Overview
- Google, which announced the shift Wednesday, set a company-wide 2029 deadline to finish moving to post-quantum cryptography across its systems.
- Android 17 will test quantum-safe signatures in the next beta and ship them in the release, using NIST’s ML-DSA algorithm for Verified Boot, Remote Attestation, and Android Keystore.
- Google Play will add hybrid app signatures that pair current keys with ML-DSA keys, with Play App Signing using Google Cloud KMS to generate and protect those keys during the Android 17 release cycle.
- The company cites faster gains in quantum hardware, improved error correction, and revised attack estimates, and it flags two risks: data stolen today for future decryption and future forgery of digital signatures.
- Google frames its target as more aggressive than U.S. federal guidance and urges governments and companies to speed up their own migrations using NIST-vetted standards.