How we brought HTTPS Everywhere to the cloud (part 1)

Published on by Ingvar Stepanyan.

CloudFlare's mission is to make HTTPS accessible for all our customers. It provides security for their websites, improved ranking on search engines, better performance with HTTP/2, and access to browser features such as geolocation that are being deprecated for plaintext HTTP. With Universal SSL or similar features, a simple button click can now enable encryption for a website. Unfortunately, as described in a previous blog post, this…

An overview of TLS 1.3 and Q&A

Published on by Filippo Valsorda.

The CloudFlare London office hosts weekly internal Tech Talks (with free lunch picked by the speaker). My recent one was an explanation of the latest version of TLS, 1.3, how it works and why it's faster and safer. You can watch the complete talk below or just read my summarized transcript. Update: you might want to watch my more recent and extended 33c3 talk instead. The Q&…

Opportunistic Encryption: Bringing HTTP/2 to the unencrypted web

Published on by Nick Sullivan.

Encrypting the web is not an easy task. Various complexities prevent websites from migrating from HTTP to HTTPS, including mixed content, which can prevent sites from functioning with HTTPS. Opportunistic Encryption provides an additional level of security to websites that have not yet moved to HTTPS and the performance benefits of HTTP/2. Users will not see a security indicator for HTTPS in the address bar when visiting…