Radar – Post-Quantum Encryption and Key Transparency on Cloudflare Radar

Modern Workspace Pro 27 February 2026No CommentsCloudflare, Radar

Radar now tracks post-quantum encryption support on origin servers, provides a tool to test any host for post-quantum compatibility, and introduces a Key Transparency dashboard for monitoring end-to-end encrypted messaging audit logs.

Post-quantum origin support

The new Post-Quantum API provides the following endpoints:

/post_quantum/tls/support – Tests whether a host supports post-quantum TLS key exchange.
/post_quantum/origin/summary/{dimension} – Returns origin post-quantum data summarized by key agreement algorithm.
/post_quantum/origin/timeseries_groups/{dimension} – Returns origin post-quantum timeseries data grouped by key agreement algorithm.

The new Post-Quantum Encryption page shows the share of customer origins supporting X25519MLKEM768, derived from daily automated TLS scans of TLS 1.3-compatible origins. The scanner tests for algorithm support rather than the origin server’s configured preference.

Screenshot of the origin post-quantum support graph on Radar

A host test tool allows checking any publicly accessible website for post-quantum encryption compatibility. Enter a hostname and optional port to see whether the server negotiates a post-quantum key exchange algorithm.

Screenshot of the post-quantum host test tool on Radar

Key Transparency

A new Key Transparency section displays the audit status of Key Transparency logs for end-to-end encrypted messaging services. The page launches with two monitored logs: WhatsApp and Facebook Messenger Transport.

Each log card shows the current status, last signed epoch, last verified epoch, and the root hash of the Auditable Key Directory tree. The data is also available through the Key Transparency Auditor API.