Cloudflare is on a mission to build a better Internet. One of the ways we’re achieving this is by bringing the tools of the Internet giants to everyone. Today, in an effort called Universal SSL, we enable SSL by default for all our customers that are signed up directly for Cloudflare— even those on our Free plan.
Encrypting as much web traffic as possible to prevent data theft and other tampering is a critical step toward building a safer, better Internet. We’re proud to be the first Internet performance and security company that offered SSL protection at no cost.
The SSL for Free plan customers is completely compatible with all other Cloudflare performance and security features. Free plan SSL service will utilize Elliptic Curve Digital Signature Algorithm (ECDSA) certificates from Comodo or GlobalSign. These certificates will cover both your root domain and first-level subdomains through the use of a wildcard. It may take up to 24 hours to activate. SSL for Free plan users works with modern browsers that support Server Name Indication (SNI) and operating systems that support EDCSA certificates.