable quantum key distribution with fea- sible physical noiseless linear amplifiers, Physical Review A 108, 022404 (2023)

    work page 2023

  31. [31]

    B. M. Terhal, Quantum error correction for quantum memories, Reviews of Modern Physics 87, 307 (2015)

    work page 2015

  32. [32]

    T. M. Stace, S. D. Barrett, and A. C. Doherty, Thresh- olds for topological codes in the presence of loss, Physical review letters 102, 200501 (2009)

    work page 2009

  33. [33]

    Muralidharan, J

    S. Muralidharan, J. Kim, N. L¨ utkenhaus, M. D. Lukin, and L. Jiang, Ultrafast and fault-tolerant quantum com- munication across long distances, Physical review letters 112, 250501 (2014)

    work page 2014

  34. [34]

    Li, C.-L

    L. Li, C.-L. Zou, V. V. Albert, S. Muralidharan, S. Girvin, and L. Jiang, Cat codes with optimal deco- herence suppression for a lossy bosonic channel, Physical review letters 119, 030502 (2017)

    work page 2017

  35. [35]

    Gottesman, A

    D. Gottesman, A. Kitaev, and J. Preskill, Encoding a qubit in an oscillator, Physical Review A 64, 012310 (2001)

    work page 2001

  36. [36]

    M. H. Michael, M. Silveri, R. Brierley, V. V. Albert, J. Salmilehto, L. Jiang, and S. M. Girvin, New class of quantum error-correcting codes for a bosonic mode, Physical Review X 6, 031006 (2016)

    work page 2016

  37. [37]

    Fukui, A

    K. Fukui, A. Tomita, and A. Okamoto, Analog quantum error correction with encoding a qubit into an oscillator, Physical review letters 119, 180507 (2017)

    work page 2017

  38. [38]

    Fukui, A

    K. Fukui, A. Tomita, A. Okamoto, and K. Fujii, High- threshold fault-tolerant quantum computation with ana- log quantum error correction, Physical review X 8, 021054 (2018)

    work page 2018

  39. [39]

    Vuillot, H

    C. Vuillot, H. Asasi, Y. Wang, L. P. Pryadko, and B. M. Terhal, Quantum error correction with the toric gottesman-kitaev-preskill code, Physical Review A 99, 032344 (2019)

    work page 2019

  40. [40]

    Eisert, S

    J. Eisert, S. Scheel, and M. B. Plenio, Distilling gaussian states with gaussian operations is impossible, Physical review letters 89, 137903 (2002)

    work page 2002

  41. [41]

    Niset, J

    J. Niset, J. Fiur´ aˇ sek, and N. J. Cerf, No-go theorem for gaussian quantum error correction, Physical review let- ters 102, 120501 (2009)

    work page 2009

  42. [42]

    K. Noh, S. Girvin, and L. Jiang, Encoding an oscilla- tor into many oscillators, Physical Review Letters 125, 080503 (2020)

    work page 2020

  43. [43]

    A. J. Brady, A. Eickbusch, S. Singh, J. Wu, and Q. Zhuang, Advances in bosonic quantum error correc- tion with gottesman–kitaev–preskill codes: Theory, engi- neering and applications, Progress in Quantum Electron- ics 93, 100496 (2024)

    work page 2024

  44. [44]

    Zhuang, J

    Q. Zhuang, J. Preskill, and L. Jiang, Distributed quan- tum sensing enhanced by continuous-variable error cor- rection, New Journal of Physics 22, 022001 (2020)

    work page 2020

  45. [45]

    B.-H. Wu, Z. Zhang, and Q. Zhuang, Continuous-variable quantum repeaters based on bosonic error-correction and teleportation: architecture and applications, Quantum Science and Technology 7, 025018 (2022)

    work page 2022

  46. [46]

    Konno, W

    S. Konno, W. Asavanant, F. Hanamura, H. Nagayoshi, K. Fukui, A. Sakaguchi, R. Ide, F. China, M. Yabuno, S. Miki, et al. , Logical states for fault-tolerant quan- tum computation with propagating light, Science 383, 289 (2024)

    work page 2024

  47. [47]

    M. V. Larsen, J. E. Bourassa, S. Kocsis, J. F. Tasker, R. S. Chadwick, C. Gonz´ alez-Arciniegas, J. Hastrup, C. E. Lopetegui-Gonz´ alez, F. M. Miatto, A. Motamedi, et al. , Integrated photonic source of gottesman–kitaev– preskill qubits, Nature 642, 587 (2025)

    work page 2025

  48. [48]

    Weedbrook, S

    C. Weedbrook, S. Pirandola, R. Garc´ ıa-Patr´ on, N. J. Cerf, T. C. Ralph, J. H. Shapiro, and S. Lloyd, Gaus- sian quantum information, Reviews of Modern Physics 84, 621 (2012)

    work page 2012

  49. [49]

    Papanastasiou, C

    P. Papanastasiou, C. Ottaviani, and S. Pirandola, Finite- size analysis of measurement-device-independent quan- tum cryptography with continuous variables, Physical Review A 96, 042332 (2017)

    work page 2017

  50. [50]

    Papanastasiou, A

    P. Papanastasiou, A. G. Mountogiannakis, and S. Pi- randola, Composable security of cv-mdi-qkd with secret key rate and data processing, Scientific reports 13, 11636 (2023)

    work page 2023

  51. [51]

    K. Noh, V. V. Albert, and L. Jiang, Quantum capacity bounds of gaussian thermal loss channels and achievable rates with gottesman-kitaev-preskill codes, IEEE Trans- actions on Information Theory 65, 2563 (2018)

    work page 2018

  52. [52]

    Duivenvoorden, B

    K. Duivenvoorden, B. M. Terhal, and D. Weigand, Single- mode displacement sensor, Physical Review A95, 012305 (2017)

    work page 2017

  53. [53]

    J. Wu, A. J. Brady, and Q. Zhuang, Optimal encoding of oscillators into more oscillators, Quantum7, 1082 (2023)

    work page 2023

  54. [54]

    B. Zhou, A. J. Brady, and Q. Zhuang, Enhancing dis- tributed sensing with imperfect error correction, Physical Review A 106, 012404 (2022)

    work page 2022

  55. [55]

    Ghalaii, P

    M. Ghalaii, P. Papanastasiou, and S. Pirandola, Compos- able end-to-end security of gaussian quantum networks with untrusted relays, npj Quantum Information 8, 105 (2022)

    work page 2022

  56. [56]

    Jain, H.-M

    N. Jain, H.-M. Chin, H. Mani, C. Lupo, D. S. Nikolic, A. Kordts, S. Pirandola, T. B. Pedersen, M. Kolb, B. ¨Omer, et al. , Practical continuous-variable quantum 15 key distribution with composable security, Nature com- munications 13, 4740 (2022)

    work page 2022

  57. [57]

    Z. Zuo, M. Ghalaii, and S. Pirandola, Realistic threat models for fiber and free-space continuous variable quantum key distribution, Physical Review Research 8, 013185 (2026)

    work page 2026

  58. [58]

    Pirandola and P

    S. Pirandola and P. Papanastasiou, Improved composable key rates for cv-qkd, Physical Review Research 6, 023321 (2024)

    work page 2024

  59. [59]

    Tomamichel, C

    M. Tomamichel, C. Schaffner, A. Smith, and R. Ren- ner, Leftover hashing against quantum side informa- tion, IEEE Transactions on Information Theory 57, 5524 (2011)

    work page 2011

  60. [60]

    Ghalaii and S

    M. Ghalaii and S. Pirandola, Capacity-approaching quantum repeaters for quantum communications, Physi- cal Review A 102, 062412 (2020)

    work page 2020

  61. [61]

    A. A. Hajomer, C. Bruynsteen, I. Derkach, N. Jain, A. Bomhals, S. Bastiaens, U. L. Andersen, X. Yin, and T. Gehring, Continuous-variable quantum key distribu- tion at 10 gbaud using an integrated photonic-electronic receiver, Optica 11, 1197 (2024)

    work page 2024

  62. [62]

    Dequal, L

    D. Dequal, L. Trigo Vidarte, V. Roman Rodriguez, G. Vallone, P. Villoresi, A. Leverrier, and E. Dia- manti, Feasibility of satellite-to-ground continuous- variable quantum key distribution, npj Quantum Infor- mation 7, 3 (2021)

    work page 2021

  63. [63]

    Ghalaii, S

    M. Ghalaii, S. Bahrani, C. Liorni, F. Grasselli, H. Kam- permann, L. Wooltorton, R. Kumar, S. Pirandola, T. P. Spiller, A. Ling, et al. , Satellite-based quantum key dis- tribution in the presence of bypass channels, PRX Quan- tum 4, 040320 (2023)

    work page 2023

  64. [64]

    Z. Zuo, Y. Wang, D. Huang, and Y. Guo, Atmospheric ef- fects on satellite-mediated continuous-variable quantum key distribution, Journal of Physics A: Mathematical and Theoretical 53, 465302 (2020)

    work page 2020

  65. [65]

    Pirandola, Limits and security of free-space quantum communications, Physical Review Research 3, 013279 (2021)

    S. Pirandola, Limits and security of free-space quantum communications, Physical Review Research 3, 013279 (2021)

    work page 2021

  66. [66]

    Vasylyev, W

    D. Vasylyev, W. Vogel, and F. Moll, Satellite-mediated quantum atmospheric links, Physical Review A 99, 053830 (2019)

    work page 2019

  67. [67]

    Ruppert, C

    L. Ruppert, C. Peuntinger, B. Heim, K. G¨ unthner, V. C. Usenko, D. Elser, G. Leuchs, R. Filip, and C. Marquardt, Fading channel estimation for free-space continuous- variable secure quantum communication, New Journal of Physics 21, 123036 (2019)

    work page 2019

  68. [68]

    Spedalieri, C

    G. Spedalieri, C. Ottaviani, and S. Pirandola, Covari- ance matrices under bell-like detections, Open Systems & Information Dynamics 20, 1350011 (2013)

    work page 2013

  69. [69]

    Csisz´ ar and J

    I. Csisz´ ar and J. Korner, Broadcast channels with confi- dential messages, IEEE transactions on information the- ory 24, 339 (2003)

    work page 2003