Google Security Blog

Android 17 introduces comprehensive post-quantum cryptography (PQC) upgrades across the platform, implementing NIST-standardized algorithms to future-proof security against quantum computing threats. Key changes include: upgrading Android Verified Boot with ML-DSA (Module-Lattice-Based Digital Signature Algorithm) for quantum-resistant boot integrity, migrating Remote Attestation to PQC-compliant architecture, adding native ML-DSA support to Android Keystore so developers can generate quantum-safe keys within secure hardware using standard APIs, and enabling hybrid classical+PQC signing for APKs through Google Play App Signing. These changes begin testing in Android 17 beta with general availability in the production release, covering billions of devices with minimal developer friction.

Google Online Security Blog: Security for the Quantum Era: Implementing Post-Quantum Cryptography in Android

Securing the foundation: Verified boot and hardware trust

Empowering developers: Android Keystore updates

Ecosystem scale: Bringing hybrid signing to Google Play apps and games

The cryptographic roadmap: From authenticity to privacy