Cloudflare unveiled major expansions to its Radar platform on February 27, 2026, introducing public monitoring tools for post-quantum cryptography, encrypted messaging integrity, and routing security standards. The new dashboards track the internet’s adoption of quantum-resistant encryption, audit Key Transparency logs for WhatsApp and Facebook Messenger, and monitor deployment of the ASPA routing protocol to combat network hijacking threats.
The comprehensive suite represents a significant push toward democratizing internet security data, making previously opaque metrics accessible to researchers, network operators, and the public. According to Cloudflare’s blog post, the tools provide real-time visibility into three critical areas of internet infrastructure that have traditionally operated without public oversight.
The post-quantum cryptography tracker monitors TLS 1.3 connections between Cloudflare’s edge network and customer origin servers, actively probing for support of the X25519MLKEM768 hybrid key exchange algorithm. This algorithm combines classical cryptography with the NIST-selected ML-KEM post-quantum standard, essential for protecting data against future quantum computing threats.
A new website compatibility checker allows anyone to test whether a site supports quantum-resistant encryption. The tool performs live TLS handshakes and displays results with color-coded tags: green for “post-quantum secure” connections and red for classical-only encryption, Cloudflare stated in its announcement.
Independent Verification for Messaging Platforms
The Key Transparency dashboard serves as an independent auditor for encrypted messaging services, initially monitoring WhatsApp and Facebook Messenger Transport. The system verifies that these platforms aren’t distributing incorrect public keys, a vulnerability that could compromise end-to-end encryption.
Real-time status indicators track each service’s cryptographic integrity, displaying the most recent batch of updates published and verified. According to Cloudflare, significant delays between signed and verified epochs could indicate potential security issues. All verification data is accessible through both the public dashboard and an API for automated monitoring.
For routing security, the new ASPA deployment view tracks adoption of the Autonomous System Provider Authorization standard, which helps prevent BGP route leaks and network hijacking. The platform includes a searchable explorer showing all current ASPA records, filterable by Regional Internet Registry.
Individual network pages now feature “ASPA Verified Provider” tags to signal good routing hygiene, with complete lists of authorized providers and activity timelines showing all ASPA-related changes, Cloudflare reported.
The availability of this data through APIs enables security researchers and network operators to build automated monitoring systems and conduct deeper analysis. This transparency initiative may pressure other major infrastructure providers to offer similar insights, potentially accelerating adoption of these critical security standards across the global internet.
Sources
- Cloudflare
