HTTPS - The Cloudflare Blog

Speeding up HTTPS and HTTP/3 negotiation with... DNS

September 30, 2020 2:00PM

A look at a new DNS resource record intended to speed-up negotiation of HTTP security and performance features and how it will help make the web faster....

Alessandro Ghedini

Securing infrastructure at scale with Cloudflare Access

July 19, 2019 2:00PM

Cloudflare Access Product News Security HTTPS VPN

I rarely have to deal with the hassle of using a corporate VPN and I hope it remains this way. As a new member of the Cloudflare team, that seems possible. Coworkers who joined a few years ago did not have that same luck. They had to use a VPN to get any work done. What changed?...

Jeremy Bernick

A Tale of Two (APT) Transports

July 18, 2019 3:12PM

Cloudflare Access Linux HTTPS Security

Securing access to your APT repositories is critical. At Cloudflare, like in most organizations, we used a legacy VPN to lock down who could reach our internal software repositories. However, a network perimeter model lacks a number of features that we consider critical to a team’s security....

Ryan Djurovich

Securing Certificate Issuance using Multipath Domain Control Validation

June 18, 2019 2:00PM

Crypto Week Crypto Cryptography DNS BGP

Trust on the Internet is underpinned by the Public Key Infrastructure (PKI). PKI grants servers the ability to securely serve websites by issuing digital certificates, providing the foundation for encrypted and authentic communication....

Welcome to Crypto Week 2019

June 16, 2019 6:07PM

Crypto Week Security Product News BGP Crypto

The Internet is an extraordinarily complex and evolving ecosystem. Its constituent protocols range from the ancient and archaic (hello FTP) to the modern and sleek (meet WireGuard), with a fair bit of everything in between....

Nick Sullivan

March 18, 2019 5:47PM

Monsters in the Middleboxes: Introducing Two New Tools for Detecting HTTPS Interception

The practice of HTTPS interception continues to be commonplace on the Internet. This blog post discusses types of monster-in-the-middle devices and software, and how to detect them....

By

Gabbi Fisher
, Luke Valenta

HTTPS , Malware , Security , Speed & Reliability , Research

November 13, 2018 7:33PM

Real URLs for AMP Cached Content Using Cloudflare Workers

As Cloudflare Workers matures, we continue to push ourselves to develop and deploy important features using them. Today, we’re excited to announce support for HTTP signed exchanges, generated by Cloudflare Workers!...

By

Gabbi Fisher
, Avery Harnish

Serverless , Cloudflare Workers , JavaScript , Security , AMP

September 25, 2018 1:00PM

The QUICening

Six o’clock already, I was just in the middle of a dream, now I’m up, awake, looking at my Twitter stream. As I do that the Twitter app is making multiple API calls over HTTPS to Twitter’s servers somewhere on the Internet....

By

John Graham-Cumming

Birthday Week , Product News , QUIC , HTTPS , Security

September 24, 2018 1:00PM

Encrypting SNI: Fixing One of the Core Internet Bugs

Cloudflare launched on September 27, 2010. Since then, we've considered September 27th our birthday. This Thursday we'll be turning 8 years old. Ever since our first birthday, we've used the occasion to launch new products or services....

By

Matthew Prince

Birthday Week , Product News , Security , Privacy , HTTPS

September 17, 2018 2:01PM

Cloudflare goes InterPlanetary - Introducing Cloudflare’s IPFS Gateway

Today we’re excited to introduce Cloudflare’s IPFS Gateway, an easy way to access content from the the InterPlanetary File System (IPFS) that doesn’t require installing and running any special software on your computer....

By

Andy Parker

Crypto Week , Crypto , Security , IPFS , Universal SSL

September 17, 2018 2:00PM

Welcome to Crypto Week

The Internet is an amazing invention. We marvel at how it connects people, connects ideas, and makes the world smaller. But the Internet isn’t perfect. It was put together piecemeal through publicly funded research, private investment, and organic growth that has left us with an imperfect tapestry....

By

Nick Sullivan

Crypto Week , Crypto , Security , IPFS , HTTPS

August 11, 2018 12:00AM

A Detailed Look at RFC 8446 (a.k.a. TLS 1.3)

TLS 1.3 (RFC 8446) was published today. This article provides a deep dive into the changes introduced in TLS 1.3 and its impact on the future of internet security....

By

Nick Sullivan

Crypto , Encryption , TLS , TLS 1.3 , HTTPS

July 24, 2018 6:32PM

Going Proactive on Security: Driving Encryption Adoption Intelligently

It's no secret that Cloudflare operates at a huge scale. Cloudflare provides security and performance to over 9 million websites all around the world, from small businesses and WordPress blogs to Fortune 500 companies. That means one in every 10 web requests goes through our network....

By

Junade Ali

HTTPS , Chrome , SSL , Support , Security

July 24, 2018 4:04PM

Today, Chrome Takes Another Step Forward in Addressing the Design Flaw That is an Unencrypted Web

I still remember my first foray onto the internet as a university student back in the mid 90's. It was a simpler time back then, of course; we weren't doing our personal banking or our tax returns or handling our medical records so encrypting the transport layer wasn't exactly a high priority....

By

Troy Hunt (Guest Blogger)

HTTPS , Chrome , SSL , Security , Guest Post