Cloudflare Research logo

Geo Key Manager

Geo Key Manager is a feature that gives customers unprecedented control over where their private keys are stored when uploaded to Cloudflare, limiting the exposure of their private keys to certain locations.

This feature builds on a previous Cloudflare innovation called Keyless SSL and a novel cryptographic access control mechanism based on both identity-based encryption and broadcast encryption. Unlike Keyless SSL, Geo Key Manager does not require customers to run a key server inside their own infrastructure.

You can learn about how Geo Key Manager works by exploring the resources below.


2018Geo Key Manager

Real World Crypto Symposium 2018. Zurich, Switzerland. January 2018.
Nick Sullivan, Brendan McMillion

2015An analysis of TLS handshake proxying

2015 IEEE Trustcom/BigDataSE/ISPA, volume 1, pp. 279-286. 2015.
Douglas Stebila, Nick Sullivan

Blog posts