Roughtime: Securing Time with Digital Signatures
September 21, 2018 1:00PM
When you visit a secure website, it offers you a TLS certificate that asserts its identity. Every certificate has an expiration date, and when it’s passed due, it is no longer valid....
Continue reading »
High-reliability OCSP stapling and why it matters
July 10, 2017 1:43PM
At Cloudflare our focus is making the internet faster and more secure. Today we are announcing a new enhancement to our HTTPS service: High-Reliability OCSP stapling....
Introducing CFSSL 1.2
March 31, 2016 1:00PM
Continuing our commitment to high quality open-source software, we’re happy to announce release 1.2 of CFSSL, our TLS/PKI Swiss Army knife. We haven’t written much about CFSSL here since we originally open sourced the project in 2014, so we thought we’d provide an update....
The Hidden Costs of Heartbleed
April 17, 2014 11:00AM
A quick followup to our last blog post on our decision to reissue and revoke all of CloudFlare's customers' SSL certificates. One question we've received is why we didn't just reissue and revoke all SSL certificates as soon as we got word about the Heartbleed vulnerability?...
What We Just Did to Make SSL Even Faster
December 11, 2012 5:24PM
Speed & Reliability
A little over a month ago, we published a couple of blog posts about how we were making SSL faster. Specifically, we enabled OCSP stapling across our network....
November 01, 2012 4:34PM
CloudFlare Works with GlobalSign to Make SSL Faster Across the Web
Earlier this week we announced how CloudFlare enabled OCSP stapling in order to improve our customers' SSL performance. OCSP stapling is awesome and improves SSL performance by as much as 30%. However, it is limited to browsers that support OCSP stapling and only benefits CloudFlare's customers....