The Cloudflare Blog

Why we are acquiring Area 1

2022-02-23

Acquisitions Email Security Cloudflare Zero Trust Zero Trust Security

Earlier today we announced that Cloudflare has agreed to acquire Area 1 Security...

John Graham-Cumming

Making protocols post-quantum

2022-02-23

Post-quantum key exchange and signature algorithms come with different trade-offs that we’re not used to. How do we handle that when updating protocols, and is this an opportunity to revisit the status quo?...

Thom Wiggers

BGP security and confirmation biases

2022-02-23

BGP RPKI Security Internet Traffic Better Internet

On February 1, 2022, a configuration error on one of our routers caused a route leak of up to 2,000 Internet prefixes to one of our Internet transit providers. This leak lasted for 32 seconds and at a later time 7 seconds...

Maximilian Wilhelm

Deep dive into a post-quantum key encapsulation algorithm

2022-02-22

Research Cryptography Post-Quantum

In this blog post, we will look at what Key Encapsulation Mechanisms are and why they matter in a post-quantum world...

Deep dive into a post-quantum signature scheme

2022-02-22

Research Cryptography Post-Quantum

How can one attest to an identity and prove it belongs to one self? And how can one do it in the face of quantum computers? In this blog post, we examine these questions and explain what post-quantum signatures are...

Internet is back in Tonga after 38 days of outage

2022-02-22

Radar Outage Internet Shutdown

Tonga, the South Pacific archipelago nation (with 169 islands), was reconnected to the Internet this early morning (UTC) and is back online after successful repairs to the undersea cable that was damaged on Saturday, January 15, 2022, by the January 14, volcanic eruption...

João Tomé

The post-quantum state: a taxonomy of challenges

2022-02-21

Research Cryptography Post-Quantum

At Cloudflare, we strive to help build a better Internet, which means a quantum-protected one. In this post, we look at the challenges for migrating to post-quantum cryptography and what lies ahead using a taxonomy...

Sofía Celi

The quantum solace and spectre

2022-02-21

Research Cryptography Post-Quantum

What is quantum computing and what advances have been made so far on this front? In this blog post, we will answer this question and see how to protect against quantum adversaries...

Sofía Celi

Detecting Magecart-Style attacks with Page Shield

2022-02-18

Page Shield

How we’re using content-based analysis to identify Magecart-style attacks...

Oliver Cookman

Production ready eBPF, or how we fixed the BSD socket API

2022-02-17

eBPF Linux Go

We are open sourcing the production tooling we’ve built for the sk_lookup hook we contributed to the Linux kernel, called tubular...

Lorenz Bauer

Who won Super Bowl LVI? A look at Internet traffic during the big game

2022-02-14

Radar Trends Super Bowl

By now, everyone knows that the Los Angeles Rams won, but we also want to look at which Super Bowl advertisers were the biggest winners, and how traffic to food delivery services, social media and messaging apps, and sports and betting websites changed throughout the game...

Cloudflare acquires Vectrix to expand Zero Trust SaaS security

2022-02-10

CASB Zero Trust Cloudflare for SaaS Acquisitions SaaS

We are excited to share that Vectrix has been acquired by Cloudflare! Vectrix helps IT and security teams detect security issues across their SaaS applications...

Corey Mahan

Adding a CASB to Cloudflare Zero Trust

2022-02-10

CASB Cloudflare Zero Trust Zero Trust Security Product News

Earlier today, Cloudflare announced that we have acquired Vectrix, a cloud-access security broker (CASB) company focused on solving the problem of control and visibility in the SaaS applications and public cloud providers that your team uses...

Email Routing is now in open beta, available to everyone

2022-02-08

Email Routing Email Beta Free

Cloudflare Email Routing transitioned from closed beta to open beta. It’s now available to everyone, including free zones...

João Sousa Botto

Slicing and Dicing Instant Logs: Real-time Insights on the Command Line

2022-02-07

CLI Logs

Today, I am going to introduce you to Instant Logs in your terminal...

Cole MacKenzie

Missing Manuals - io_uring worker pool

2022-02-04

Kernel Linux Deep Dive

Chances are you might have heard of io_uring. It first appeared in Linux 5.1, back in 2019, and was advertised as the new API for asynchronous I/O. Its goal was to be an alternative to the deemed-to-be-broken-beyond-repair AIO, the “old” asynchronous I/O API...

Jakub Sitnicki

Need to keep analytics data in the EU? Cloudflare Zaraz can offer a solution

2022-02-03

Data Privacy Day Analytics Zaraz

Zaraz offers a way to use tools like Google Analytics, but doing so with an approach that protects the privacy of personal information and keeps it in the EU...

How to stop running out of ephemeral ports and start to love long-lived connections

2022-02-02

Deep Dive UDP TCP Linux

Often programmers have assumptions that turn out, to their surprise, to be invalid. From my experience this happens a lot. Every API, technology or system can be abused beyond its limits and break in a miserable way...

Marek Majkowski

Announcing the public launch of Cloudflare's bug bounty program

2022-02-01

Security Vulnerabilities

Today we are launching Cloudflare’s paid public bug bounty program. We believe bug bounties are a vital part of every security team’s toolbox and have been working hard on improving and expanding our private bug bounty program over the last few years...

Rushil Shah

Cloudflare Partner Program Now Supports SASE & Zero Trust Managed Services

2022-01-31

Partners API

We’ve been building out the Cloudflare Partner Network for years, working alongside businesses of all sizes and types including our world-wide system integrator partners ...

Matthew Harrell

← Newer Posts

Older Posts →