Security

CDN providers are bolstering security features to address growing cyber threats, critical for protecting content delivery. Cloudflare and Akamai are integrating advanced DDoS protection, WAF, and Zero-Trust capabilities. These enhancements ensure availability amid rising attack sophistication. Modern CDNs incorporate WAAP to safeguard web applications and APIs at the edge. SSL/TLS encryption is standard, securing data in transit. These features mitigate risks like data breaches and service disruptions, which can degrade p95 performance. The focus on security responds to increased attack volumes targeting e-commerce and media platforms. Robust CDN security reduces latency impacts from mitigation processes. Multi-CDN setups benefit by diversifying security layers across providers. ...

Cloudflare has deployed defenses against MadeYouReset, a newly disclosed HTTP/2 denial-of-service (DoS) vulnerability identified by Tel Aviv University researchers. This flaw could disrupt CDN services by overwhelming servers, impacting availability for websites and applications. Cloudflare’s swift response strengthens its role as a secure content delivery provider. The vulnerability targets HTTP/2’s stream multiplexing, allowing attackers to exhaust server resources with minimal effort. Cloudflare’s existing DDoS mitigation systems, including its WAF, were updated to detect and block these attacks. No user action is required, as the fix is applied globally across Cloudflare’s network. ...