Cloudflare One is the first SASE offering modern post-quantum encryption across the full platform

Cloudflare has unveiled its Cloudflare One platform as a pioneering Secure Access Service Edge (SASE) solution that incorporates post-quantum encryption to secure network traffic for enterprise clients. This development includes the industry's first cloud-native post-quantum Secure Web Gateway and Zero Trust solution, marking a significant advancement in protecting data against future quantum computing threats. Cloudflare One supports Module-Lattice-based Key-Encapsulation Mechanism (ML-KEM) for post-quantum encryption across various network on-ramps and off-ramps, including IPsec and TLS protocols, ensuring robust protection against "harvest-now, decrypt-later" attacks. The platform's approach to post-quantum cryptography (PQC) emphasizes interoperability and simplicity, aligning with standards set by the IETF and NIST, and aims to offer secure network solutions without the need for specialized hardware or costly upgrades. As quantum computing capabilities loom, Cloudflare's initiative addresses the urgency for organizations to adopt PQC to remain compliant and secure, with the first steps focusing on key establishment while digital signatures follow. The Cloudflare One Appliance has also been upgraded to incorporate PQ encryption, reflecting a comprehensive strategy to enhance cryptographic agility and safeguard data in a rapidly evolving technological landscape.