TLS 1.3 explained by the Cloudflare Crypto Team at 33c3

Published on by Filippo Valsorda.

Nick Sullivan and I gave a talk about TLS 1.3 at 33c3, the latest Chaos Communication Congress. The congress, attended by more that 13,000 hackers in Hamburg, has been one of the hallmark events of the security community for more than 30 years. You can watch the recording below, or download it in multiple formats and languages on the CCC website. The talk introduces TLS 1.…

Firebolt: the fastest, safest ads on the web

Published on by Dane Knecht.

Cloudflare’s mission is to help build a better Internet. That means a faster, more secure, open Internet world-wide. We have millions of customers using our services like free SSL, an advanced WAF, the latest compression and the most up to date security to ensure that their web sites, mobile apps and APIs are secure and fast. One vital area of web technology has lagged behind in terms…

Introducing Accelerated Mobile Links: Making the Mobile Web App-Quick

Published on by Matthew Prince.

In 2017, we've predicted that more than half of the traffic to Cloudflare's network will come from mobile devices. Even if they are formatted to be displayed on a small screen, the mobile web is built on traditional web protocols and technologies that were designed for desktop CPUs, network connections, and displays. As a result, browsing the mobile web feels sluggish compared with using native mobile apps. In…

Cloudflare’s Transparency Report for Second Half 2016 and an Additional Disclosure for 2013

Published on by Kenneth R. Carter.

Cloudflare is publishing today its seventh transparency report, covering the second half of 2016. For the first time, we are able to present information on a previously undisclosed National Security Letter (NSL) Cloudflare received in the 2013 reporting period. Wikipedia provides the most succinct description of an NSL: An NSL is an administrative subpoena issued by the United States federal government to gather information for national security purposes.…

Token Authentication for Cached Private Content and APIs

Published on by Michael Tremante.

While working to make the Internet a better place, we also want to make it easier for our customers to have control of their content and APIs, and who has access to them. Using Cloudflare’s Token Authentication features, customers can implement access control via URL tokens or HTTP request headers without having to build complex back-end systems. Cloudflare will check these tokens at the edge before any…