Security at CDNZero

We treat security as a core product feature, not an afterthought. Here's how we protect your data and infrastructure.

Encryption

  • TLS 1.3 for all data in transit
  • AES-256 encryption for data at rest
  • Automatic certificate provisioning and rotation
  • HSTS enforcement across all endpoints

DDoS Protection

  • 10+ Tbps network capacity for volumetric attack absorption
  • Layer 3/4 and Layer 7 mitigation
  • Automatic detection with <10 second response time
  • No additional cost — included on all plans

Infrastructure

  • Geographically distributed data centers
  • Automated failover and redundancy
  • Regular security patching and hardening
  • Network segmentation and isolation

Access Control

  • API token authentication with scoped permissions
  • Multi-factor authentication for dashboard access
  • Role-based access control (Enterprise)
  • SSO integration via SAML 2.0 and OIDC (Enterprise)

Monitoring

  • 24/7 automated infrastructure monitoring
  • Real-time anomaly detection on traffic patterns
  • Audit logs for all account actions
  • Automated alerting for security events

Incident Response

  • Documented incident response procedures
  • Post-incident reports shared with affected customers
  • Status page with real-time system health
  • Dedicated security team for escalations

Report a Vulnerability

If you discover a security vulnerability in CDNZero, we appreciate responsible disclosure. Please report it to our security team and allow us reasonable time to address it before public disclosure.

security@cdnzero.com