Pwned Passwords Padding (ft. Lava Lamps and Workers)
March 04, 2020 1:00 PM
Starting today, we are offering a new security advancement in the Pwned Passwords API - API clients can receive responses padded with random data....
Why Cloudflare Chose AMD EPYC for Gen X Servers
March 01, 2020 1:00 PM
Looking back at this week's posts on the design, specifications, and performance of Cloudflare’s Gen X servers using AMD CPUs. Every server can run every service. This architectural decision has helped us achieve higher efficiency across the Cloudflare network. ...
Securing Memory at EPYC Scale
February 28, 2020 2:00 PM
At Cloudflare, we encrypt data both in transit (on the network) and at rest (on the disk). Both practices address some of the most common vectors used to exfiltrate information and these measures serve to protect sensitive data from attackers but, what about data currently in use?...
Introducing Secrets and Environment Variables to Cloudflare Workers
February 26, 2020 3:00 PM
The Workers team here at Cloudflare has been hard at work shipping a bunch of new features in the last year and we’ve seen some amazing things built with the tools we’ve provided....
Seamless remote work with Cloudflare for Teams
February 24, 2020 8:27 PM
The novel coronavirus is actively changing how organizations work in real-time. According to Fortune, the virus has led to the “world’s largest work-from-home experiment.” As the epidemic crosses borders, employees are staying home and putting new stress on how companies manage remote work....
MORE POSTS
January 16, 2020 4:13 PM
Announcing the Cloudflare Access App Launch
Since launch, Cloudflare Access has helped improve how users connect to secured applications. When you protect an application with Access, users never have to connect to a private network and never have to deal with a clunky VPN client. ...
- By
January 15, 2020 12:30 PM
Introducing Cloudflare for Campaigns
During the past year, we saw nearly 2 billion global citizens go to the polls to vote in democratic elections. There were major elections in more than 50 countries, including India, Nigeria, and the ...
- By
January 07, 2020 2:00 PM
Introducing Cloudflare for Teams
Ten years ago, when Cloudflare was created, the Internet was a place that people visited. People still talked about ‘surfing the web’ and the iPhone was less than two years old, but on July 4, 2009 large scale DDoS attacks were launched against websites in the US and South Korea....
- By
January 07, 2020 2:00 PM
Security on the Internet with Cloudflare for Teams
When Cloudflare launched, businesses bought expensive on-premise hardware to keep their sites online. If they wanted those sites to be faster, or safer, they needed to buy more boxes. ...
- By
January 07, 2020 2:00 PM
Cloudflare + Remote Browser Isolation
Cloudflare announced today that it has purchased S2 Systems Corporation, a Seattle-area startup that has built an innovative remote browser isolation solution unlike any other currently in the market....
- By
November 27, 2019 5:30 PM
Harnessing the Power of the People: Cloudflare’s First Security Awareness Month Design Challenge Winners
Grabbing the attention of employees at a security and privacy-focused company on security awareness presents a unique challenge; how do you get people who are already thinking about security all day to think about it some more?...
- By
November 21, 2019 2:00 PM
Introducing Flan Scan: Cloudflare’s Lightweight Network Vulnerability Scanner
Today, we’re excited to open source Flan Scan, Cloudflare’s in-house lightweight network vulnerability scanner. Flan Scan is a thin wrapper around Nmap that converts this popular open source tool into a vulnerability scanner with the added benefit of easy deployment....
- By
November 20, 2019 4:30 PM
Even faster connection establishment with QUIC 0-RTT resumption
One of the more interesting features introduced by TLS 1.3, the latest revision of the TLS protocol, was the so called “zero roundtrip time connection resumption”, a mode of operation that allows a client to start sending application data, such as HTTP requests...
- By
November 17, 2019 2:00 PM
Log every request to corporate apps, no code changes required
Cloudflare Access can give your team the ability to introduce logging in a single gateway that applies to all resources protected behind it....
- By
November 01, 2019 1:01 PM
Going Keyless Everywhere
Time flies. The Heartbleed vulnerability was discovered just over five and a half years ago. Heartbleed became a household name not only because it was one of the first bugs with its own web page and logo, but because of what it revealed about the fragility of the Internet as a w...
- By
November 01, 2019 1:00 PM
Delegated Credentials for TLS
Announcing support for a new cryptographic protocol making it possible to deploy encrypted services while still maintaining performance and control of private keys: Delegated Credentials for TLS. ...
- By
October 31, 2019 1:00 PM
Announcing cfnts: Cloudflare's implementation of NTS in Rust
Several months ago we announced that we were providing a new public time service. Part of what we were providing was the first major deployment of the new Network Time Security protocol, with a newly written implementation of NTS in Rust. ...
- By
October 30, 2019 1:00 PM
The TLS Post-Quantum Experiment
In a June 2019 experiment with Google, we implemented two post-quantum key exchanges, integrated them into our TLS stack and deployed the implementation on edge servers and in Chrome Canary clients....
- By
October 29, 2019 1:00 PM
DNS Encryption Explained
The Domain Name System (DNS) is the address book of the Internet. When you visit cloudflare.com or any other site, your browser will ask a DNS resolver for the IP address where the website can be found. Unfortunately, these DNS queries and answers are typically unprotected....
- By