How we brought HTTPS Everywhere to the cloud (part 1)

Published on by Ingvar Stepanyan.

CloudFlare's mission is to make HTTPS accessible for all our customers. It provides security for their websites, improved ranking on search engines, better performance with HTTP/2, and access to browser features such as geolocation that are being deprecated for plaintext HTTP. With Universal SSL or similar features, a simple button click can now enable encryption for a website. Unfortunately, as described in a previous blog post, this…

An overview of TLS 1.3 and Q&A

Published on by Filippo Valsorda.

The CloudFlare London office hosts weekly internal Tech Talks (with free lunch picked by the speaker). My recent one was an explanation of the latest version of TLS, 1.3, how it works and why it's faster and safer. You can watch the complete talk below or just read my summarized transcript. The Q&A session is open! Send us your questions about TLS 1.3 at…

Fixing the mixed content problem with Automatic HTTPS Rewrites

Published on by John Graham-Cumming.

CloudFlare aims to put an end to the unencrypted Internet. But the web has a chicken and egg problem moving to HTTPS. Long ago it was difficult, expensive, and slow to set up an HTTPS capable web site. Then along came services like CloudFlare’s Universal SSL that made switching from http:// to https:// as easy as clicking a button. With one click a site was served over…

Opportunistic Encryption: Bringing HTTP/2 to the unencrypted web

Published on by Nick Sullivan.

Encrypting the web is not an easy task. Various complexities prevent websites from migrating from HTTP to HTTPS, including mixed content, which can prevent sites from functioning with HTTPS. Opportunistic Encryption provides an additional level of security to websites that have not yet moved to HTTPS and the performance benefits of HTTP/2. Users will not see a security indicator for HTTPS in the address bar when visiting…

Introducing TLS 1.3

Published on by Nick Sullivan.

CloudFlare is turbocharging the encrypted internet The encrypted Internet is about to become a whole lot snappier. When it comes to browsing, we’ve been driving around in a beat-up car from the 90s for a while. Little does anyone know, we’re all about to trade in our station wagons for a smoking new sports car. The reason for this speed boost is TLS 1.3, a…