<![CDATA[Your favorite cybersecurity company has a new blog post.]]>Your favorite cybersecurity company has a new blog post.

"What actually matters is not humanity in the abstract, but questions such as: is this attack traffic, is that crawler load proportional to the traffic it returns, do I expect this user to connect from this new country, are my ads being gamed?"

"We need to foster an open issuer ecosystem, where no single gatekeeper decides who can participate. In the rate limit trilemma, decentralization is mandatory on the open Web. We don't yet know fully how to build it, but we know we need to foster it."

Cloudflare: Moving past bots vs. humans https://blog.cloudflare.com/past-bots-and-humans/

@cR0w This is probably going to rub you the wrong way, in part.

]]>https://board.circlewithadot.net/topic/e7ab7f57-48d3-4e76-8c18-297a8afa24f0/your-favorite-cybersecurity-company-has-a-new-blog-post.RSS for NodeFri, 15 May 2026 05:57:42 GMTTue, 21 Apr 2026 16:50:44 GMT60<![CDATA[Reply to Your favorite cybersecurity company has a new blog post. on Tue, 21 Apr 2026 17:19:18 GMT]]>@cR0w I guess the concern is this: what exactly is "an open ecosystem of anonymous credentials?" How open? Who's guarding the "open" gates? Cloudflare? And what's the guarantee that the credentials remain anonymous, as opposed to the notion that someone knows what they are or someone is going to leak them?

]]>https://board.circlewithadot.net/post/https://infosec.exchange/users/AAKL/statuses/116443837797261310https://board.circlewithadot.net/post/https://infosec.exchange/users/AAKL/statuses/116443837797261310Tue, 21 Apr 2026 17:19:18 GMT<![CDATA[Reply to Your favorite cybersecurity company has a new blog post. on Tue, 21 Apr 2026 17:15:31 GMT]]>@AAKL The words they used could be okay if it weren't from Cloudflare where we've seen how they actually operate.

]]>https://board.circlewithadot.net/post/https://infosec.exchange/users/cR0w/statuses/116443822935874929https://board.circlewithadot.net/post/https://infosec.exchange/users/cR0w/statuses/116443822935874929Tue, 21 Apr 2026 17:15:31 GMT<![CDATA[Reply to Your favorite cybersecurity company has a new blog post. on Tue, 21 Apr 2026 17:13:56 GMT]]>@cR0w At least they're owning up to the privacy part, as described. But the second part of this quote makes me uncomfortable, for some reason:

"We believe that control should remain with the client, and that an open ecosystem of anonymous credentials is key to preserving user privacy while protecting origins from abuse."

]]>https://board.circlewithadot.net/post/https://infosec.exchange/users/AAKL/statuses/116443816712992517https://board.circlewithadot.net/post/https://infosec.exchange/users/AAKL/statuses/116443816712992517Tue, 21 Apr 2026 17:13:56 GMT<![CDATA[Reply to Your favorite cybersecurity company has a new blog post. on Tue, 21 Apr 2026 16:55:46 GMT]]>@AAKL What a weird way for them to say they're going to consider machine traffic on par with human traffic.

]]>https://board.circlewithadot.net/post/https://infosec.exchange/users/cR0w/statuses/116443745266379357https://board.circlewithadot.net/post/https://infosec.exchange/users/cR0w/statuses/116443745266379357Tue, 21 Apr 2026 16:55:46 GMT