Google plans to complete post-quantum encryption by 2029, using ML-DSA in Android 17 for app signing and security. Learn how this protects against future quantum computer threats.
© B. Naumkin
Google has announced an accelerated transition to post-quantum encryption, designed to protect data from future quantum computer attacks. The company plans to complete its infrastructure modernization by 2029, significantly ahead of industry standard timelines.
New cryptographic algorithms, including ML-DSA, will be central to this shift. These are already being prepared for implementation in Android 17, where they'll be used for app digital signing and authenticity verification, thereby enhancing the ecosystem's security level.
These algorithms will be integrated into components like Android Verified Boot, with future deployment planned for Android Keystore and the Play Store app publication process. For developers, this means adapting their signing, verification, and authentication workflows to meet the new requirements.
The accelerated timeline stems from Google's own research, which indicates that current encryption methods—such as 2048-bit RSA keys—could become vulnerable. In theory, a powerful quantum computer with a million qubits could break such protection in under a week.
Overall, Google aims to proactively prepare for the quantum computing era, minimizing potential risks and safeguarding user data for years to come.