CLOUDFLARE is accelerating its post-quantum roadmap and now targets 2029 to be fully post-quantum secure, including post-quantum authentication. The company notes it has already enabled post-quantum encryption for most products since 2022 and aims to upgrade authentication across its entire product suite by 2029.
Mid-2026 will see PQ authentication (ML-DSA) support for Cloudflare to origin connections, with mid-2027 extending PQ authentication to visitor to Cloudflare connections using Merkle Tree Certificates, and early 2028 adding PQ authentication to Cloudflare One’s SASE suite, leading to full PQ security in 2029.
It also highlights that more than 65% of human traffic to Cloudflare is post-quantum encrypted, though authentication remains a priority because Q‑Day could arrive sooner than expected, with Google having recently accelerated its own post-quantum efforts, according to Google.
The post emphasises focusing on preventing quantum-enabled authentication breaches alongside continuing encryption upgrades, and it urges organisations to prioritise long‑lived keys and upgrade paths for critical dependencies over the coming years.