Cloudflare has delivered the world’s first complete Secure Access Service Edge (SASE) to support modern post-quantum encryption standards across the Cloudflare One platform.
The move responds to a National Institute of Standards and Technology warning to upgrade cryptographic algorithms by 2030 and to the risk of "harvest now, decrypt later" attacks that collect encrypted data today for future decryption by quantum computers.
Cloudflare, in an announcement, said its 2025 launch of a cloud-native post-quantum Secure Web Gateway and Zero Trust solution, and adds post-quantum support for wide-area networking via Cloudflare IPsec and the Cloudflare One Appliance, so every component of Cloudflare One is protected by the latest cryptographic standards.
"Securing the Internet against future threats shouldn't be a complex burden, or a reason to fragment the web. Since 2017, we’ve been doing the heavy lifting to bake post-quantum standards directly into the fabric of our network," said Matthew Prince, CEO and co-founder of Cloudflare.
"By bringing this protection to our entire SASE platform, we’re making post-quantum security the default—no hardware upgrades, no complex configurations, and no added cost. We’re ensuring that the secure connections our customers rely on today stay secure for the long haul." Cloudflare said Cloudflare IPsec now enables high-availability routing, protection against "harvest now, decrypt later" attacks, and industry-wide interoperability with cross-vendor standards.
Cloudflare said the quantum-safe SASE platform is available today and pointed readers to its blog posts and its connectivity cloud resources for more information.
The recap
Cloudflare delivers the first SASE supporting post-quantum encryption.
Adds PQ support for IPsec, WAN and Cloudflare One Appliance.
Quantum-safe SASE platform available today, the company said.