The Monitoring and Management Center for General Use (the SSSOP) of Roskomnadzor has issued a recommendation to internet resource owners to discontinue the use of the CDN service Cloudflare. The SSSP TsMU report states that Cloudflare, an American company providing CDN services, has incorporated the use of TLS Ech (Encrypted Client Hello) on its default servers. This technology enables circumvention of access restrictions on content prohibited in Russia, contravening Russian legislation and falling under the scope of technical means to counter threats (TSPU).
The Center advises owners of information resources to disable the TLS Ech extension or opt for domestic CDN services that ensure reliable and secure functionality and protection against cyber attacks. Among the domestic solutions mentioned is the national counteraction system of DDOS attacks (NSPA), which has repelled over 10.5 thousand DDOS attacks targeting various organizations in the country since its launch in March 2024.
The Center highlights Cloudflare as one of the Bigtech companies discussed by the US State Department in September for their role in organized opposition against countries safeguarding their information sovereignty. Earlier, reports emerged regarding Roskomnadzor’s blockade of Cloudflare’s CDN service due to the inclusion of a protocol facilitating circumvention of content restrictions in the Russian segment of the internet (Runet).
Cloudflare, a global Content Delivery Network (CDN) service, caches static website files on servers worldwide to offer rapid and reliable content delivery to users regardless of their location. This service, utilized by both major corporations and smaller entities, aims to enhance the performance and security of their web resources.
In addition to accelerating content delivery, Cloudflare’s CDN service safeguards against DDOS attacks by absorbing and dispersing malicious traffic across its global server network. This process alleviates pressure on the primary server, enabling the website to remain accessible even during massive attacks. Real users experience minimal disruption as traffic is distributed throughout the Cloudflare network, ensuring stability and security of the resource.