Introducing: Backup Certificates
2022-03-14
We are excited to introduce backup certificates to increase reliability of our service for anyone using the Cloudflare platform in the event of key compromises or related issues...
Welcome to Security Week 2022!
2022-03-13
Welcome to our first innovation week of the year: Security Week! In this post we will be going over Cloudflare’s security products’ history giving you an introduction to all the great announcements we have planned...
How Cloudflare verifies the code WhatsApp Web serves to users
2022-03-10
Understand how Cloudflare is helping WhatsApp verify the code they’re using for secure messaging hasn’t been tampered with...
Stream now supports SRT as a drop-in replacement for RTMP
2022-03-10
RTMP is not the protocol to carry us into the future so Cloudflare Stream now supports SRT in wherever you would use RTMP for. ...
DNSSEC issues take Fiji domains offline
2022-03-09
DNSSEC issues with the .fj ccTLD caused problems reaching websites on the island nation...
Announcing experimental DDR in 1.1.1.1
2022-03-08
The majority of DNS queries on the Internet today are unencrypted. This post describes a new protocol, called Discovery of Designated Resolvers (DDR), that allows clients to upgrade from unencrypted DNS to encrypted DNS when only the IP address of a resolver is known. ...
CVE-2022-26143: A Zero-Day vulnerability for launching UDP amplification DDoS attacks
2022-03-08
A zero-day vulnerability in the Mitel MiCollab business phone system has recently been discovered (CVE-2022-26143). This vulnerability, called TP240PhoneHome, which Cloudflare customers are already protected against, can be used to launch UDP amplification attacks...
CVE-2022-26143: TP240PhoneHome reflection/amplification DDoS attack vector
2022-03-08
A new reflection/amplification distributed denial-of-service (DDoS) vector with a record-breaking potential amplification ratio of 4,294,967,296:1 has been abused by attackers in the wild to launch multiple high-impact DDoS attacks...
International Women’s Day 2022
2022-03-08
Welcome to International Women’s Day 2022! Here at Cloudflare, we are happy to celebrate it with you! Our celebration is not only this blog post, but many events prepared for the month of March: our way of honoring Women’s History Month by showcasing women’s empowerment...
Cloudflare, CrowdStrike, and Ping Identity launch the Critical Infrastructure Defense Project
2022-03-07
Today, Cloudflare is launching the Critical Infrastructure Defense Project. The Project was born out of conversations with cybersecurity and government experts concerned about potential retaliation to the sanctions that resulted from the Russian invasion of Ukraine...
Steps we've taken around Cloudflare's services in Ukraine, Belarus, and Russia
2022-03-07
At Cloudflare, we've watched in horror the Russian invasion of Ukraine. As the possibility of war looked more likely, we began to carefully monitor the situation on the ground, with the goal of keeping our employees, our customers, and our network safe...
Shields up: free Cloudflare services to improve your cyber readiness
2022-03-04
Whether you’re a seasoned IT professional or a novice website operator, these free Cloudflare resources are available for you today. Beyond these free resources, there are a few simple steps that you can take to help stay protected online...
Internet traffic patterns in Ukraine since February 21, 2022
2022-03-04
Cloudflare operates in more than 250 cities worldwide where we connect our equipment to the Internet to provide our broad range of services...
iCloud Private Relay: information for Cloudflare customers
2022-03-02
iCloud Private Relay is a new Internet privacy service from Apple that allows users to connect to the Internet and browse with Safari in a more secure and private way. Cloudflare is proud to work with Apple to operate portions of Private Relay infrastructure...
The post-quantum future: challenges and opportunities
2022-02-25
The story and path of post-quantum cryptography is clear. But, what are the future challenges? In this blog post, we explore them...
Post-quantumify internal services: Logfwrdr, Tunnel, and gokeyless
2022-02-25
A big challenge is coming: to change all internal connections at Cloudflare to use post-quantum cryptography. Read how we are tackling this challenge!...
HPKE: Standardizing public-key encryption (finally!)
2022-02-24
HPKE (RFC 9180) was made to be simple, reusable, and future-proof by building upon knowledge from prior PKE schemes and software implementations. This article provides an overview of this new standard, going back to discuss its motivation, design goals, and development process...
Cloudflare re-enforces commitment to security in Germany via BSIG audit
2022-02-24
As Cloudflare expands globally, Rebecca Rogers, Manager of Security Validations, discusses an exciting update to Cloudflare’s commitment to customer security for our German customers...
Building Confidence in Cryptographic Protocols
2022-02-24
This blogpost refers to the efforts to use formal/verification/implementation for post-quantum algorithms to achieve better assurance for them. It also touches on our Cloudflare efforts on this...
Using EasyCrypt and Jasmin for post-quantum verification
2022-02-24
This blogpost will touch upon how to practically use Jasmin and EasyCrypt to achieve better security guarantees when verifying KEMs...