Post-Quantum Encryption: Cloudflare Radar’s New Security Insights
Why Post-Quantum Encryption Matters for Modern Security
Cloudflare Radar has long been a go-to resource for tracking global security trends. Now, the platform is expanding its capabilities with groundbreaking tools to monitor post-quantum encryption adoption. As quantum computing advances, traditional encryption methods face unprecedented risks. Post-quantum encryption offers a quantum-resistant solution, and Cloudflare’s new features help organizations stay ahead of this evolving threat landscape.
Tracking Origin Server Post-Quantum Readiness
Client vs. Origin Server Support
Since 2024, Cloudflare Radar has tracked client-side post-quantum encryption adoption. By February 2026, over 60% of clients supported quantum-resistant algorithms like X25519MLKEM768. However, client-side readiness is only half the equation. For content not cached in Cloudflare’s edge network, origin servers must also support post-quantum connections.
New Origin Server Monitoring
Cloudflare now provides real-time visibility into origin server post-quantum compatibility. The Radar dashboard displays:
- Percentage of origins supporting X25519MLKEM768
- Daily TLS scanner results
- Historical trends in adoption
As of early 2026, 10% of origins support post-quantum encryption—a 10x increase from 2025. This growth aligns with widespread TLS library updates (OpenSSL 3.5.0+, GnuTLS 3.8.9+) enabling hybrid key exchanges by default.
Hands-On Post-Quantum Testing Tool
Instant Compatibility Checks
Cloudflare’s new tool allows users to test any website’s post-quantum readiness. Simply enter a hostname (e.g., cloudflare.com) and optional port number. The tool returns:
- Green “PQ” tag for quantum-secure connections
- Red tag with classical algorithm details for non-secure connections
This container-based solution uses Cloudflare Workers and Go runtime to perform TLS handshake analysis. The results are accessible via Radar’s API for developers and security teams.
Key Transparency for Messaging Security
Protecting End-to-End Encryption
E2EE apps like WhatsApp rely on public-key cryptography. Key Transparency adds an auditable layer by logging public keys in append-only records. Cloudflare’s auditor verifies these logs, ensuring no tampering occurs.
Transparency Dashboard Launch
The new Key Transparency section on Radar displays:
- Real-time verification status of logs
- Last signed timestamps
- API access for independent validation
Currently monitoring WhatsApp and Facebook Messenger Transport logs, this feature empowers users to verify the integrity of their messaging platforms.
Next Steps for Your Security Strategy
1. **Check Your Origin Servers**: Use Cloudflare Radar to assess post-quantum readiness.
2. **Test Public Sites**: Run compatibility checks on critical services.
3. **Monitor Key Transparency**: Verify E2EE platform security through public logs.
By leveraging these tools, organizations can future-proof their infrastructure against quantum threats while maintaining trust in digital communications.








