Android 17 introduces comprehensive post-quantum cryptography (PQC) upgrades across the platform, implementing NIST-standardized algorithms to future-proof security against quantum computing threats. Key changes include: upgrading Android Verified Boot with ML-DSA (Module-Lattice-Based Digital Signature Algorithm) for quantum-resistant boot integrity, migrating Remote Attestation to PQC-compliant architecture, adding native ML-DSA support to Android Keystore so developers can generate quantum-safe keys within secure hardware using standard APIs, and enabling hybrid classical+PQC signing for APKs through Google Play App Signing. These changes begin testing in Android 17 beta with general availability in the production release, covering billions of devices with minimal developer friction.
Table of contents
Securing the foundation: Verified boot and hardware trustEmpowering developers: Android Keystore updatesEcosystem scale: Bringing hybrid signing to Google Play apps and gamesThe cryptographic roadmap: From authenticity to privacySort: