Cloudflare Aligns with Google: Setting a 2029 Deadline for Universal Post-Quantum Cryptography (PQC)Cloudflare has officially voiced its support for Google ambitious timeline to transition toward Post-Quantum Cryptography (PQC) by 2029. To meet this deadline, Cloudflare has unveiled a comprehensive four-stage roadmap designed to secure all digital connections against the future threat of quantum computing.
The 4-Stage Roadmap to Quantum Resilience
Cloudflare’s transition strategy will unfold over the next three years:
Mid-2026: Implementation of ML-DSA (Module-Lattice-based Digital Signature Algorithm) for all origin server connections, ensuring identity verification is quantum-resistant.
Mid-2027: Support for Merkle Tree Certificates (MTC), allowing general users to connect to Cloudflare’s edge using modernized authentication processes.
Early-2028: Integration of PQC authentication within the Cloudflare One SASE service suite.
2029: Full transition of all encryption processes to quantum-resistant standards.
Security as a Standard, Not a Premium
In a move that emphasizes its "security-first" philosophy, Cloudflare confirmed that these quantum-resistant upgrades will be available to all customers at no additional cost, including those on the free tier.
Furthermore, Cloudflare is advising organizations to immediately include PQC support as a mandatory requirement in their procurement processes, or at the very least, ensure that any new hardware or software purchased today is capable of receiving future PQC updates.
Even though quantum computers powerful enough to decrypt data don't yet exist, state-sponsored hackers are employing a strategy of "storing encrypted data today to decrypt it tomorrow when quantum machines are ready." Cloudflare's transition to this new system in 2026 is therefore aimed at preventing the unauthorized decryption of critical data within the next 5-10 years.
ML-DSA, mentioned by Cloudflare, is a standard algorithm recently certified by the National Institute of Standards and Technology (NIST). It's designed to be run by current computers but quantum-proof. Cloudflare's implementation at the Origin Server level guarantees security at the "backend," the most vulnerable point.
The transition to Merkle Tree Certificates (MTC) in 2027 represents a complete overhaul of the SSL/TLS certificate system. Traditional certificates will become obsolete when faced with quantum computers. The one-year advance preparation reflects the complexity of this engineering work and the collaboration required from browsers like Chrome and Safari.
Cloudflare's recommendation for organizations to include PQC (Process Quality Control) conditions in their procurement is a warning against buying "tech junk." Purchasing non-PQC-compatible equipment today could lead to massive costs for a complete system overhaul in 2029, when global standards have shifted.
Meta Muse Spark Arrives 10x More Efficient AI to Challenge GPT-5 and Gemini.
Source: Cloudflare
Cloudflare Aligns with Google: Setting a 2029 Deadline for Universal Post-Quantum Cryptography (PQC)Cloudflare has officially voiced its support for Google ambitious timeline to transition toward Post-Quantum Cryptography (PQC) by 2029. To meet this deadline, Cloudflare has unveiled a comprehensive four-stage roadmap designed to secure all digital connections against the future threat of quantum computing.
The 4-Stage Roadmap to Quantum Resilience
Cloudflare’s transition strategy will unfold over the next three years:
Mid-2026: Implementation of ML-DSA (Module-Lattice-based Digital Signature Algorithm) for all origin server connections, ensuring identity verification is quantum-resistant.
Mid-2027: Support for Merkle Tree Certificates (MTC), allowing general users to connect to Cloudflare’s edge using modernized authentication processes.
Early-2028: Integration of PQC authentication within the Cloudflare One SASE service suite.
2029: Full transition of all encryption processes to quantum-resistant standards.
Security as a Standard, Not a Premium
In a move that emphasizes its "security-first" philosophy, Cloudflare confirmed that these quantum-resistant upgrades will be available to all customers at no additional cost, including those on the free tier.
Furthermore, Cloudflare is advising organizations to immediately include PQC support as a mandatory requirement in their procurement processes, or at the very least, ensure that any new hardware or software purchased today is capable of receiving future PQC updates.
Even though quantum computers powerful enough to decrypt data don't yet exist, state-sponsored hackers are employing a strategy of "storing encrypted data today to decrypt it tomorrow when quantum machines are ready." Cloudflare's transition to this new system in 2026 is therefore aimed at preventing the unauthorized decryption of critical data within the next 5-10 years.
ML-DSA, mentioned by Cloudflare, is a standard algorithm recently certified by the National Institute of Standards and Technology (NIST). It's designed to be run by current computers but quantum-proof. Cloudflare's implementation at the Origin Server level guarantees security at the "backend," the most vulnerable point.
The transition to Merkle Tree Certificates (MTC) in 2027 represents a complete overhaul of the SSL/TLS certificate system. Traditional certificates will become obsolete when faced with quantum computers. The one-year advance preparation reflects the complexity of this engineering work and the collaboration required from browsers like Chrome and Safari.
Cloudflare's recommendation for organizations to include PQC (Process Quality Control) conditions in their procurement is a warning against buying "tech junk." Purchasing non-PQC-compatible equipment today could lead to massive costs for a complete system overhaul in 2029, when global standards have shifted.
Meta Muse Spark Arrives 10x More Efficient AI to Challenge GPT-5 and Gemini.
Source: Cloudflare
.png)
Comments
Post a Comment