Pull down to refresh stories
Write Login VI Store
News Devices Apr 30, 2026, 9:00 PM

Post-quantum encryption for Cloudflare IPsec is generally available: the device shift worth noticing

While more than two-thirds of human-generated TLS traffic to Cloudflare is already protected by post-quantum cryptography, the world of site-to-site networking has been a different story. For years, the IPsec community remained caught between the high bar of Internet-scale interoperability and the niche requirements of specialized hardware. This piece sits on 1 source layers, but the real value is showing why the story should not be skimmed past too quickly.

While more than two-thirds of human-generated TLS traffic to Cloudflare is already protected by post-quantum cryptography, the world of site-to-site networking has been a different story. For years, the IPsec community remained caught between the high bar of Internet-scale interoperability and the niche requirements of specialized hardware. This story is solid enough to treat the core shift as confirmed, so the better question is how far it travels and who feels it first.

Quang Huy Devices and Digital Infrastructure Editor
Verified The story is backed by strong or official sources.
Reference image for: Post-quantum encryption for Cloudflare IPsec is generally available: the device shift worth noticing
Reference image from Cloudflare Blog. Cloudflare Blog

While more than two-thirds of human-generated TLS traffic to Cloudflare is already protected by post-quantum cryptography, the world of site-to-site networking has been a different story. For years, the IPsec community remained caught between the high bar of Internet-scale interoperability and the niche requirements of specialized hardware. Earlier this month, we announced that Cloudflare has moved its target for full post-quantum security forward to 2029 , spurred by several recent advances in quantum computing. Cloudflare Blog is strong enough to treat the story as verified, but the useful part still lies in the context and practical impact. On the device side, the useful angle is whether a technical change actually alters feel, lifespan, or upgrade cost in real use.

Featured offer

Patrick Tech Store Open the AI plans, tools, and software currently getting the push Jump straight into the store to see what Patrick Tech is pushing right now.

What is happening now

While more than two-thirds of human-generated TLS traffic to Cloudflare is already protected by post-quantum cryptography, the world of site-to-site networking has been a different story. Cloudflare Blog form the main source layer behind the core facts in this piece.

Where the sources line up

Cloudflare Blog is strong enough to treat the story as verified, but the useful part still lies in the context and practical impact. For years, the IPsec community remained caught between the high bar of Internet-scale interoperability and the niche requirements of specialized hardware. Cloudflare Blog form the main source layer behind the core facts in this piece.

Featured offer

Patrick Tech Store Open the AI plans, tools, and software currently getting the push Jump straight into the store to see what Patrick Tech is pushing right now.

The details worth keeping

Earlier this month, we announced that Cloudflare has moved its target for full post-quantum security forward to 2029 , spurred by several recent advances in quantum computing. On the device side, the useful angle is whether a technical change actually alters feel, lifespan, or upgrade cost in real use.

Why this matters most

This story is solid enough to treat the core shift as confirmed, so the better question is how far it travels and who feels it first. Even when the core is settled, the next useful read is still the rollout speed, the real impact, and the switching cost for users or teams. To advance that goal, we’ve made post-quantum encryption in Cloudflare IPsec generally available.

What to watch next

The next readout is price, device coverage, and whether the change feels real once the hardware reaches users. Patrick Tech Media will keep checking rollout speed, user reaction, and how Cloudflare Blog update the next pieces. From 1 early signals, the piece keeps 1 references that are useful for locking the main details in place.

Context Worth Keeping

While more than two-thirds of human-generated TLS traffic to Cloudflare is already protected by post-quantum cryptography, the world of site-to-site networking has been a different story. For years, the IPsec community remained caught between the high bar of Internet-scale interoperability and the niche requirements of specialized hardware. Earlier this month, we announced that Cloudflare has moved its target for full post-quantum security forward to 2029 , spurred by several recent advances in quantum computing. Cloudflare Blog is strong enough to treat the story as verified, but the useful part still lies in the context and practical impact. On the device side, the useful angle is whether a technical change actually alters feel, lifespan, or upgrade cost in real use. With devices, the real difference rarely lives on the spec sheet; it lives in whether daily use becomes better or more annoying. The floor is firmer here because the story is anchored by an official source, not only by second-hand reaction.

Source notes

Related stories