Cryptography

Upcoming Meetups at CloudFlare

April 21, 2014

MeetUp Cloudflare Meetups Events Cryptography

At CloudFlare, we love connecting with our communities, and so we are excited to announce two meetups to be hosted here at the CloudFlare headquarters in San Francisco next month....

Kristin Tarr

The Heartbleed Aftermath: all CloudFlare certificates revoked and reissued

April 17, 2014

TLS HTTPS OpenSSL Vulnerabilities Security Cryptography

Eleven days ago the Heartbleed vulnerability was publicly announced. Last Friday, we issued the CloudFlare Challenge: Heartbleed and simultaneously started the process of revoking and reissuing all the SSL certificates....

Nick Sullivan

ECDSA: The digital signature algorithm of a better internet

March 10, 2014

TLS HTTPS Elliptic Curves RSA Security Cryptography

This blog post is dedicated to the memory of Dr. Scott Vanstone, popularizer of elliptic curve cryptography and inventor of the ECDSA algorithm. He passed away on March 2, 2014....

Nick Sullivan

Introducing Strict SSL: Protecting Against a On-Path Attack on Origin Traffic

February 14, 2014

TLS HTTPS Encryption SSL Security Cryptography

At CloudFlare, we are always looking for ways to improve the security of our customers’ websites. One of the features we provide is the ability to serve their website encrypted over SSL/TLS. ...

Nick Sullivan

Killing RC4 (softly)

January 29, 2014

RC4 OpenSSL Encryption Vulnerabilities Cryptography

Back in 2011, the BEAST attack on the cipher block chaining (CBC) encryption mode used in TLS v1.0 was demonstrated. At the time the advice of experts (including our own) was to prioritize the use of RC4-based cipher suites....

Piotr Sikora

November 21, 2013

Red October: CloudFlare’s Open Source Implementation of the Two-Man Rule

At CloudFlare, we are always looking for better ways to secure the data we’re entrusted with. This means hardening our system against outside threats such as hackers, but it also means protecting against insider threats. ...

Nick Sullivan

Open Source

, Encryption

, RSA

, GitHub

, TLS

October 24, 2013

A (Relatively Easy To Understand) Primer on Elliptic Curve Cryptography

Elliptic Curve Cryptography (ECC) is one of the most powerful but least understood types of cryptography in wide use today. At CloudFlare, we make extensive use of ECC to secure everything from our customers' HTTPS connections to how we pass data between our data centers....

Nick Sullivan

HTTPS

, Elliptic Curves

, Security

, Cryptography

← Newer Posts

The Cloudflare Blog