Google Cloud Blog
Follow
Announcing quantum-safe Key Encapsulation Mechanisms in Cloud KMS
Quantum computers pose a future threat to current public-key cryptography, necessitating a transition to post-quantum cryptography. Google Cloud is now offering preview support for post-quantum Key Encapsulation Mechanisms (KEMs) in Cloud KMS to help customers prepare. This addresses "Harvest Now, Decrypt Later" attacks where data is captured today for future decryption by quantum computers. Migrating to post-quantum KEMs involves architectural changes and managing larger key and ciphertext sizes, which can impact performance. Developers should consider using standards like Hybrid Public Key Encryption (HPKE) for easier integration. A hybrid approach, combining classical and post-quantum algorithms, is recommended for most applications to hedge against potential flaws in new algorithms. Cloud KMS now supports ML-KEM-768, ML-KEM-1024, and the hybrid X-Wing KEM. These capabilities are accessible via the Cloud KMS API and will be supported in Google's open-source libraries. The migration is a long-term process, with Tink library support for HPKE expected soon. Google Cloud infrastructure will also be upgraded to use post-quantum cryptography for connections. The company remains committed to evolving its quantum-safe offerings as standards develop.