Nick Sullivan - The Cloudflare Blog (Page 15)

February 14, 2014 1:00AM

Introducing Strict SSL: Protecting Against a On-Path Attack on Origin Traffic

TLS HTTPS Crypto Encryption SSL Security

At CloudFlare, we are always looking for ways to improve the security of our customers’ websites. One of the features we provide is the ability to serve their website encrypted over SSL/TLS....

Nick Sullivan

January 06, 2014 12:00PM

How the NSA (may have) put a backdoor in RSA’s cryptography: A technical primer

Crypto Privacy

There has been a lot of news lately about nefarious-sounding backdoors being inserted into cryptographic standards and toolkits. One algorithm, a pseudo-random bit generator, Dual_EC_DRBG, was ratified by the National Institute of Standards and Technology (NIST) in 2007....

Nick Sullivan

November 21, 2013 9:00AM

Red October: CloudFlare’s Open Source Implementation of the Two-Man Rule

Crypto Open Source Encryption RSA GitHub TLS Security

At CloudFlare, we are always looking for better ways to secure the data we’re entrusted with. This means hardening our system against outside threats such as hackers, but it also means protecting against insider threats....

Nick Sullivan

October 24, 2013 4:00AM

A (Relatively Easy To Understand) Primer on Elliptic Curve Cryptography

HTTPS Elliptic Curves Crypto Security

Elliptic Curve Cryptography (ECC) is one of the most powerful but least understood types of cryptography in wide use today. At CloudFlare, we make extensive use of ECC to secure everything from our customers' HTTPS connections to how we pass data between our data centers....

Nick Sullivan

October 03, 2013 6:00AM

Ensuring Randomness with Linux's Random Number Generator

SSL Entropy Linux

When building secure systems, having a source of random numbers is essential. Without them, most cryptographic systems break down and the privacy and authenticity of communications between two parties can be subverted....

Nick Sullivan