Security blog

Security blogSecurity advisoriesReport a security issueSecurity documentation
June 29, 2020

Why Compute@Edge does not yet support JavaScript

Building our own compiler toolchain allows Compute@Edge to be both performant and secure. It also means we have to bring developers’ most-loved language into the fold in the right way.
June 29, 2020

TLS 1.3 is faster, more robust, and now available

TLS 1.3 is now available for Fastly customers. The newest version of the TLS protocol, TLS 1.3 is designed to improve the performance and security of traffic served over HTTPS.
March 19, 2020

New security dashboard integrations for WAF & real-time logging

Using integrations with BigQuery and Looker, we’ve created 15 chart templates that help you effectively monitor security events on your sites and applications, in real time.
February 12, 2020

Three ways TLS 1.3 protects origin names

The newest version of Transport Layer Security, TLS 1.3, is faster, more robust, and more responsive than ever before. Explore three ways it will help HTTPS protect origin names for improved…
January 21, 2020

5 tips for creating a secure DevOps culture

Integrating security into your DevOps cycle isn’t something that happens overnight. Here are five tips for building a culture in which secure DevOps can thrive, enabling your team to build…
November 18, 2019

TLS with Fastly is now easier and more flexible

Fastly now offers two new TLS services for the trust, flexibility, and scalability customers need to bring the best of the internet to life.
June 11, 2019

Defend against credential stuffing attacks with proof of work

With attackers using publicly available lists of compromised passwords in an attempt to steal accounts, proof of work is a good way to slow the attackers down.
September 13, 2018

Introducing Platform TLS and Subscriber Provided Prefix

Today we’re announcing two new offerings on the Fastly platform: Platform TLS and Subscriber Provided Prefix. Both empower companies to provide fast, secure web experiences to their…
August 14, 2018

Fastly's Response to SegmentSmack

A remotely exploitable denial-of-service (DoS) attack against the Linux kernel, called SegmentSmack, was made public on August 6th, 2018 as CVE-2018-5390. Fastly was made aware of this…
June 21, 2018

Introducing Quick Value Packages

Keeping your digital presence continuously tuned, optimized, and secure to align with changing business and technical requirements can be time consuming. That’s why we’ve put together our…
March 8, 2018

Building the WAF test harness

To help our customers secure their sites and applications — while continuing to give their users reliable online experiences — we’ve built a performant, highly configurable, and…
February 6, 2018

DDoS attacks: how to protect + mitigate

In part one of this series, we took a look at the evolving DDoS landscape, offering a sense of what’s out there in terms of attack size and type to help better inform decisions when it comes…
Newer postsOlder posts