TLS

December 08, 2020 12:00 PM

A deep dive into the Encrypted Client Hello, a standard that encrypts privacy-sensitive parameters sent by the client, as part of the TLS handshake....

By 
• Christopher Patton

November 13, 2020 12:00 PM

Today we're releasing origin-ca-issuer, an extension to cert-manager integrating with Cloudflare Origin CA to easily create and renew certificates for your account's domains....

By 
• Terin Stock

April 09, 2020 11:00 AM

Back in the summer of 2017 I was an intern at Cloudflare. During the scholastic year I was a grad student working on automorphic forms and computational Langlands at Berkeley....

By 
• Watson Ladd

November 20, 2019 4:30 PM

One of the more interesting features introduced by TLS 1.3, the latest revision of the TLS protocol, was the so called “zero roundtrip time connection resumption”, a mode of operation that allows a client to start sending application data, such as HTTP requests...

By 
• Alessandro Ghedini

October 30, 2019 1:00 PM

In June, we announced a wide-scale post-quantum experiment with Google. We implemented two post-quantum (i.e., not yet known to be broken by quantum computers) key exchanges, integrated them into our TLS stack and deployed the implementation on our edge servers and in Chrome Cana...

By 
• Kris Kwiatkowski
• , Luke Valenta

June 20, 2019 1:01 PM

In anticipation of wide-spread quantum computing, the transition from classical public-key cryptography primitives to post-quantum (PQ) alternatives has started....

By 
• Kris Kwiatkowski

June 20, 2019 1:00 PM

Today we are proud to release the source code of a cryptographic library we’ve been working on: a collection of cryptographic primitives written in Go, called CIRCL. ...

By 
• Kris Kwiatkowski
• , Armando Faz-Hernández

June 18, 2019 1:00 PM

Trust on the Internet is underpinned by the Public Key Infrastructure (PKI). PKI grants servers the ability to securely serve websites by issuing digital certificates, providing the foundation for encrypted and authentic communication. ...

By 
• Dina Kozlov
• , Gabbi Fisher

February 05, 2019 4:00 PM

Cloudflare seeks to help its end customers use whichever public and private clouds best suit their needs. Towards that goal, we have been working to make sure our solutions work well with various public cloud providers including Microsoft’s Azure platform....

By 
• Peter Dumanian

January 24, 2019 5:57 PM

Explore HTTP/3 from root to tip and discover the backstory of this new HTTP syntax that works on top of the IETF QUIC transport....

By 
• Lucas Pardue

January 23, 2019 9:13 AM

As of December 22, 2018, parts of the US Government have “shut down” because of a lapse in appropriation. The shutdown has caused the furlough of employees across the government and has affected federal contracts. ...

By 
• Gabbi Fisher
• , Brendan McMillion

December 21, 2018 4:00 PM

Over the past few months, we have been running a pilot with Facebook to test the feasibility of securing the connection between 1.1.1.1 and Facebook’s authoritative name servers. ...

By 
• Irtefa

November 29, 2018 9:54 AM

As TLS 1.3 was ratified earlier this year, I was recollecting how we got started with it here at Cloudflare. We made the decision to be early adopters of TLS 1.3 a little over two years ago. It was a very important decision, and we took it very seriously....

By 
• Vlad Krasnov

September 24, 2018 12:01 PM

Today we announced support for encrypted SNI, an extension to the TLS 1.3 protocol that improves privacy of Internet users....

By 
• Alessandro Ghedini