Security

Anycast Network

With 200 cities across 90 countries and 35 Tbps of capacity, Cloudflare’s Anycast network absorbs distributed attack traffic by dispersing it geographically, while keeping Internet properties available and performant. Learn More

DNSSEC

DNSSEC is the Internet’s non-spoofable caller ID. It guarantees a web application’s traffic is safely routed to the correct servers so that a site’s visitors are not intercepted by a hidden “man-in-the-middle” attacker. Learn More

Web Application Firewall (WAF)

Cloudflare’s enterprise-grade web application firewall (WAF) detects and block common application layer vulnerabilities at the network edge, utilising the OWASP Top 10, application-specific and custom rulesets. Learn More

Rate Limiting

Rate Limiting protects critical resources by providing fine-grained control to block or qualify visitors with suspicious request rates. Learn More

SSL / TLS

Transport Security Layer (TLS) encryption enables HTTPS connections between visitors and origin server(s), preventing man-in-the-middle attacks, packet sniffing, the display of web browser trust warnings, and more. Learn More

Secure Registrar

Cloudflare is an ICANN accredited registrar, protecting organizations from domain hijacking with high-touch, online and offline verification for any changes to a registrar account. Learn More

Orbit

Cloudflare Orbit solves security-related issues for Internet of Things devices at the network level. Learn More

Argo Tunnel

Cloudflare creates an encrypted tunnel between its nearest data center and an application’s origin server without opening a public inbound port. Learn More

Access

Secure, authenticate, and monitor user access to any domain, application, or path on Cloudflare. Learn More

Spectrum

Spectrum protects TCP applications and ports from volumetric DDoS attacks and data theft by proxying non-web traffic through Cloudflare’s Anycast network. Learn More