Google has announced that it is integrating quantum resistance into its cloud security structure. As revealed, Google introduced quantum-safe digital signatures in its Cloud KMS and Cloud HSM.
Google Cloud KMS Jazzed Up With Quantum-Safe Encryption
According to its recent post, Google now boosts Cloud security with quantum-resistance. The firm introduced quantum-safe digital signatures in the Google Cloud Key Management Service (Cloud KMS) and Hardware Security Modules (Cloud HSM). That means users can have a secure computing experience with both software and hardware security products from Google.
As explained by Jennifer Fernick, Senior Staff Security Engineer, Product Security Engineering, and Andrew Foster, Engineering Manager, Cloud KMS, Google Cloud KMS will include quantum-safe digital signatures (FIPS 204/FIPS 205) in software-based keys. This will help protect the underlying encryption from possible post-quantum attacks in the wake of the existing “harvest now, decrypt later” (HNDL) threats.
Specifically, Google decided to proceed with this move to comply with the latest PQC standards from the National Institute of Standards and Technology (NIST). This PQC strengthening would include key steps such as support for standardized quantum-safe algorithms and a smooth migration to PQC, strengthening Google’s core infrastructure with PQC, monitoring existing PQC algorithms and implementations for performance and security, and spreading the word about PQC.
In addition, Google also pledged to ensure thorough transparency in the process. As stated,
Our underlying software implementations of these standards for Cloud KMS clients will be available as open-source software. They will also be maintained as part of the Google-authored, open-source cryptographic libraries BoringCrypto and Tink to enable full transparency and code-auditability of our algorithmic implementations to our customers and to the broader security community.
This isn’t Google’s first move to address core security concerns and implement appropriate remedial measures in its products. Last year, Google also shared details about jazzing up its Gemini AI privacy policies.
Yet, Google isn’t the only one focusing on PQC encryption. As concerns about the vulnerabilities of existing encryption protocols grew over the past years, tech giants like Apple and Zoom and privacy-oriented services like Signal have also adopted PQC to strengthen their existing products’ encryption and secure their customers from future threats.
Let us know your thoughts in the comments.
