Post-quantum encryption adoption

Copy link

Post-quantum encrypted share of HTTPS request traffic

Learn more...View in Data Explorer
This chart shows the percentage of HTTPS requests using post-quantum key exchange over time. Cloudflare has enabled hybrid post-quantum key agreement on all domains served through its network, including this one. Adoption depends on both client (browser) and server support.

Origin server post-quantum readiness

Copy link

Share of scanned customer origin servers supporting post-quantum key exchange algorithms

Learn more...View in Data Explorer
This chart shows the share of scanned customer origin servers that support the X25519MLKEM768 post-quantum key exchange algorithm over time. Data is based on daily scanning of origin servers behind Cloudflare's network.

Browser support

Copy link

Check your browser for post-quantum encryption support

This checks the TLS key exchange algorithm used by your current browser connection to this website. Modern browsers like Chrome 131+, Edge 131+, and Firefox 132+ support post-quantum key agreements. If your browser doesn't support PQ, consider updating to the latest version.

Website support

Copy link

Check if a host supports post-quantum TLS key exchange

This tool initiates a TLS handshake with the specified host and examines the key exchange algorithm negotiated during the connection. We check if the server supports post-quantum key exchange methods like X25519MLKEM768, a hybrid algorithm combining classical X25519 with the ML-KEM post-quantum algorithm. The test connects to port 443 by default (the standard HTTPS port), but you can specify a different port for services running TLS on non-standard ports, such as port 853 for DNS over TLS or port 8443 for alternative HTTPS.

Latest Post-Quantum blog posts

Copy link

Posts tagged with "Post-Quantum" from the Cloudflare blog

Cloudflare Blog