Encryption - The Cloudflare Blog

Armed to Boot: an enhancement to Arm's Secure Boot chain

January 25, 2023 2:00PM

Enhancing the Arm Secure Boot chain to improve platform security on modern systems....

Helping build the next generation of privacy-preserving protocols

December 08, 2020 12:00PM

Privacy Week Encryption Cryptography DNS DoH

Today, we’re making several announcements around improving Internet protocols with respect to something important to our customers and Internet users worldwide: privacy....

Nick Sullivan

Anchoring Trust: A Hardware Secure Boot Story

November 17, 2020 12:00PM

Security Hardware Encryption Data Center Cloudflare Network

As a security company, we pride ourselves on finding innovative ways to protect our platform to, in turn, protect the data of our customers. Part of this approach is implementing progressive methods in protecting our hardware at scale....

UtahFS: Encrypted File Storage

June 09, 2020 12:00PM

UtahFS Encryption Developers

Several months ago, I realized that I had a lot of sensitive files on my computer (my diary, if you must know) that I was afraid of losing, but I didn’t feel comfortable putting them in something like Google Drive or Dropbox. Introducing UtahFS....

Brendan McMillion

How Cloudflare and Wall Street Are Helping Encrypt the Internet Today

September 14, 2019 12:00AM

LavaRand Entropy Security Encryption

Today has been a big day for Cloudflare, as we became a public company on the New York Stock Exchange (NYSE: NET). To mark the occasion, we decided to bring our favorite entropy machines to the floor of the NYSE....

Nick Sullivan

August 11, 2018 12:00AM

A Detailed Look at RFC 8446 (a.k.a. TLS 1.3)

TLS 1.3 (RFC 8446) was published today. This article provides a deep dive into the changes introduced in TLS 1.3 and its impact on the future of internet security....

By

Nick Sullivan

Crypto , Encryption , TLS , TLS 1.3 , HTTPS

April 09, 2018 8:20PM

Privacy-Protecting Portable Router: Adding DNS-Over-TLS support to OpenWRT (LEDE) with Unbound

This blog post explains how you can configure an OpenWRT router to encrypt DNS traffic to Cloudflare Resolver using DNS-over-TLS....

By

Junade Ali

1.1.1.1 , Privacy , Encryption , TLS , DNS

September 14, 2017 7:25PM

Disruptive Cryptography: Post-Quantum & Machine Learning With Encrypted Data

Shay Gueron, Associate Professor of Mathematics, University of Haifa, Israel, and Raluca Ada Popa, Assistant Professor of Computer Science, UC Berkeley...

By

Ryan Knight

Encryption , Internet Summit , Security

October 12, 2016 4:05PM

TLS nonce-nse

One of the base principles of cryptography is that you can't just encrypt multiple messages with the same key. At the very least, what will happen is that two messages that have identical plaintext will also have identical ciphertext, which is a dangerous leak....

By

Filippo Valsorda

TLS , TLS 1.3 , Crypto , Security , Encryption

February 12, 2016 2:00PM

Padding oracles and the decline of CBC-mode cipher suites

At CloudFlare, we’re committed to making sure the encrypted web is available to everyone, even those with older browsers. At the same time, we want to make sure that as many people as possible are using the most modern and secure encryption available to them....

By

Nick Sullivan

TLS , Crypto , Encryption , Security

December 25, 2015 8:49AM

How to Talk to Your Parents About Encryption

It’s December 25th, which means most of you are probably at home visiting with family. I asked a few of the security engineers here at CloudFlare how they explain their jobs when they’re home for the holidays, and here's what they had to say....

By

Ryan Hodson

Encryption , Crypto

June 24, 2015 2:57PM

How to build your own public key infrastructure

A major part of securing a network as geographically diverse as CloudFlare’s is protecting data as it travels between datacenters. Customer data and logs are important to protect but so is all the control data that our applications use to communicate with each other....

By

Nick Sullivan

TLS , HTTPS , Encryption , Certificate Authority , SSL

February 24, 2015 8:15PM

Universal SSL: Encryption all the way to the origin, for free

Last September, CloudFlare unveiled Universal SSL, enabling HTTPS support for all sites by default. All sites using CloudFlare now support strong cryptography from the browser to CloudFlare’s servers....

By

Nick Sullivan

HTTPS , CFSSL , Universal SSL , Encryption , Certificate Authority

February 24, 2015 2:20PM

TLS Session Resumption: Full-speed and Secure

At CloudFlare, making web sites faster and safer at scale is always a driving force for innovation. We introduced “Universal SSL” to dramatically increase the size of the encrypted web....

By

Zi Lin

TLS , Speed & Reliability , Universal SSL , Encryption , Speed