Cloudflare for Campaigns

Secure your candidate's election website — and your team.

Voters routinely turn to the Internet to learn more about and connect with political candidates around the world. Protecting your campaign’s website from hostile attacks and ensuring it stays accessible 24/7 is as challenging as it is essential.

Cloudflare offers a suite of products tailor-made to assist campaigns in protecting, accelerating, and ensuring the reliability of their websites — with additional solutions designed to keep internal teams and data secure.

Talk to an ExpertSpecial offer for US Candidates

Political campaigns, like any organization, need a comprehensive approach to cybersecurity. Securing a candidate's website, their critical public facing presence, and hardening access to key internal applications can vastly improve cybersecurity.

Michael Kaiser

President & CEO, Defending Digital Campaigns

Give Your Candidate The Foundation They Need

Cloudflare's suite of products encompass a comprehensive solution for safeguarding your candidate's website — and your team's most important data.

Leverage the collective intelligence of Cloudflare's global network of millions of Internet properties — automatically deploying countermeasures to thwart the latest Internet threats as they emerge.

Cloudflare's suite of products encompass a comprehensive solution for safeguarding your candidate's website — and your team's most important data.

Leverage the collective intelligence of Cloudflare's global network of millions of Internet properties — automatically deploying countermeasures to thwart the latest Internet threats as they emerge.

Block Malicious Attacks

Prevent attackers and nation-state actors from bringing your site down, with the same protection leveraged by many of the world's biggest companies.

Stay Online During Peak Traffic Periods

Web traffic often varies during a campaign. Be ready for your candidate's moments in the spotlight.

Secure Your Team's Most Important Data

Leverage Cloudflare for Teams, a unique set of products designed to safeguard your internal systems from intruders — and to ensure your data doesn't leave your network.

United States of America

Be prepared for 2020

Qualified federal campaigns are eligible to receive a package of products free of charge, proudly provided by Cloudflare in partnership with the non-profit Defending Digital Campaigns.

Learn More

Solutions Tailor-Made for Your Campaign

Protect your website against hostile attacks, leverage load balancing and Always Online to ensure reliability, and protect your team's vital internal data with Cloudflare for Teams — all from the same intuitive dashboard.

Available solutions include:

24/7/365 uptime support Including unmetered DDoS Mitigation and a dedicated support contact.

Web Application Firewall Including OWASP and proprietary Cloudflare rulesets, and support for custom WAF and Firewall Rules.

Custom Traffic Blocking Block specified user agents and regions where problematic traffic is detected.

Rate Limiting Protect against denial-of-service attacks, brute-force login attempts, and other types of abusive behavior targeting the application layer.

I'm Under Attack™ mode Instantly deploy protections against a concerted attack, plus Enterprise-level 'I Am Under Attack' Support.

Bot Protection Thwart automated bots and trigger Captcha Challenges to ensure only genuine traffic reaches your site.

Subdomain Support Cloudflare Subdomain Support simplifies the management of Cloudflare performance and security for subdomains.

Global CDN Leverage Cloudflare's global network, spanning 200 cities in over 100 countries to deliver millisecond-response times.

Load Balancing Dynamically route traffic to different servers and clouds.

Image and Mobile Optimizations Automatically optimize images with Cloudflare Polish. Deliver mobile-friendly images with Cloudflare Mirage.

Page Rules Apply custom redirects, WAF rules, and more to any individual URL on your site.

Audit Logs Including account-level actions like Login and Logout, as well as configuration changes made through the Cloudflare Dash.

And more... Custom SSL Certificate Upload PCI Compliance Regular Expression Blocking Spam and Comment Protection

Multi-User Organization Manage your Cloudflare account with multiple accounts, each with granular permissions.

Cloudflare Access Allows a campaign to secure, authenticate, and monitor user access to any domain, application, or path on Cloudflare, without using a VPN.

Cloudflare Gateway DNS Filtering Protect users as they navigate the Internet by keeping malicious content off your network from multiple locations.

Reliability and Security Guide Best practices on how to keep a campaign site and donation page secure and online.

Election Security Contact This election security-specific contact will get routed to our support team, with an escalation path to the security team.

Best Practices to Protect your Website

1. Protect your account with 2 Factor Authentication (2FA).

Adopting a strong security posture is critical and it starts with account security. Two-factor authentication (2FA) improves account security by requiring a second piece of information to validate your identity when logging in.

Using 2FA prevents unauthorized users from accessing sensitive data on your account. We recommend enabling 2FA on your Cloudflare account to safeguard your account information.

Enable 2FA

2. Orange Cloud your DNS records on Cloudflare.

Cloudflare provides fast and secure managed DNS as a built-in service on our network. To provide many of Cloudflare security products including DDoS mitigation, WAF, and CDN, we recommend enabling the orange cloud next to the DNS record in the DNS control panel.

When you orange cloud a DNS record, Cloudflare acts as a proxy for your domain. Instead of advertising your IP address or CNAME record we instead advertise the IP address of our edge and proxy the requests to your origin server. This ultimately shields your origin web server from unexpected spikes in traffic or malicious cyber attacks looking to take down your website.

Enable orange cloud

3. Use SSL encryption to protect your internal data.

SSL (Secure Socket Layer) is the standard security technology for establishing an encrypted link between a web server and a browser. When you visit a website, a lock icon is displayed in the web browser, indicating that all data transferred remains private and secure, keeping it safe from monitoring and tampering. Manually configuring SSL requires several steps, and a misconfiguration can prevent users from getting to your website.

At Cloudflare, we offer SSL encryption that allows any Internet property to become HTTPS-enabled with the click of a button. We recommend enabling either Full or Full (strict) as one of the two settings in order to ensure data confidentiality on your website.

Learn more about Cloudflare SSL

4. Turn your Web Application Firewall ON.

A firewall is a security system that monitors and controls network traffic based on a set of security rules. By deploying a Web Application Firewall (WAF) in front of a web application, a shield is placed between the web application and the Internet, giving you the ability to decide whether to allow incoming and outgoing traffic to pass through.

Cloudflare provides a web application firewall to protect against malicious attacks that aim to exploit common vulnerabilities such as SQL injection attacks, cross-site scripting, and cross-site forgery. We recommend turning ON the WAF and enabling Cloudflare Specials, to automatically protect against new and zero-day vulnerabilities, to provide fast and seamless protection against the latest attack vectors.

Enable Cloudflare Specials

Download the Security & Performance Guide

Common risks for campaign sites, and how to avoid them

Your campaign's website is a critical communications tool. In this guide, you'll learn cybersecurity and performance strategies for:

  • Keeping your site online during cyberattacks
  • Protecting donor and supporter data
  • Maintaining smooth performance during sudden surges of interested voters.
Download Guide

Solutions for Every Campaign

Cloudflare for Campaigns is designed to meet the needs of any campaign — from securing your candidate's web presence to safeguarding your internal network and data. Available services include:
  • Protect your website from hostile actors with Cloudflare's Web Application Firewall, DDoS Mitigation, and custom blocking rules.
  • Ensure site speed and reliability by leveraging Cloudflare's global network, spanning 200 cities in over 90 countries.
  • Monitor all traffic passing through your network, and secure internal applications with Cloudflare for Teams.
Talk to a Cloudflare representative today to learn more.

Sign up for Cloudflare for Campaigns

In submitting this form, you agree to receive information from Cloudflare related to our products, events, and special offers. You can unsubscribe from such messages at any time. We never sell your data, and we value your privacy choices. Please see our Privacy Policy for information.

Sales

Getting Started

Community

Developers

Support

Company

© 2021 Cloudflare 公司Privacy PolicyTerms of UseDisclosureCookie PreferencesTrademark