All Topics
All Topics
Technology
Technology
AI
AI
Business
Business
Entertainment
Entertainment
News
News
Programming
Programming
Security
Security
Science
Science
Design
Design
Environment
Environment
Finance
Finance
Crypto
Crypto
Politics
Politics
Sports
Sports
Education
Education
Gaming
Gaming
Art
Art
Music
Music
Health
Health
Books
Books
Food
Food
Travel
Travel
Personal
Personal
Bluesky
Twitter

SSL/TLS - Post-quantum ML-DSA certificates for Authenticated Origin Pulls and Custom Origin Trust Store

17d ago

Source

CloudflareSSL/TLS - Post-quantum ML-DSA certificates for Authenticated Origin Pulls and Custom Origin Trust Storecloudflare.com
Snippet from the RSS feed
Cloudflare now accepts ML-DSA (FIPS 204) post-quantum certificates on the connection between Cloudflare's edge and your origin server. Combined with our existing X25519MLKEM768 key agreement, this lets you establish end-to-end post-quantum authentication on the Cloudflare-to-origin connection. ML-DSA is supported in two origin-facing features: Authenticated Origin Pulls (AOP) — upload an ML-DSA client certificate that Cloudflare will present during the mTLS handshake to your origin. Available at both zone-level and per-hostname scopes. Custom Origin Trust Store (COTS) — upload an ML-DSA certificate authority that Cloudflare will trust when validating your origin server certificate under Full (strict) encryption mode . Refer to Post-quantum signatures for certificate generation and setup guidance, and to PQC in Cloudflare products for the current post-quantum deployment status across Cloudflare.

You might also wanna read

Cloudflare Introduces Merkle Tree Certificates for Post-Quantum Internet Security

Cloudflare is introducing Merkle Tree Certificates as part of its post-quantum cryptography initiative to protect internet security against

blog.cloudflare.com·8mo ago

Cloudflare expands post-quantum encryption to enterprise zero trust services

Cloudflare is rolling out post-quantum encryption for enterprise users, with approximately 35% of human-directed web traffic on its network

cyberscoop.com·1mo ago

Cloudflare Accelerates Post-Quantum Security Roadmap, Targets 2029 for Full Implementation

Cloudflare has accelerated its post-quantum security roadmap, now targeting 2029 to achieve full post-quantum security including authenticat

blog.cloudflare.com·2mo ago

Apple publishes corecrypto with formal verification proofs for quantum-secure ML-KEM and ML-DSA algorithms

Apple has published the corecrypto library containing quantum-secure ML-KEM and ML-DSA algorithms, along with formal verification proofs tha

security.apple.com·1mo ago

Authentication Reference Implementation for Cloudflare Workers with PBKDF2, JWT Sessions, and NIST Compliance

This article presents a comprehensive authentication reference implementation for Cloudflare Workers that serves as an educational resource

github.com·4mo ago

Cloudflare partners with Chrome, Edge, and Firefox on privacy-preserving bot detection protocol

Cloudflare has partnered with Google Chrome, Microsoft Edge, and Mozilla Firefox to develop Private Access Control Tokens (PACTs), a privacy

theregister.com·11d ago

Comments

Sign in to join the conversation.

No comments yet. Be the first.