QuStream is a company providing encryption as a service, specifically aimed at encrypting data in transit.
QuStream stands out due to its quantum-proof encryption.
To understand why this matters and what makes QuStream different, we need to look at how encryption works today, and at the quantum threat on the horizon.
How Encryption Works Today
Today every secure transmission is protected by encryption that is essentially a math problem — one that would require so much computing power and time (literally billions of years) that it's effectively impossible with today's technology.
So what's the catch?
The Quantum Computer Threat
Quantum computers work fundamentally differently from conventional computers by exploiting quantum superposition to evaluate many possibilities simultaneously. While they're still in early development, researchers have already proven that sufficiently powerful quantum computers could break today's encryption in hours or days instead of billions of years.
Unfortunately this is a now problem. Even though quantum computers powerful enough to break conventional encryption may not be commercially available for years, hackers can record encrypted data traffic today and read it once the technology is available. This is known as "Harvest Now, Decrypt Later".
For some types of data it's no worry — who cares if hackers read your old social media DMs a few years from now? But for financial information, medical records, state secrets, etc. it's a big deal.
The Mainstream Solution: NIST Post-Quantum Cryptography
The National Institute of Standards and Technology (NIST) saw this quantum threat coming and put out a call for Post-Quantum Cryptography (PQC) algorithms. What they got back were algorithms based on harder math problems, known as lattice-based cryptography, designed to be extremely difficult for both regular and quantum computers to solve.
NIST frames these PQC algorithms as "quantum-resistant." When it comes to critical data, though, "resistant" isn't enough. Even NIST hedges its bets on this, for example noting that its ML-KEM algorithm is "presently believed to be secure" (page 10 here) against quantum attack while simultaneously recommending the practice of cryptographic agility, i.e., designing systems in a way that will allow a new algorithm to be swapped in if/when the current one is no longer good enough to protect the data — an approach that costs significant time, effort, and money.
Implementation challenges add another layer of concern. Recent research with UK critical infrastructure organizations found that the biggest barrier to NIST PQC adoption isn't the technology itself: The problem is lack of expertise. Organizations cite skills gaps (42%), cost concerns (35%), and uncertainty about standards (35%) as top obstacles. Each organization implementing NIST's approach independently creates countless opportunities for implementation errors that could compromise security, independent of any encryption strength concerns.
QuStream: A Different Approach
QuStream achieves perfect secrecy — a cryptographic state in which an attacker with unlimited computing power, including future quantum computers, cannot derive the key or learn anything useful about the message. It does this using the One-Time Pad (OTP), the only cipher mathematically proven to be unbreakable.
Try every possible key against an OTP-encrypted message and you get back every possible combination of characters (letters, numbers, punctuation, and spaces) equal to the length of the original message — which includes gibberish, plausible-but-wrong sentences, the real message, and everything in between, with no way to tell which is which. Without the correct key, an attacker is left guessing among an impossibly large set of equally plausible possibilities.
With non-OTP encryption (where the key is generally significantly shorter than the message) the number of plausible, readable, but incorrect messages returned by a brute force attack is much, much smaller than with OTP encryption where the key is as long as the message, meaning that if the key is short and the message is longer then a readable message returned during a brute force attack is much more likely to be the actual message.
An early version of OTP was patented in 1917, and OTP was mathematically proven perfectly secret by Claude Shannon in 1949, but it has never been practical at scale because it requires four strict conditions:
- The key must be truly random
-
The key must be as long as the message
- For example, a one-gigabyte message needs a one-gigabyte key
- The key must be securely shared between sender and receiver without interception
- The key must never be reused
Historically OTP has been used in limited contexts, but for over 100 years no one has been able to make it scalable while still satisfying all of these constraints.
QuStream's algorithm, developed by CEO and cryptographer Adrian Neal, neatly achieves all of the OTP conditions. Neal's published, patent-pending framework, Operational Perfect Secrecy (OPS), extends Shannon's guarantees to practical scale, and QuStream is the first real-world implementation. Here's how it works at a high level: A decentralized network of nodes distributes the same block of truly random quantum data ("Q-blocks") to sender and receiver. Working from a synchronized starting position, they both independently trace the same path through that Q-block to derive an identical key, repeating this process (tracing another path from a new synchronized starting position, and another, and another, and concatenating the results) as many times as needed to generate a key long enough to reach the length message, however large. Because the key is derived independently at both ends, no key is ever transmitted. And every message gets a new Q-block, ensuring no reuse of keys.
As a result QuStream's message encryption model is quantum-proof, not quantum-resistant: Its secrecy is absolute rather than computational, mathematically immune to attack regardless of how powerful future computers become. No hedging required, and no future replacement needed.
The Speed and Efficiency Advantage
In addition to being unbreakable, QuStream is also computationally lightweight. Encrypting and decrypting at 0.9 cycles per byte (look for "cpb" here), it is competitive with even the fastest hardware-accelerated conventional encryption, and dramatically faster than NIST PQC alternatives while consuming only a tiny fraction of the power that they require. These are critical distinctions in a variety of contexts, for example on the low-capacity, often aging hardware found in smart meter infrastructure in many locations around the world, or in specialized applications like drones where secrecy is paramount but power is extremely limited.