SSL and Encryption
SSL/TLS is the encryption layer that protects data in transit between your visitors, the Cloudflare edge, and your origin server. Cloudflare provides free SSL for every domain, making HTTPS accessible without managing certificates yourself.
Why This Matters
Without HTTPS, data between your users and your server is sent in plain text — visible to anyone on the network. Cloudflare makes HTTPS automatic and free.
How Cloudflare SSL Works
Cloudflare sits between your visitors and your origin server, handling two separate encrypted connections:
| Connection | Certificate | Managed By |
|---|---|---|
| Visitor ↔ Cloudflare Edge | Universal SSL (free, auto-issued) | Cloudflare |
| Cloudflare Edge ↔ Origin | Origin certificate or Let's Encrypt | You (or Cloudflare Origin CA) |
What You Will Learn
| Lesson | What It Covers |
|---|---|
| SSL/TLS and Universal SSL | Encryption modes, Universal SSL, and certificate management |
| Post-Quantum Cryptography | Quantum-resistant encryption on Cloudflare's network |
Prerequisites
- Domain added to Cloudflare with proxied DNS records (Module 1)