Announcing Universal DNSSEC: Secure DNS for Every Domain

On November 10, 2015, Cloudflare announced that they would be enabling DNSSEC for all their users with a single click. This follows their launch of free SSL one year prior, which led to a significant increase in the size of the encrypted web. DNSSEC is designed to ensure that website traffic is safely directed to the correct servers and protect against on-path attacks. The move aims to double the size of the DNSSEC-enabled web this year, bringing the technology to millions of websites for free. Cloudflare also revealed their plans to create an Internet standard protocol for direct communication between DNS providers and registries, which would allow automatic activation of DNSSEC on tens of thousands of websites with certain TLDs.