In this section we discuss the security proof of this module’s QKD protocol under the assumption that the eavesdropper is restricted to collective attacks: attacks which attempt to guess the bits generated by Alice and Bob in each round independently (yes, the name collective is confusing!).