Cloudflare Advances Industry’s First Cloud-Native Quantum-Safe Zero Trust Solution
Cloudflare Advances Industry’s First Cloud-Native Quantum-Safe Zero Trust Solution
Sets a new industry standard with the only quantum-ready zero trust network access solution with broader protocol support coming mid-2025
Sets a new industry standard with the only quantum-ready zero trust network access solution with broader protocol support coming mid-2025
This Press Release is also available in 日本語, 한국어, Deutsch, Français, Nederlands, ไทย, Bahasa Indonesia and Español.
San Francisco, CA, March 17, 2025 – Cloudflare, Inc. (NYSE: NET), the leading connectivity cloud company, today announced that it is expanding end-to-end support for post-quantum cryptography to its Zero Trust Network Access solution. Available immediately, organizations can securely route communications from web browsers to corporate web applications to gain immediate, end-to-end quantum-safe connectivity. By mid-2025, Cloudflare will extend this support to include all IP protocols, significantly broadening compatibility across most corporate applications and devices. With this, organizations will be able to rely on Cloudflare to transition their Internet communications between users, devices and applications to post-quantum cryptography without the complexity of individually upgrading each corporate application or system.
Today encryption is used to keep online data protected—everything from personal messages, to financial information, to customer data—and anything that people and organizations would want to keep safe from hackers. As quantum computers move closer to production, that data is at risk of being unlocked, breaking current encryption methods and potentially exposing data that was once secured. Conventional cryptographic algorithms used across the Internet securing everything from major financial organizations and healthcare providers to government agencies and consumer smart devices, are vulnerable to post-quantum attacks.
The National Institute of Standards and Technology (NIST) even made a landmark announcement to phase out conventional cryptographic algorithms and to adopt post-quantum cryptography by 2030, as experts now estimate significant risks could emerge in as little as five years. There is an urgent need to adopt post-quantum cryptography, and Cloudflare has led the industry by contributing to the creation of industry standards and making post-quantum security free, by default, for all of its customers.
“Cloudflare has long committed to making post-quantum security the new baseline for Internet security, delivering it to all customers so we can bolster defenses against future quantum threats. Now, we’re offering that protection built directly into our Zero Trust solutions,” said Matthew Prince, co-founder and CEO at Cloudflare. “We want every Cloudflare customer to have a clear path to quantum safety, and we are already working with some of the most innovative banks, ISPs, and governments around the world as they begin their journeys to quantum security. We will continue to make advanced cryptography accessible to everyone, at no cost, in all of our products.”
Since 2017, Cloudflare has been at the forefront of researching, developing, and standardizing post-quantum cryptography. Today, over 35 percent of the human-generated traffic connecting to Cloudflare's global network benefits from post-quantum protection. Even in a future where quantum computing could compromise conventional cryptography, Cloudflare's quantum-safe Zero Trust Network Access (ZTNA) solutions are designed to protect data as it travels over the public Internet. With this announcement, Cloudflare’s Zero Trust Platform will enable organizations to:
- Protect against “harvest-now decrypt later” attacks: Cybercriminals can capture encrypted data today, and store it until they can decrypt it when better quantum computers are available. Starting today, customers can direct their web traffic through Cloudflare’s global network, to protect against these future attacks by using post-quantum cryptography.
- Enable corporate web applications with end-to-end quantum security: Now organizations can grant employees access to corporate web applications—like HR systems, payroll and collaboration systems–without needing to upgrade the security of every single corporate web application individually. Cloudflare Access now can secure the Internet traffic from web browsers to corporate web applications from quantum threats.
- Deliver quantum safety for Internet traffic traveling to any corporate office, cloud environment or datacenter: By mid-2025, organizations will be benefit from end-to-end quantum safety for any protocol connected through Cloudflare’s most popular network configurations by installing Cloudflare’s WARP device client on their end users devices.
“The world has five years to replace vulnerable cryptography with post-quantum solutions,” said Tom Patterson, emerging technology security lead at Accenture. “To meet this urgent client need, Accenture and Cloudflare offer a hybrid approach, enabling an iterative, low-risk migration while maintaining compatibility and cryptographic agility.”
Cloudflare’s quantum-safe Secure Web Gateway and clientless Access network configurations are available today, and WARP-client-to-tunnel network configurations will be available by mid 2025. To learn more, please check out the resources below:
- Blog: Conventional cryptography is under attack. Cloudflare’s Zero Trust platform is ready for your upgrade to post-quantum cryptography
- Cloudflare Post Quantum Cryptography
About Cloudflare
Cloudflare, Inc. (NYSE: NET) is the leading connectivity cloud company on a mission to help build a better Internet. It empowers organizations to make their employees, applications and networks faster and more secure everywhere, while reducing complexity and cost. Cloudflare’s connectivity cloud delivers the most full-featured, unified platform of cloud-native products and developer tools, so any organization can gain the control they need to work, develop, and accelerate their business.
Powered by one of the world’s largest and most interconnected networks, Cloudflare blocks billions of threats online for its customers every day. It is trusted by millions of organizations – from the largest brands to entrepreneurs and small businesses to nonprofits, humanitarian groups, and governments across the globe.
Learn more about Cloudflare’s connectivity cloud at cloudflare.com/connectivity-cloud. Learn more about the latest Internet trends and insights at https://radar.cloudflare.com.
Follow us: Blog | X | LinkedIn | Facebook | Instagram
Forward-Looking Statements
This press release contains forward-looking statements within the meaning of Section 27A of the Securities Act of 1933, as amended, and Section 21E of the Securities Exchange Act of 1934, as amended, which statements involve substantial risks and uncertainties. In some cases, you can identify forward-looking statements because they contain words such as “may,” “will,” “should,” “expect,” “explore,” “plan,” “anticipate,” “could,” “intend,” “target,” “project,” “contemplate,” “believe,” “estimate,” “predict,” “potential,” or “continue,” or the negative of these words, or other similar terms or expressions that concern Cloudflare’s expectations, strategy, plans, or intentions. However, not all forward-looking statements contain these identifying words. Forward-looking statements expressed or implied in this press release include, but are not limited to, statements regarding the capabilities and effectiveness of Cloudflare’s products and technology, plans to expand the capabilities of Cloudflare’s products and technology and proposed timing of such expansion, the benefits to Cloudflare’s customers from using Cloudflare products and technology, Cloudflare’s technological development, future operations, growth, initiatives, or strategies, and comments made by Cloudflare’s CEO and others. Actual results could differ materially from those stated or implied in forward-looking statements due to a number of factors, including but not limited to, risks detailed in Cloudflare’s filings with the Securities and Exchange Commission (SEC), including Cloudflare’s Annual Report on Form 10-K filed on February 20, 2025, as well as other filings that Cloudflare may make from time to time with the SEC.
The forward-looking statements made in this press release relate only to events as of the date on which the statements are made. Cloudflare undertakes no obligation to update any forward-looking statements made in this press release to reflect events or circumstances after the date of this press release or to reflect new information or the occurrence of unanticipated events, except as required by law. Cloudflare may not actually achieve the plans, intentions, or expectations disclosed in Cloudflare’s forward-looking statements, and you should not place undue reliance on Cloudflare’s forward-looking statements.
© 2025 Cloudflare, Inc. All rights reserved. Cloudflare, the Cloudflare logo, and other Cloudflare marks are trademarks and/or registered trademarks of Cloudflare, Inc. in the U.S. and other jurisdictions. All other marks and names referenced herein may be trademarks of their respective owners.
