low

Google Wants to Transition to Post-Quantum Cryptography by 2029

April 6, 2026·Schneier on Security·Threat Intel
post-quantum-cryptographygooglecryptographyquantum-computingenterprise-security

Google Sets 2029 Target for Complete Post-Quantum Cryptography Transition

TL;DR

Google has announced plans to fully transition to post-quantum cryptography (PQC) by 2029, positioning itself ahead of the quantum computing threat timeline. While quantum computers capable of breaking current encryption may still be years away, security experts view this as a smart proactive move that enhances cryptographic agility across Google's ecosystem.

What Happened

Google has publicly committed to completing its transition to post-quantum cryptography by 2029, according to reporting by security researcher Bruce Schneier. This timeline puts Google several years ahead of most predictions about when quantum computers will pose a practical threat to current encryption standards like RSA and elliptic curve cryptography.

Post-quantum cryptography refers to cryptographic algorithms designed to be secure against attacks by both classical and quantum computers. The National Institute of Standards and Technology (NIST) has been standardizing these algorithms, with several approved standards now available for implementation.

Technical Analysis

Google's announcement reflects a broader industry shift toward "crypto-agility" — the ability to quickly update cryptographic systems when vulnerabilities emerge or new threats develop. Current widely-used encryption methods, including RSA-2048 and elliptic curve cryptography, would be vulnerable to sufficiently powerful quantum computers running Shor's algorithm.

The transition involves replacing vulnerable algorithms with quantum-resistant alternatives such as:


This isn't just swapping one algorithm for another — it requires updating protocols, certificate authorities, hardware security modules, and potentially millions of devices across Google's infrastructure and services.

Impact & Who's Affected

Google's commitment affects multiple stakeholder groups:

Enterprise customers using Google Cloud, Workspace, and other services will benefit from quantum-resistant protection without needing to manage the transition themselves.

Software developers building on Google's platforms will need to update their applications to work with new cryptographic standards, though Google will likely provide migration tools and backward compatibility periods.

The broader tech industry may accelerate their own PQC adoption timelines, as Google's move demonstrates both the feasibility and business case for early transition.

Government and regulated industries that rely on Google services will gain compliance advantages as post-quantum requirements become mandatory.

What You Should Do

For security teams:


For developers:

The Bigger Picture

Google's 2029 timeline signals that post-quantum cryptography is moving from academic research to production reality. While the immediate quantum threat may be distant, the transition period will be lengthy and complex. Organizations that begin planning now will avoid the rushed, potentially insecure migrations that often accompany cryptographic emergencies.

This announcement also highlights the importance of cryptographic forward-thinking. As Schneier noted in his analysis, the value lies not in defending against an imminent quantum threat, but in building systems capable of adapting to future cryptographic needs — a capability that will serve organizations well beyond the quantum computing era.

The industry should view Google's commitment as both validation of post-quantum cryptography's maturity and a competitive benchmark for their own transition planning.

← All Threat IntelSource: Schneier on Security