qURL (Quantum URL) is an access layer that separates access from visibility
You can't attack what you can't see.
Can't find itAccessible only with cryptographic proof.
Can't share itTime-Limited, Single-Use
Can't reuse itHow qURL Works
URLs expose first and protect later. qURLs verify first and reveal later.
Delivered through chat, email, apps, APIs, or AI agents.
identity, permissions, and policy
Appears after verification. Disappears after use.
Same applications. Different access model.
| URL Internet | qURL Internet | |
|---|---|---|
| Default State | Always visible | Invisible until verified |
| Access Flow | Connect → authenticate | Verify → connect |
| Address | Public URL | Cryptographic token |
| Audience | Browser-driven, human-only | Agent-native and human |
| Access Control | Firewall/VPN/Login Portal | Cryptographic key |
| Security Model | Bolted on after exposure | Native, by design |
| Sharing | Copy the URL | Delegate access |
qURL is built on open standards, public specifications, and open-source implementations. Every layer can be inspected, verified, tested, and independently validated by developers, standards bodies, and researchers worldwide.
The NHP specification is published through the Cloud Security Alliance, one of the world's leading cloud security standards organizations with hundreds of enterprise members including AWS, Microsoft, Google, and Alibaba.
cloudsecurityalliance.org →NHP is being standardized through the Internet Engineering Task Force (IETF), the organization responsible for foundational Internet standards including TCP/IP, HTTP, TLS, and DNS.
ietf.org →The complete OpenNHP reference implementation is open source and publicly available for inspection, review, testing, and contribution by developers worldwide.
How qURLs compare to what you already know
A qURL (Quantum URL) is a cryptographic, identity-bound, single-use link. It encapsulates a complete Network Hiding Protocol exchange so the resource behind it stays invisible on the network until the qURL is presented and the holder's identity is proven.
NHP is the Cloud Security Alliance's Network Hiding Protocol — the cryptographic standard for “authenticate before connect” networking. A qURL is that protocol packaged as a link: every qURL carries a full NHP exchange so your team can adopt network hiding without writing protocol code.
Signed URLs (like AWS pre-signed URLs) are replayable within their TTL — anyone with the link can use it multiple times. qURLs are single-use: the first access consumes the link permanently. They also require identity verification before generation, so there's no anonymous sharing.
OAuth tokens grant ongoing access until they expire or are revoked. qURLs grant access to a single resource for a single action. There's no token to steal, rotate, or revoke — once used, it's gone.