DNSSEC Done Right

Published on by Olafur Gudmundsson.

This blog post is probably more personal than the usual posts here. It’s about why I joined CloudFlare. I’ve been working on DNSSEC evolution for a long time as implementor, IETF working group chair, protocol experimenter, DNS operator, consultant, and evangelist. These different perspectives allow me to look

Help us test our DNSSEC implementation

Published on by Filippo Valsorda.

For an introduction to DNSSEC, see our previous post Today is a big day for CloudFlare! We are publishing our first two DNSSEC signed zones for the community to analyze and give feedback on: www.cloudflare-dnssec-auth.com - a fully signed zone managed by CloudFlare www.cloudflare-dnssec-cname.com - an

DNSSEC: Complexities and Considerations

Published on by Nick Sullivan.

This blog post is a follow-up to our previous introduction to DNSSEC. Read that first if you are not familiar with DNSSEC. DNSSEC is an extension to DNS: it provides a system of trust for DNS records. It’s a major change to one of the core components of the

DNSSEC: An Introduction

Published on by Nick Sullivan.

At CloudFlare our mission is to help build a better Internet. Part of this effort includes making web sites faster, more reliable, and more trustworthy. The obvious first choice in protocols to help make websites more secure is HTTPS. CloudFlare’s latest product—Universal SSL—helps web site operators provide