InfoQ Homepage Cloudflare Content on InfoQ
-
Cloudflare, Google and AWS Disclose HTTP/2 Zero-Day Vulnerability
On October 10th, Cloudflare, Google, and AWS disclosed a novel zero-day vulnerability attack known as the "HTTP/2 Rapid Reset." This attack exploits a weakness in the HTTP/2 protocol to generate enormous Distributed Denial of Service (DDoS) attacks, up to almost 400 million requests per second (rps).
-
Cloudflare Claims Migration to Their Services Can Reduce Network Carbon Emissions by 78-96%
A study conducted by the consultancy firm Analysys Mason suggests that shifting networking and security workloads to Cloudflare can significantly reduce network carbon emissions. According to the report, Cloudflare’s networking products can help companies lower their carbon emissions and meet sustainability objectives.
-
Cloudflare Post-Quantum Cryptography Now Generally Available, Including Origin Servers
Cloudflare has announced the general availability of post-quantum cryptography for a number of its services and internal systems. While promising a higher standard of privacy for the post-quantum era, the new feature depends on post-cryptography support in browsers and on the final link between Cloudflare and origin servers.
-
Cloudflare Sippy: Incrementally Migrate Data from Amazon S3 to Reduce Egress Fees
Cloudflare recently announced the open beta of Sippy, an incremental data migration service that copies data from Amazon S3 to Cloudflare R2 only the first time the data is requested. Sippy is designed to minimize migration-specific egress fees by leveraging requests within existing application flows while simultaneously copying objects to R2.
-
Cloudflare Turnstile: CAPTCHA Replacement Now GA and Available for Free
Cloudflare recently announced that Turnstile is now generally available and free for everyone. Designed as an alternative to traditional challenge-response tests, Turnstile is a checkbox designed to preserve user privacy, stop bots, and enhance the user experience.
-
Cloudflare Hyperdrive: Access PostgreSQL Databases Globally
During the recent "Birthday Week 2023", Cloudflare announced the open beta of Hyperdrive, a new service that uses Cloudflare global network to speed up queries to existing databases. The service currently supports PostgreSQL-compatible databases, with support for MySQL expected soon.
-
Scale Higher Per-Database Storage Limits and Create More Databases with Cloudflare D1 Open Beta
Cloudflare recently announced the open beta of its D1 serverless relational database built on SQLite. The open beta of D1 continues on earlier company investments, with the most recent enhanced performance. With the open beta of D1, the company adds higher per-database storage limits and the ability to create more databases.
-
Cloudflare One Data Protection Suite for Data Security across Web, Private, and SaaS Applications
Cloudflare recently announced its One Data Protection Suite, a unified set of advanced security solutions designed to protect data across every environment – web, private, and SaaS applications. The company states the suite is powered by Cloudflare’s Security Service Edge (SSE), allowing customers to streamline compliance in the cloud, mitigate data exposure and loss of source code.
-
Cloudflare Introduces Smart Hints to Automate Web Performance Optimisation
Cloudflare has introduced Smart Hints to eliminate the need for manual configuration of Early Hints and Fetch Priorities, By leveraging Cloudflare's network, Smart Hints streamline the optimization process and aim to provide performance improvements without requiring manual configuration.
-
Cloudflare Enhances Performance for Serverless Database D1
Cloudflare recently announced a revamp of its serverless relational database D1. Built on top of SQLite, D1 has a new architecture that provides better read and write performances and support for JSON functions.
-
Cloudflare Workers Introduces connect() API to Create TCP Sockets
During the recent developer week, Cloudflare announced a Worker API to create outbound TCP sockets. The new socket API allows developers to connect back to TCP-based infra directly from a Worker, including databases.
-
Tales of Kafka at Cloudflare: Andrea Medda and Matt Boyle at QCon London
At QCon London, Andrea Medda, senior systems engineer at Cloudflare, and Matt Boyle, engineering manager at Cloudflare, shared the lessons their platform services team learned from enabling the use of Apache Kafka at the scale of 1 trillion messages.
-
Cloudflare Detects a Record 71 Million Request-Per-Second DDoS Attack
On the weekend of 11 and 12 February, the Super Bowl weekend, Cloudflare detected dozens of hyper-volumetrics DDoS attacks. These attacks peaked at 50-70 million requests per second (rps), with the highest at 71 million rps. This is the largest reported HTTP DDoS attack on record. This attack is 54% higher than the previous record registered in June 2022 with 46M rps.
-
Cloudflare DDoS Report Finds Increase in Attack Volume and Duration
Cloudflare released its Distributed Denial of Service (DDoS) Threat Report for the fourth quarter of 2022. The report covers the DDoS attack landscape as detected by the Cloudflare network. HTTP DDoS attacks increased 79% year-over-year with ransom DDoS attacks seeing an increase as well. The report found that longer attacks are increasing especially with network-layer DDoS attacks.
-
Cloudflare Servers Share IP Addresses for Egress Traffic
Cloudflare recently detailed how it manages its servers' egress traffic using "soft-unicast ". Soft-unicast allows multiple servers to share a single IPv4 address for their egress traffic while redirecting the response packets to the correct physical server. It provides a scalable, cost-efficient solution for Cloudflare to offer various products that require tagged egress IP addresses.