Cloudflare has expanded its Zero Trust Network Access (ZTNA) solution with end-to-end support for post-quantum cryptography. With quantum-safe encryption, it claims to secure communication between web browsers and corporate web applications. The update is already available, and by mid-2025, Cloudflare plans to extend this protection to all IP protocols. It aims to simplify the transition to post-quantum security across corporate applications and devices.
We’re thrilled to announce that organizations can now protect their sensitive corporate network traffic against quantum threats by tunneling it through Cloudflare’s Zero Trust platform. https://t.co/ph7qdIPYx9 #SecurityWeek
— Cloudflare (@Cloudflare) March 17, 2025
This move comes after the adversary from the National Institute of Standards and Technology (NIST) to transition to post-quantum cryptography by 2030. Experts believe that quantum computing advancements could break current encryption methods within the next five years, posing a serious risk to sensitive data.
The world has five years to replace vulnerable cryptography with post-quantum solutions. To meet this urgent client need, Accenture and Cloudflare offer a hybrid approach, enabling an iterative, low-risk migration while maintaining compatibility and cryptographic agility.
Tom Patterson, emerging technology security lead at Accenture
How Cloudflare is Addressing the Quantum Security Threat?
Today, encryption is used to keep online data safe. This includes everything from our day-to-day personal messages to financial information, customer data, and anything that we want to keep safe from hackers. As quantum computers move closer to production, that data is at risk of being unlocked, breaking current encryption methods, and potentially exposing data that was once secured. As a result, conventional cryptographic algorithms used across the Internet to secure everything are vulnerable to post-quantum attacks.
However, one of the biggest concerns today is the “harvest now, decrypt later” strategy cybercriminals use. Where attackers can collect encrypted data today and decrypt it in the future when quantum computing technology matures. Cloudflare’s post-quantum cryptography integration aims to mitigate this risk by securing Internet traffic now and reducing exposure to future attacks.
Cloudflare has long committed to making post-quantum security the new baseline for Internet security, delivering it to all customers so we can bolster defenses against future quantum threats. Now, we’re offering that protection built directly into our Zero Trust solutions. We want every Cloudflare customer to have a clear path to quantum safety, and we are already working with some of the most innovative banks, ISPs, and governments around the world as they begin their journeys to quantum security. We will continue to make advanced cryptography accessible to everyone, at no cost, in all of our products.
Matthew Prince, co-founder and CEO at Cloudflare
Cloudflare’s Quantum-Safe Approach
Here’s what Cloudflare’s Zero Trust solution offers:
- Immediate end-to-end post-quantum encryption for web-based corporate applications.
- Protection against future decryption threats, preventing long-term exposure of sensitive data.
- Expanded protocol support by mid-2025, ensuring post-quantum security across various corporate environments, including cloud platforms and on-premise infrastructure.
According to the shared press releases, Cloudflare has been involved in post-quantum cryptography research and standardization since 2017 and claims to have over 35% of traffic routed through its network, which benefits from this protection.
Cloudflare’s Secure Web Gateway and clientless Access configurations with quantum-safe encryption are available now, with expanded WARP-client-to-tunnel network configurations set to launch in mid-2025.
