Delegated Credentials for TLS
2019-11-01
Announcing support for a new cryptographic protocol making it possible to deploy encrypted services while still maintaining performance and control of private keys: Delegated Credentials for TLS. ...
Announcing cfnts: Cloudflare's implementation of NTS in Rust
2019-10-31
Several months ago we announced that we were providing a new public time service. Part of what we were providing was the first major deployment of the new Network Time Security protocol, with a newly written implementation of NTS in Rust. ...
The TLS Post-Quantum Experiment
2019-10-30
In a June 2019 experiment with Google, we implemented two post-quantum key exchanges, integrated them into our TLS stack and deployed the implementation on edge servers and in Chrome Canary clients....
DNS Encryption Explained
2019-10-29
The Domain Name System (DNS) is the address book of the Internet. When you visit cloudflare.com or any other site, your browser will ask a DNS resolver for the IP address where the website can be found. Unfortunately, these DNS queries and answers are typically unprotected....
50 Years of The Internet. Work in Progress to a Better Internet
2019-10-29
Over fifty years ago, the first network packet took flight from the UCLA campus to the Stanford Research Institute. This kicked-off the world of packet networking, ARPANET, and the modern Internet....
Fifty Years Ago
2019-10-29
On 29 October 2019, Professor Leonard (“Len”) Kleinrock is chairing a celebration at the University of California, Los Angeles (UCLA). The date is the fiftieth anniversary of the first full system test and remote host-to-host login over the Arpanet....
Supporting the latest version of the Privacy Pass Protocol
2019-10-28
At Cloudflare, we are committed to supporting and developing new privacy-preserving technologies that benefit all Internet users. In November 2017, we announced server-side support for the Privacy Pass protocol, a piece of work developed in collaboration with the academic community....
Tales from the Crypt(o team)
2019-10-27
Halloween season is upon us. This week we’re sharing a series of blog posts about work being done at Cloudflare involving cryptography, one of the spookiest technologies around....
Public keys are not enough for SSH security
2019-10-25
If your organization uses SSH public keys, it’s entirely possible you have already lost one. There is a file sitting in a backup or on a former employees computer which grants the holder access to your infrastructure....
Cloudflare response to CPDoS exploits
2019-10-24
Three vulnerabilities were disclosed as Cache Poisoning Denial of Service attacks in a paper written by Hoai Viet Nguyen, Luigi Lo Iacono, and Hannes Federrath of TH Köln - University of Applied Sciences. These attacks are similar to the cache poisoning attacks presented last year at DEFCON....
Who DDoS'd Austin?
2019-10-24
It was a scorching Monday on July 22 as temperatures soared above 37°C (99°F) in Austin, TX, the live music capital of the world. Only hours earlier, the last crowds dispersed from the historic East 6th Street entertainment district. ...
Experiment with HTTP/3 using NGINX and quiche
2019-10-17
Just a few weeks ago we announced the availability on our edge network of HTTP/3, the new revision of HTTP intended to improve security and performance on the Internet. Everyone can now enable HTTP/3 on their Cloudflare zone...
It's crowded in here!
2019-10-12
We recently gave a presentation on Programming socket lookup with BPF at the Linux Plumbers Conference 2019 in Lisbon, Portugal....
What's it like to come out as LGBTQIA+ at work?
2019-10-11
Today is the 31st Anniversary of National Coming Out Day. We wanted to highlight the importance of this day, share coming out resources, and publish some stories of what it's like to come out in the workplace....
Good Morning, Jakarta!
2019-10-11
Beneath the veneer of glass and concrete, this is a city of surprises and many faces. On 3rd October 2019, we brought together a group of leaders from across a number of industries to connect in Central Jakarta, Indonesia. ...
Terraforming Cloudflare: in quest of the optimal setup
2019-10-09
This post is about our introductive journey to the infrastructure-as-code practice; managing Cloudflare configuration in a declarative and version-controlled way....
Talk Transcript: How Cloudflare Thinks About Security
2019-10-08
This is the text I used for a talk at artificial intelligence powered translation platform, Unbabel, in Lisbon on September 25, 2019....
The Serverlist: Static sites, serverless costs, and more
2019-10-02
Check out our eighth edition of The Serverlist below. Get the latest scoop on the serverless space, get your hands dirty with new developer tutorials, engage in conversations with other serverless developers, and find upcoming meetups and conferences to attend....
Learn more about Workers Sites at Austin & San Francisco Meetups
2019-10-02
Last Friday, at the end of Cloudflare’s 9th birthday week, we announced Workers Sites. Now, using the Wrangler CLI, you can deploy entire websites directly to the Cloudflare Network using Cloudflare Workers and Workers KV....
Not so static... Introducing the HTMLRewriter API Beta to Cloudflare Workers
2019-09-30
Today, we’re excited to announce HTMLRewriter beta — a streaming HTML parser with an easy to use selector based JavaScript API for DOM manipulation, available in the Cloudflare Workers runtime....
