75/68 Tuesday, February 25, 2025
Google Cloud has announced the launch of digital signatures designed to protect against quantum computer attacks within its Cloud Key Management Service (Cloud KMS), now available for trial. This initiative is part of Google’s effort to prepare for future threats, as quantum computers may potentially break traditional encryption methods. The approach aligns with the Post-Quantum Cryptography (PQC) standards set by the U.S. National Institute of Standards and Technology (NIST).
Cloud KMS is Google’s encryption key management system that allows users to create, store, and manage encryption keys to safeguard critical data. However, traditional encryption methods such as RSA and ECC may become vulnerable to decryption by future quantum computers. This threat is linked to the “Harvest Now, Decrypt Later” (HNDL) attack model, where cybercriminals collect encrypted data today and wait for quantum technology to advance enough to decrypt it in the future. Although quantum computers capable of breaking modern encryption have not yet materialized, the risk posed by HNDL has driven organizations to adopt proactive security measures. This urgency has been further reinforced by Microsoft’s recent advancements in quantum chip technology with its Majorana 1 development.
To address these concerns, Google has integrated post-quantum cryptography into both its Cloud KMS (software-based) and Cloud HSM (hardware-based) solutions. These implementations include NIST-standardized algorithms:
- ML-DSA-65 (FIPS 204): A lattice-based digital signature algorithm.
- SLH-DSA-SHA2-128S (FIPS 205): A stateless hash-based digital signature algorithm.
Google states that these algorithms enhance Cloud KMS’s ability to securely sign and verify digital signatures against potential quantum threats. The company is inviting organizations, especially those requiring high security—such as government agencies, financial institutions, and critical infrastructure operators—to test these technologies and provide feedback. This initiative marks a significant step for the cloud computing and cybersecurity industry, ensuring that organizations are prepared for emerging threats. Businesses and institutions are encouraged to adopt post-quantum cryptographic solutions to ensure the long-term security of their sensitive data, even as quantum computing reaches new heights.
