The Cloudflare Blog

Subscribe to receive notifications of new posts:

Vicky Shrestha

Remediating new DNSSEC resource exhaustion vulnerabilities

2024-02-29

DNSSEC DNS Resolver 1.1.1.1 Vulnerabilities KeyTrap NSEC3 CVE-2023-50387

Cloudflare recently fixed two critical DNSSEC vulnerabilities: CVE-2023-50387 and CVE-2023-50868. Both of these vulnerabilities can exhaust computational resources of validating DNS resolvers. These vulnerabilities do not affect our Authoritative DNS or DNS firewall products...

Vicky Shrestha
Anbang Wen

Expanding DNSSEC Adoption

2018-09-18

Crypto Week Security DNSSEC DNS Product News Reliability Cryptography

Cloudflare first started talking about DNSSEC in 2014 and at the time, Nick Sullivan wrote: “DNSSEC is a valuable tool for improving the trust and integrity of DNS, the backbone of the modern Internet.”...

Sergi Isasi
Vicky Shrestha