2026-02-23
We’ve upgraded Cloudflare One to support post-quantum encryption by implementing the latest IETF drafts for hybrid ML-KEM into our Cloudflare IPsec product. This extends post-quantum encryption across all major Cloudflare One on-ramps and off-ramps....
Continue reading »
2025-10-30
The world is adopting anonymous credentials for digital privacy, but these systems are vulnerable to quantum computers. This post explores the cryptographic challenges and promising research paths toward building new, quantum-resistant credentials from the ground up....
2025-10-28
Cloudflare is launching an experiment with Chrome to evaluate fast, scalable, and quantum-ready Merkle Tree Certificates, all without degrading performance or changing WebPKI trust relationships....
2025-10-16
There's no way to audit a site’s client-side code as it changes, making it hard to trust sites that use cryptography. We preview a specification we co-authored that adds auditability to the web....
2025-09-24
To prepare for a future where powerful quantum computers come online, we've upgraded our WARP client with post-quantum cryptography....
September 19, 2025 1:44 PM
Post-quantum cryptography protects against quantum threats using today’s hardware. Quantum tech like QKD may sound appealing, but it isn’t necessary or sufficient to secure organizations....
July 01, 2025 10:00 AM
Bots can start authenticating to Cloudflare using public key cryptography, preventing them from being spoofed and allowing origins to have confidence in their identity....
May 15, 2025 1:00 PM
Bots now browse like humans. We're proposing bots use cryptographic signatures so that website owners can verify their identity. Explanations and demonstration code can be found within the post....
March 25, 2025 1:00 PM
OPKSSH (OpenPubkey SSH) is now open-sourced as part of the OpenPubkey project....
March 21, 2025 1:00 PM
This post is a beginner's guide to lattices, the math at the heart of the transition to post-quantum (PQ) cryptography. It explains how to do lattice-based encryption and authentication from scratch....
March 19, 2025 1:00 PM
It's hard to tell the difference between web content produced by humans and web content produced by AI. We're taking new approach to making AI content distinguishable without impacting performance. ...
March 17, 2025 1:00 PM
We’re thrilled to announce that organizations can now protect their sensitive corporate network traffic against quantum threats by tunneling it through Cloudflare’s Zero Trust platform....
March 17, 2025 12:00 PM
Cloudflare is now using a wall of waves in our Lisbon, Portugal office to create entropy and strengthen Internet security, turning liquid chaos into secure, unpredictable encryption....
November 07, 2024 2:00 PM
NIST has standardized four post-quantum signature schemes so far, and they’re not done yet: there are fourteen new candidates in the running for standardization....
August 20, 2024 9:00 PM
NIST has published the first cryptographic standards for protecting against attacks from quantum computers. Learn what this means for you and your organization....
September 29, 2023 1:00 PM
Starting today, you can secure the connection between Cloudflare and your origin server with post-quantum cryptography...
March 16, 2023 1:00 PM
The recent news reports of AI cracking post-quantum cryptography are greatly exaggerated. In this blog, we take a deep dive into the world of side-channel attacks and how AI has been used for more than a decade already to aid it...
January 27, 2023 2:00 PM
Using the story of Geo Key Manager v2 as an example, let’s re-imagine access control for distributed systems using a variant of public-key cryptography, called attribute-based encryption....
October 03, 2022 1:01 PM
The future of a private and secure Internet is at stake; that is why today we have enabled post-quantum cryptography support for all our customers...
October 03, 2022 1:00 PM
Every connection we make post-quantum secure, we remove one opportunity for compromise: that's why we are announcing post-quantum Cloudflare Tunnel to help you secure every connection to our network...
