QVault is an enterprise-grade post-quantum encrypted file storage and sharing product from QuantumGuard. It is positioned not as a conventional cloud drive, but as a secure storage platform for long-term protection of sensitive data. Its core goal is to address the βharvest now, decrypt laterβ risk, where attackers collect ciphertext today and decrypt it in the future with the help of quantum computing.
In terms of protection, QVault uses ML-KEM-1024 under NIST FIPS 203 for key encapsulation, combined with AES-256-GCM for file encryption and HKDF-SHA256 for key derivation. All encryption and decryption take place on the client side; the server stores only ciphertext and does not hold plaintext or decryption keys, aligning with a zero-knowledge architecture. A notable feature is that it obtains quantum random numbers from QRNG Open API providers such as Qrypt, Quantinuum, and ID Quantique, then mixes them with local entropy to strengthen key generation. The product also provides ML-DSA-87 document signing, cryptographically signed access logs, immutable audit trails, document lifecycle tracking, and compliance report exports.
QVault is primarily offered as a cloud service, while the documentation explicitly mentions support for on-premise / air-gapped deployments. On the compliance side, FIPS 203 and the zero-knowledge architecture are marked as Compliant, while SOC 2 Type I and ISO 27001 are still in progress. FedRAMP and ITAR/EAR are not certified, so it is not suitable for classified government data or export-controlled materials. For integrations, it supports QRNG providers and SSO/SAML 2.0, while the API is still listed as Coming soon.
Pricing consists of a single plan: $50/user/month or $500/user/year. A 14-day free trial is available with no credit card required. The plan includes unlimited users, unlimited storage, audit logs, compliance reports, RBAC, and priority support with a 24-hour response time. Payments are processed by Stripe.
Its strengths are a clear post-quantum cryptography roadmap, a client-side zero-knowledge architecture that reduces cloud-side breach risk, and audit capabilities suited to highly regulated sectors such as healthcare, legal, and finance. Its drawbacks are that it is more expensive than typical enterprise cloud drives, SOC 2 and ISO 27001 are not yet completed, the API ecosystem is not yet mature, and data recovery may be limited if a password is forgotten. It is better suited to organizations that need to retain sensitive materials for more than 10 years and take long-term quantum risks seriously.
The source material does not provide information on network connectivity from mainland China, RMB payments, invoicing, or local compliance, so china_access can only be rated as unknown. Since it uses Stripe, companies in China may need to further confirm payment, contract, and data export requirements before procurement. Possible alternatives include Box, Tresorit, Proton Drive, or China-based enterprise cloud drive / object storage encryption solutions that support private deployment, KMS, and compliance auditing.
β This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on qguard.net official site.
qguard.net is an Unknown Cybersecurity provider. TG4G tracks its product information, an overall rating of 7.0/10, and a China-accessibility score of Workable. Click "Visit Official Site" to reach qguard.net directly.