February 04, 2013 2:26 PM
CloudFlare often gets early word of new vulnerabilities before they are released. Last week we got word that today (Monday, February 4, 2013) there would be a new SSL vulnerability announced. ...
December 11, 2012 5:24 PM
A little over a month ago, we published a couple of blog posts about how we were making SSL faster. Specifically, we enabled OCSP stapling across our network....
November 28, 2012 8:21 PM
We've been thinking about how to best implement two-factor authentication to better protect our customers' accounts for quite some time now. When, about 6 months ago, my account was targeted by hackers the importance of a good account security became clear. ...
November 28, 2012 5:05 PM
With web performance and security being the core of CloudFlare, we are always looking for ways to improve not just our customers' website security, but their account security as well. Therefore, we are excited to now offer two-factor authentication for all CloudFlare accounts....
June 29, 2012 2:15 AM
HTTP, the protocol of the web, is unencrypted by default. That means it is trivial for someone using the same local network as you to spy on all the data you send to and receive from most websites. ...
June 01, 2012 11:55 PM
For some time, the vast majority of the web has been vulnerable to the so-called BEAST SSL attack. The attack was first demonstrated in 2011, and more than 90% of the Internet including large sites like Google.com remain vulnerable to their SSL sessions being decrypted....
November 04, 2011 11:41 PM
SSL today is too hard. While it's something every website should support, even for the technically savvy, getting a SSL certificate properly installed on your web server can be daunting. Moreover, several platforms like Google AppEngine don't fully support SSL so it's not a possi...
September 27, 2011 8:45 AM
CloudFlare launched publicly exactly one year ago today. In that year, we have grown from virtually no traffic to powering more than 15 billion page views for 350 million unique visitors in the last month. ...
September 08, 2011 8:54 PM
CloudFlare partners with GlobalSign in order to support SSL (Secure Socket Layer) connections through our network. Earlier this week, there were allegations that GlobalSign may have been compromised in some way by a hacker. ...
July 22, 2011 8:33 PM
Note: this post is deprecated. While it worked for a while, AppEngine made a change on their side that caused it to break. Rather than playing wack-a-mole with a brittle solution, we decided to create something that would work for the long term and across a wider range or service...
