Get in contact with a Data Security Specialist
Thales Quantum Resistant Solutions for Google Workspace
Enhanced Privacy and Confidentiality using Google Workspace Client-side Encryption for a Post-Quantum World
Discover how Google Workspace and Thales empower your enterprise with future-proof privacy, robust encryption, and total key control—essential reading for organizations preparing for the quantum era.
This solution brief presents a joint approach by Google and Thales to deliver enhanced privacy and confidentiality for enterprises leveraging Google Workspace, especially in the context of rising threats posed by quantum computing. As organizations increasingly rely on cloud technologies, they face the challenge of maintaining strong security and compliance while retaining control over their encryption keys.
Google Workspace addresses these needs through Client-side Encryption, empowering customers with control over their encryption keys, managed externally via Thales SafeNet Trusted Access and CipherTrust Cloud Key Management. By integrating an independent Identity Provider (IDP) and External Key Manager (EKM) from Thales, organizations can ensure only authorized users can access protected documents and benefit from an elevated level of security.
To achieve quantum resilience, the solution utilizes a hybrid cryptography approach. It combines X25519 (a well-established elliptic curve algorithm) with Kyber-768, a post-quantum algorithm, to generate session keys for encrypting bulk TLS connections. This dual-algorithm method increases robustness against current and future cryptographic threats.
Thales' CipherTrust Cloud Key Management, fully integrated with Google’s Client-side Encryption, offers end-to-end protection of identities and separate management of encryption keys and sensitive data. Optional integration with Luna HSMs provides a FIPS 140-3 Level 3 quantum-safe root of trust. Thales demonstrates leadership in post-quantum cryptography through co-development of the FN-DSA Algorithm (formerly Falcon), selected by NIST for digital signature standardization.
Additionally, Thales Luna Hardware Security Modules and High Speed Encryptors already offer quantum-safe capabilities and native support for PQC algorithms in existing product lines. Thales continues to collaborate across the technology industry to ensure readiness for the post-quantum cryptography era.
In summary, this joint solution delivers future-proof privacy and security for cloud-based enterprises, leveraging advanced cryptography, robust key management, and industry-leading innovation to prepare organizations for the challenges of a post-quantum world.