Google has unveiled plans to bolster the security of Chrome’s HTTPS certificates against potential threats posed by quantum computing. The tech giant aims to transition to a system based on Merkle Tree Certificates (MTCs), ensuring future-proof protection.
Enhancing Security Through Merkle Tree Certificates
While the Chrome Root Store will not initially incorporate post-quantum cryptography due to concerns over TLS connection performance, Google is focusing on MTCs. These certificates utilize compact Merkle Tree proofs, effectively reducing bandwidth usage associated with traditional X.509 certificate chains.
In this innovative framework, a Certification Authority (CA) signs a ‘Tree Head’, representing a multitude of certificates. The browser receives a lightweight proof of inclusion, minimizing the data transmitted during the TLS handshake and maintaining superior security.
Partnerships and Trials with Cloudflare
Google has conducted experiments with MTCs in Chrome, working alongside Cloudflare to evaluate the security and performance of MTC-reliant TLS connections. These connections are currently supported by trusted X.509 certificates, highlighting a blend of modern and traditional security measures.
By early 2027, once the technology is validated, CT Log operators with logs active in Chrome since before February 2026 will be invited to help bootstrap public MTCs. These operators are considered well-suited to facilitate the rapid and effective deployment of MTCs, given their expertise in running large-scale security services.
Future Outlook for Chrome’s Quantum Resistance
Google plans to finalize the criteria for integrating Certification Authorities into a new Chrome Quantum-resistant Root Store (CQRS) by late 2027. This new trust store will be crafted to meet the unique demands of a post-quantum internet, operating alongside the current Chrome Root Program to ensure a seamless transition.
During this transition, websites can choose to lower protection levels, allowing only those interested in employing quantum-resistant certificates to do so. This strategy underscores Google’s commitment to maintaining high security standards while adapting to emerging technological landscapes.
As quantum computing and cybersecurity continue to evolve, Google’s proactive approach in adopting MTCs will play a crucial role in safeguarding internet communications against future quantum threats.
