Embed Size (px)
Citation preview
CloudFlare: Building a Secure Network at Scale
ISSA Annual Summit / 4 June 2015
Matthew Prince (@eastdakota), CEO, CloudFlare
Our mission
Help build a better Internet
2
CloudFlare overview
• Founded in 2009
• Used by more than 2+ million Internet facing
applications in 150+ countries
• 5,000+ new customer sign-ups daily
• 5 minute sign-up process
• $0 - $2 million annual subscription pricing
• Sit in front of 5% of all Internet requests
• 350%+ compounded annual revenue growth
over last three years
• 150+ employees
• Offices in San Francisco, London & Singapore
• 47 data centers dispersed across 25 countries
• World Economic Forum Technology Pioneer
• Winner of Wall Street Journal’s “Most Innovative
Internet Company” two years running
• Self-learning network that becomes more
performant, secure, and intelligent with every
request
3
4
Standards/PlatformAvailabilitySecurity Performance
Running applications on the Internet is challenging
5
“Hundreds of dollars a month for
private hosting and it was still
reliably crashing on or around
decision day.”
“We're seeing some customers that
are connecting to ixl.com via IPv6,
which we are not equipped to
handle.”
“The first flood of attack traffic was
mitigated with some blocking
techniques implemented by our
CDN, but when the attack got more
creative there was nothing more
they could do.”
“Because our servers were only
located in the U.S. at that time,
some of our customers from other
parts of the world were experiencing
slower loading of the widget.”
We address the challenges of the Internet
6
• Analytics
• IPv6 gateway
• DNSSEC
• Google SPDY
• Apps platform
Standards/Platform
• Load balancing
• Always online
• Redundant, Anycast network
Availability
• Reputation-based security
• Distributed denial of service (DDoS)
mitigation
• Firewall
• Secure socket layer (SSL)
• Malware detection
Security
• Content delivery (CDN)
• Authoritative DNS
• Web content optimization (WCO)
• Front-end / mobile optimization
• Railgun™ WAN optimizer
Performance
Shift to cloud creates new winnersYesterday
• Once prolific edge
options consolidate
behind cloud players
with scale / breadth of
product offering
• Once dominant
application providers
face multitude of
cloud competitors
N e t w o r k
e d g e
Ap p l i c a t i o n s
St o r e a n d
c o m p u t e
Tomorrow
7
Hardware / Software — Capital expenditures Services / Cloud — Operating expenses
8
New customer additions in just the last six months
No single customer accounts for more than 5% of revenue
9
Almost unfathomable scale…
• Customer relationships spanning
2+ million Internet properties
• Network reach to 1.8 billion
monthly active users
• CloudFlare sees more of what
happens on the Internet than
anyone else
0
200
400
600
800
1,000
1,200
1,400
1,600
1,800
0
200,000
400,000
600,000
800,000
1,000,000
1,200,000
Facebook CloudFlare Google Yahoo Craigslist Ebay Twitter Amazon Wordpress
Mo
nth
ly u
niq
ue
us
ers
(m
illi
on
s)
Mo
nth
ly p
ag
e v
iew
s (
mil
lio
ns
)
CloudFlare vs. top Internet properties
Monthly page views Monthly unique users
Source: Doubleclick ad planner, comScore, news reports and CloudFlare analytics
10
Focused on global expansion and scale
11
+ Adding a new data center per week in 2015
Always expanding our capacity…
50,000 lbsof equipment in transit
Expanding our capacity (1/8th a Blue Whale)
Expanding our capacity (1/4th the capacity of 747)
Always under attack…
15
Enormous DDoS Attacks
16
17
18
Perimeter?
19
What perimeter?
20
What’s the difference between the
WAN and the LAN?
21
Google.
22
“Traffic from the LAN is as likely to be
suspect as traffic from the WAN.”
23
24
Secure services
25
Securing services, not networks…
26
Simple stack
27
28
What our servers look like…
29
What we think they look like…
Trust?
30
31
32
CloudFlare: Building a Secure Network at Scale
ISSA Annual Summit / 4 June 2015
Matthew Prince (@eastdakota), CEO, CloudFlare
