Quantum Safe
Active examples and case studies
Hey there!
In the last issue of The Quantum Vibe, we explored Google Quantum AI’s recent breakthrough that talked about taking quantum computing closer to breaking classical encryption (read it here). While that future still waits for a capable machine, the threat is already very real. This is due to the growing concern of “harvest now, decrypt later”, where attackers can intercept and store sensitive encrypted data today, and decrypt it later once quantum computers become powerful enough. This issue of The Quantum Vibe surveys the growing ecosystem of quantum-safe technologies, offering a case study of how different players are addressing the coming quantum threat.
What Does "Quantum-Safe" Mean?
Quantum-safe technologies are designed to protect data against the capabilities of quantum computers. There are two core approaches:
Post-Quantum Cryptography (PQC): Classical encryption algorithms that are difficult to crack even with quantum computers. PQC relies on problems that resist both classical and quantum attacks.
Quantum Key Distribution (QKD): A physical-layer solution that uses quantum mechanics, particularly entanglement and no-cloning theorems, to securely exchange encryption keys.
While promising, QKD is still limited by hardware and deployment complexity, PQC is already being standardized and rolled out across industries.
Case Study: Apple’s iMessage and PQ3 Encryption
When we think of quantum tech, we often think of Google, IBM, Amazon, or Nvidia. But surprisingly, one of the most advanced implementations of PQC today comes from Apple. In 2011, iMessage was launched as the most secure communication platform and is still the most secure platform. With its recent upgrade to PQ3, Apple now offers Level 3 quantum-safe encryption which can be understood as:
Level 0: No encryption — e.g., Telegram
Level 1: Classical encryption — e.g., WhatsApp
Level 2: PQC for initial key exchange; classical rekeying/verification — e.g., Signal
Level 3: PQC for both initial key exchange and rekeying; classical verification — e.g., Apple iMessage
The key benefit of PQ3 is post-compromise security. If a malicious actor gains access to current keys, PQ3 ensures that future messages remain secure, something classical protocols cannot guarantee. Apple provides a technical breakdown of PQ3 in their excellent blog post (read it here). Of course, the next step for Apple is to integrate PQC-based key verification, moving iMessage to full-stack quantum-safe encryption.
Industry Survey: Quantum-Safe Moves Beyond Messaging
Beyond personal communication, cloud services and data centers are critical areas for quantum-safe technologies.
Google began experimenting with PQC in 2016. By 2022, it had integrated PQC protocols into its internal communications. As of February 2025, digital signatures on Google Cloud are secured with PQC standards. (Read more here).
Amazon Web Services (AWS) has deployed PQC across Key Management Service, Secrets Manager, and Certificate Manager. Their latest blog includes sample JavaScript(s) and updates for developers integrating PQC, read here.
A growing market of third-party vendors now offers PQC migration solutions for businesses, with services ranging from email encryption to secure VPNs and code signing tools.
At the heart of all this is the NIST PQC Standardization, which after years of global collaboration, finalized its first set of standards in August 2024. These are now forming the foundation for enterprise-grade migration to quantum-safe systems worldwide.
Quantum computing may still be maturing, but the quantum security race is already on. Post-quantum cryptography is not just a theoretical solution. It’s a practical, deployable way to secure our digital future using existing infrastructure.
So, that’s that from this issue. Until next time, stay curious.