Cloudflare Bot Management: machine learning and more

Introduction

Building Cloudflare Bot Management platform is an exhilarating experience. It blends Distributed Systems, Web Development, Machine Learning, Security and Research (and every discipline in between) while fighting ever-adaptive and motivated adversaries at the same time.

This is the ongoing story of Bot Management at Cloudflare and also an introduction to a series of blog posts about the detection mechanisms powering it. I’ll start with several definitions from the Bot Management world, then introduce the product and technical requirements, leading to an overview of the platform we’ve built. Finally, I’ll share details about the detection mechanisms powering our platform.

Let’s start with Bot Management’s nomenclature.

Some Definitions

Bot - an autonomous program on a network that can interact with computer systems or users, imitating or replacing a human user's behavior, performing repetitive tasks much faster than human users could.

Good bots - bots which are useful to businesses they interact with, e.g. search engine bots like Googlebot, Bingbot or bots that operate on social media platforms like Facebook Bot.

Bad bots - bots which are designed to perform malicious actions, ultimately hurting businesses, e.g. credential stuffing bots, third-party scraping bots, spam bots and sneakerbots.

Bot Management - blocking Continue reading

How the Network Effect Levels the Cybersecurity War Zone

Ian Baxter Ian Baxter is the Vice President of Pre-Sales Engineering at IRONSCALES and has more than 20 years of extensive industry experience in the information security, technology and communications fields, having held various positions including both individual contributor and systems engineering management roles. During his career, Ian has regularly presented at various industry events on security topics such as threat prevention, ransomware, and best practices. Prior to IRONSCALES, Ian served as Americas' Director of Data Center Sales for NetApp covering Canada, Latin America and the US. He's also worked for large multinational technology companies such as Palo Alto Networks, Foundry Networks/Brocade, Alcatel Lucent, and Fore Systems/Marconi. Ian is originally from South Africa, and now resides in the United States. Robert Metcalfe, co-inventor of Ethernet, is renowned for many things, but perhaps none more so than his namesake law: 

Microsoft Azure Sentinel Powers Open Systems’ Threat Detection

Open Systems’ customers liked the Sentinel technology, but wanted the threat detection and...

Read More »

Former Check Point Execs Score $20M for Orca Security

With the Series A round, in addition to $6.5 million in seed funding, Orca plans to double its team...

Read More »

Daily Roundup: Cisco Debunks Security Myths

How Rakuten Mobile Corralled Vendors for Its Open RAN Vision

Complexities were abundant and corralling vendors for a virtualized, cloud-native, open radio...

Read More »

Cisco Debunks Cybersecurity Myths

Cisco’s latest security report, based on a survey of almost 500 SMBs, aims to debunk myths about...

Read More »

Headcount: Firings, Hirings, and Retirings — April 2020

AT&T selected Stankey as its new CEO; Google to slow hiring; Cisco vowed no job cuts; plus the...

Read More »

CloudGenix Key to Palo Alto Networks SASE Play

Palo Alto networks purchased CloudGenix at the end of March for $420 million in a bid to bolster...

Read More »

Cisco Squashes Yet Another SD-WAN Bug

While Cisco says it is not aware of any malicious use of the vulnerability, with 20,000 customers...

Read More »

Fortinet CISO: Here’s What ‘New Normal’ Cloud Security Needs

“My advice to companies right now is to really think about what will happen next,” said...

Read More »

How Microsoft Spun Up 32,000 VDI Sessions in 2 Days

Meanwhile the company only increased its virtual private network capacity 1.5 times to support all...

Read More »

The Edge is Edgy!

This blog will provide insights to help you on your journey by exploring key considerations...

Read More »

Microsoft Jolts Arc Further Across Red Hat

The expansion will allow users to manage OpenShift clusters running on Azure or on...

Read More »

Daily Roundup: Google Eyes D2iQ Acquisition

Google eyeing a D2iQ purchase | Dell, Pluribus tackled video security; and AWS narrowly...

Read More »

Facebook, Cisco, Verizon Give Glimpse Into Future of Networks

“As a result of COVID-19, we’re getting a glimpse of what the future for the internet is...

Read More »

Microsoft Azure, Intel Keep Cloud Data Confidential

The new Azure confidential computing service allows companies to process data in hardware-based...

Read More »

SD-WAN Complexity Remains Adoption Burden, Says Aryaka

According to the vendor's latest annual survey, 37% of respondents named complexity as their No. 1...

Read More »

Untangle Rolls Out Predictive Routing to SD-WAN Router

The technology is designed to translate information from packet headers, out of band information,...

Read More »

Eventually Secure?

I have a Disney+ account. I have kids and I like Star Wars, so it made sense. I got it all set up the day it came out and started binge watching the Mandalorian. However, in my haste to get things up and running I reused an old password instead of practicing good hygiene. As the titular character might scold me, “This is not the way.” I didn’t think anything about it until I got a notification that someone from New Jersey logged into my account.

I panicked and reset my password like a good security person should have done in the first place. I waited for the usual complaints that people had been logged out of the app and prepared to log everyone in again and figure out how to remove my New Jersey interloper. Imagine my surprise when no one came to ask me to turn Phineas and Ferb back on. Imagine my further surprise when I looked in the app and on the Disney+ website and couldn’t find a way to see which devices were logged in to this account. Nor could I find a way to disconnect a rogue device as I could with Netflix Continue reading