Cloudflare Moves Up Post-Quantum Computing Deadline Amid Rapid Advancements
Cloudflare Accelerates Post-Quantum Deadline as Researchers Narrow Path to Q-Day
Cloudflare has moved up its post-quantum deadline to 2029, citing advancements in research and improvements in quantum algorithms.
According to Sharon Goldberg, Senior Product Director at Cloudflare, “We’re approaching this as a blanket upgrade that has to be accomplished across our entire product suite.” She highlights the need for organizations to prioritize post-quantum authentication, citing the potential risks associated with compromised long-lived keys.
Main Concerns Surrounding Post-Quantum Computing
- Ability of hackers to exploit vulnerabilities in cryptographic protocols
- Focus on encryption, but growing concern for authentication
- Potential for hackers to forge access credentials using a quantum computer
Google’s Improved Quantum Algorithm Sparks Sense of Urgency
The algorithm’s ability to break elliptic curve cryptography has raised eyebrows, and Cloudflare is taking steps to address this issue head-on.
Accelerated Post-Quantum Deadline and Industry Readiness
- Government, financial services, and telecommunications companies appear to be making progress on the post-quantum cryptography transition
- Healthcare, technology, and consumer industries lag behind
- Cloudflare advocates for a compensating approach for these industries, suggesting routing legacy traffic over quantum-safe tunnels
Milestones Leading Up to 2029 Deadline
- Add support for post-quantum authentication using ML-DSA to origin connections by mid-2026
- Implement post-quantum connections from end-users to Cloudflare using Merkle Tree Certificates by mid-2027
Ultimately, the accelerated post-quantum deadline set by Cloudflare serves as a reminder of the rapidly evolving landscape of cybersecurity.
About Author
English