Learn how Opportunistic Encryption allows clients to use traditionally insecure protocols over secure channels like TLS.
Overview
Similar to STARTTLS for SMTP, HTTP Opportunistic Encryption allows clients to access HTTP URIs over an encrypted TLS channel. HTTP Opportunistic Encryption allows use of TLS for other protocols. For instance, HTTP/2 requires TLS.
Opportunistic Encryption is not a replacement for HTTPS. Use HTTPS when both strong encryption and authentication are required. Opportunistic Encryption does not provide the same indications of security as HTTPS such as the green lock icon in most browser address bars.
Enable Opportunistic Encryption by selecting On in the Opportunistic Encryption section of the Cloudflare SSL/TLS app.