Exported Authenticators: The long road to RFC
October 13, 2021 12:59 PM
Learn more about Exported Authenticators, a new extension to TLS, currently going through the IETF standardisation process....
October 13, 2021 12:59 PM
Learn more about Exported Authenticators, a new extension to TLS, currently going through the IETF standardisation process....
October 12, 2021 1:01 PM
Introducing customized recommendations to improve the security of your website....
October 06, 2021 12:56 PM
We are excited to announce that Enterprise customers now have the ability to test custom uploaded certificates in a staging environment before pushing them to production. ...
March 27, 2021 1:00 PM
TLS key compromise is a risk for all web services. Taking lessons from Heartbleed, Cloudflare offers the latest features that make key compromise less of a risk....
December 08, 2020 12:00 PM
Today, we’re making several announcements around improving Internet protocols with respect to something important to our customers and Internet users worldwide: privacy....
December 08, 2020 12:00 PM
A deep dive into the Encrypted Client Hello, a standard that encrypts privacy-sensitive parameters sent by the client, as part of the TLS handshake....
November 13, 2020 12:00 PM
Today we're releasing origin-ca-issuer, an extension to cert-manager integrating with Cloudflare Origin CA to easily create and renew certificates for your account's domains....
April 09, 2020 11:00 AM
Back in the summer of 2017 I was an intern at Cloudflare. During the scholastic year I was a grad student working on automorphic forms and computational Langlands at Berkeley....
November 20, 2019 4:30 PM
One of the more interesting features introduced by TLS 1.3, the latest revision of the TLS protocol, was the so called “zero roundtrip time connection resumption”, a mode of operation that allows a client to start sending application data, such as HTTP requests...
October 30, 2019 1:00 PM
In June, we announced a wide-scale post-quantum experiment with Google. We implemented two post-quantum (i.e., not yet known to be broken by quantum computers) key exchanges, integrated them into our TLS stack and deployed the implementation on our edge servers and in Chrome Cana...
June 20, 2019 1:01 PM
In anticipation of wide-spread quantum computing, the transition from classical public-key cryptography primitives to post-quantum (PQ) alternatives has started....
June 20, 2019 1:00 PM
Today we are proud to release the source code of a cryptographic library we’ve been working on: a collection of cryptographic primitives written in Go, called CIRCL. ...
June 18, 2019 1:00 PM
Trust on the Internet is underpinned by the Public Key Infrastructure (PKI). PKI grants servers the ability to securely serve websites by issuing digital certificates, providing the foundation for encrypted and authentic communication. ...