No quantum computer exists today that can break modern encryption. Yet the pressure on enterprises and government agencies to future-proof their cryptography for a potential post-quantum era is mounting. The reason: no one knows exactly when “Q-Day” will arrive, i.e. the point at which a sufficiently powerful quantum computer can crack classical public-key schemes such as RSA or elliptic curve cryptography. Current estimates range from a few years to several decades. For organisations handling highly sensitive data, in financial services, healthcare, or critical infrastructure, that uncertainty itself constitutes a strategic risk.
The Real Threat: Store Now, Decrypt Later
One attack scenario is particularly troubling because it is already underway: “store now, decrypt later.” Adversaries are harvesting encrypted traffic today with the intention of decrypting it once quantum computers become capable enough. For much of the data traversing networks, the long time horizon may render this moot. But for personally identifiable information, confidential product data, or classified government communications, decryption years down the line could still cause significant damage.
Regulation Is Accelerating the Transition
Over the past several years, the U.S. National Institute of Standards and Technology (NIST) has standardised several post-quantum cryptographic algorithms. U.S. federal agencies and their suppliers are expected to migrate to these new schemes on a phased timeline. Germany’s Federal Office for Information Security (BSI) likewise recommends that organisations begin preparing their infrastructure for quantum-resistant methods and build what it calls “crypto-agility.” At the same time, the European Union is developing coordinated roadmaps for a migration to post-quantum cryptography.
In this context, the industry is pursuing two complementary tracks: new mathematical approaches under the banner of Post-Quantum Cryptography (PQC), and physics-based methods such as Quantum Key Distribution (QKD). While PQC relies on novel cryptographic algorithms designed to resist quantum attacks, QKD leverages the principles of quantum physics to exchange keys over optical links. Any eavesdropping attempt disturbs the quantum state of the transmitted photons and can therefore be detected.
QKD in Practice: Traditional Approaches Don’t Scale Well
Today’s commercially available QKD systems typically consist of separate sender and receiver appliances, standalone 19-inch rack-mounted units deployed alongside the existing network. These systems generate quantum keys and then make them available to routers or encryption devices. That means additional infrastructure: dedicated hardware platforms, separate management interfaces, and integration overhead. Beyond the capital expenditure, operators face ongoing costs for monitoring and lifecycle management of yet another system layer.
An Architectural Shift: QKD as Part of the Router
An alternative approach is to stop treating QKD as a separate infrastructure silo and instead embed it directly into existing network equipment. That is precisely the premise behind the collaboration between HPE and CUbIQ Technologies. The QKD functionality is integrated into the networking platform itself, eliminating the need for an additional system layer.
At the technical core of this architecture is a QKD transceiver in the QSFP-28 pluggable form factor, designed to slot directly into routers or switches. The QKD transceiver module was developed by CUbIQ Technologies and can be hosted in HPE’s Juniper PTX series routers.
Integrating QKD and MACsec
In this prototype, the QKD pluggable generates quantum keys directly over the optical link. The router software reads those keys from the module and passes them to the router’s built-in encryption engine.
The encryption mechanism used is MACsec, a Layer 2 standard for securing Ethernet connections. Data traffic can thus be protected with keys generated via QKD. The integration challenge lies primarily in the control logic: routers must detect when new keys become available, synchronise their use between endpoints, and hand them off to the encryption subsystem.
Another key difference from conventional QKD architectures concerns system hierarchy. In many existing deployments, the QKD system forms its own infrastructure layer and feeds keys to routers or switches. The CUbIQ approach inverts that model: the router remains the central platform, while QKD functions purely as an integrated module.
Operational Benefits of Integration
Because QKD no longer runs as a standalone system, there is no need for a separate management plane for QKD hardware. The module is managed through the existing router platform, allowing it to slot seamlessly into established network operations workflows. For network operators, this translates above all into reduced operational complexity. New QKD capabilities can be introduced via modules or software upgrades without standing up additional infrastructure. Hardware refreshes also become simpler: higher-performance modules can be swapped in much like optical transceivers, without overhauling the entire QKD architecture.
Current State of Development
While the current prototype is not yet production-ready, HPE-Juniper routers already support scenarios in which quantum keys from external QKD systems can be ingested. Platforms equipped with the appropriate encryption capabilities can use such keys for IPsec or MACsec today. The integrated approach presented here could, over time, help move QKD out of specialised pilot projects and into mainstream network architectures.
A Hybrid Approach to Quantum Security
The trajectory of quantum computing remains difficult to predict. What experts do agree on is that the transition to quantum-safe methods will take years. Whether physics-based approaches like Quantum Key Distribution will play a major role in the long run is a matter of ongoing debate. Proponents see QKD as an additional layer of security, while other experts argue that mathematical post-quantum algorithms can already be implemented on today’s hardware and are therefore sufficient for many use cases. The most likely outcome is a hybrid approach: new cryptographic algorithms form the foundation of future security, while quantum-based technologies are deployed where particularly stringent protection requirements apply.
