The post-quantum future: challenges and opportunities
2022-02-25
The story and path of post-quantum cryptography is clear. But, what are the future challenges? In this blog post, we explore them...
Cloudflare Research: Two Years In
2021-10-10
What Cloudflare Research has been up to for the last two years....
Heartbleed Revisited
2021-03-27
TLS key compromise is a risk for all web services. Taking lessons from Heartbleed, Cloudflare offers the latest features that make key compromise less of a risk....
Securing the post-quantum world
2020-12-11
As quantum computing matures, R&D efforts in cryptography are keeping pace. We’re working with academia and industry peers to create new cryptography standards resilient to quantum computer attacks....
Helping build the next generation of privacy-preserving protocols
2020-12-08
Today, we’re making several announcements around improving Internet protocols with respect to something important to our customers and Internet users worldwide: privacy....
SAD DNS Explained
2020-11-13
Researchers from UC Riverside and Tsinghua University found a new way to revive a decade-old DNS cache poisoning attack. Read our deep dive into how the SAD DNS attack on DNS resolvers works, how we protect against this attack in 1.1.1.1, and what the future holds for DNS cache poisoning attacks....
Going Keyless Everywhere
2019-11-01
Time flies. The Heartbleed vulnerability was discovered just over five and a half years ago. Heartbleed became a household name not only because it was one of the first bugs with its own web page and logo, but because of what it revealed about the fragility of the Internet as a whole....
Delegated Credentials for TLS
2019-11-01
Announcing support for a new cryptographic protocol making it possible to deploy encrypted services while still maintaining performance and control of private keys: Delegated Credentials for TLS. ...
Tales from the Crypt(o team)
2019-10-27
Halloween season is upon us. This week we’re sharing a series of blog posts about work being done at Cloudflare involving cryptography, one of the spookiest technologies around....
Cloudflare’s Approach to Research
2019-09-18
Cloudflare’s mission is to help build a better Internet. One of the tools used in pursuit of this goal is computer science research. We’ve learned that some of the difficult problems to solve are best approached through research...
How Cloudflare and Wall Street Are Helping Encrypt the Internet Today
2019-09-13
Today has been a big day for Cloudflare, as we became a public company on the New York Stock Exchange (NYSE: NET). To mark the occasion, we decided to bring our favorite entropy machines to the floor of the NYSE....
Welcome to Crypto Week 2019
2019-06-16
The Internet is an extraordinarily complex and evolving ecosystem. Its constituent protocols range from the ancient and archaic (hello FTP) to the modern and sleek (meet WireGuard), with a fair bit of everything in between. ...
Welcome to Crypto Week
2018-09-17
The Internet is an amazing invention. We marvel at how it connects people, connects ideas, and makes the world smaller. But the Internet isn’t perfect. It was put together piecemeal through publicly funded research, private investment, and organic growth that has left us with an imperfect tapestry....
A Detailed Look at RFC 8446 (a.k.a. TLS 1.3)
2018-08-10
TLS 1.3 (RFC 8446) was published today. This article provides a deep dive into the changes introduced in TLS 1.3 and its impact on the future of internet security....
Introducing Certificate Transparency and Nimbus
2018-03-23
Certificate Transparency (CT) is an ambitious project to help improve security online by bringing accountability to the system that protects HTTPS. Cloudflare is announcing support for this project by introducing two new public-good services....
Why TLS 1.3 isn't in browsers yet
2017-12-26
Upgrading a security protocol in an ecosystem as complex as the Internet is difficult. You need to update clients and servers and make sure everything in between continues to work correctly. The Internet is in the middle of such an upgrade right now. ...
Cloudflare supports Privacy Pass
2017-11-09
Cloudflare supports Privacy Pass, a recently-announced privacy-preserving protocol developed in collaboration with researchers from Royal Holloway and the University of Waterloo. ...
Geo Key Manager: How It Works
2017-09-26
Today we announced Geo Key Manager, a feature that gives customers control over where their private keys are stored with Cloudflare. This builds on a previous Cloudflare innovation called Keyless SSL and a novel cryptographic access control mechanism....
High-reliability OCSP stapling and why it matters
2017-07-10
At Cloudflare our focus is making the internet faster and more secure. Today we are announcing a new enhancement to our HTTPS service: High-Reliability OCSP stapling....
How to make your site HTTPS-only
2017-07-06
The Internet is getting more secure every day as people enable HTTPS, the secure version of HTTP, on their sites and services....