Posts by Patrick R. Donahue

Introducing the Cloudflare Geo Key Manager

Published on by Patrick R. Donahue.

Cloudflare’s customers recognize that they need to protect the confidentiality and integrity of communications with their web visitors. The widely accepted solution to this problem is to use the SSL/TLS protocol to establish an encrypted HTTPS session, over which secure requests can then be sent. Eavesdropping is protected

Change the (S)Channel! Deconstructing the Microsoft TLS Session Resumption bug

Published on by Patrick R. Donahue.

Initial Problem Report Several months ago we started hearing occasional reports from .NET developers that they were having trouble maintaining HTTPS sessions with one of our customer’s websites. Establishing connections worked just fine but they would periodically get disconnected, resulting in an exception that crashed their application. Around the