Big Tech accelerates quantum-safe crypto timelines as Q-Day approaches
Original: Recent advances push Big Tech closer to the Q-Day danger zone
Why This Matters
Major tech companies are racing to implement quantum-resistant encryption before quantum computers break current security systems.
Google and Cloudflare moved up their post-quantum cryptography readiness deadlines to 2029, accelerating by five years due to research suggesting cryptographically relevant quantum computers may arrive sooner than expected.
Google and Cloudflare have accelerated their internal post-quantum cryptography (PQC) readiness deadlines to 2029, moving up timelines by approximately five years. The acceleration follows recent research indicating that cryptographically relevant quantum computers (CRQC) capable of breaking current RSA and elliptic curve encryption may emerge sooner than previously estimated. The companies' new timelines align with US government goals, as the Defense Department requires quantum-safe algorithms for national security systems by December 2031, and NIST calls for deprecation of vulnerable algorithms by 2035. However, other major players like Amazon and Microsoft maintain longer timelines, extending two to six years beyond the accelerated deadlines. The urgency stems from historical precedent, including the 2010 Flame malware attack that exploited MD5 vulnerabilities in Microsoft's update system. While many experts doubt CRQC will arrive by 2029, industry leaders emphasize the necessity of preparation given the complexity of transitioning cryptographic infrastructure.