We designed DistilledODN with security and resilience as a top priority from the outset. The system is engineered to be fast, robust, resilient and secure.
The FAQ section of the deck goes also contains some technical details and is designed to be shared with engineering and operations teams.
DistilledODN operates in 3 AWS regions, two in the US and one in the EU.
DistilledODN is designed with multiple levels of resilience and failover in place. In each AWS region traffic is load balanced across an auto-scaling group of servers. At times of high load new servers are automatically provisioned to maintain a certain level of redundancy in platform capacity. Each server has squid installed and can fallback to being a transparent proxy in the event of an application error.
By default we configure the system to route around the ODN entirely in the unlikely case of catastrophic failure or complete outage of AWS across multiple availability zones and regions. This can happen almost instantly via Amazon’s Route53 service as well as at the CDN level for sustained outages. Under any of these circumstances your site stays up and available but without the ODN enhancements and tests.
Each of our 3 AWS regions has been load tested to traffic levels peaks of up to 9,000 requests per second per region, for a tested peak capacity of over 21,000 requests per second. Currently, we handle over 1.5 billion page views per month.
The graph above shows a load test of sustained 1500 requests per second to a 25kb page. The response time to return the page to the end user was 80ms (including fetching the page from the origin server and processing it for adaptations).
DistilledODN is a mission-critical platform, and demands a high level of security. We approach security both at a user level and at a systems level. In particular:
We work with a third-party penetration testing company, Lift Security, who have not discovered any serious problems during their penetration testing. We can provide the most recent report on request.
Please note our bug bounty program applies only DistilledODN properties, not to other Distilled properties. www.distilled.net is out of scope.
We encourage responsible disclosure of security vulnerabilities via our bug bounty program. You can contact us at email@example.com to report a security vulnerability.
Responsible disclosure means:
In order to encourage responsible disclosure, we will not bring legal action against researchers who point out a problem provided they have followed these guidelines.
The minimum payout is $100 and Distilled branded swag for reporting a new security vulnerability which results in us making a code or configuration change. We will use our discretion to reward researchers appropriately - biasing towards higher rewards for reports that affect the integrity or uptime of our customers’ websites.
Please note that we are a small team, and so for lower priority issues it may take time for us to decide on a course of action and for us to get back to you about any bounty. Please be mindful of this -- emailing us frequently only adds to our workload and slows down the process.
All services comprising DistilledODN are eligible - including this website (but not other Distilled sites or sub-domains, such as www.distilled.net), the management app, and the proxy service itself. Distilled services and properties not relating to DistilledODN are excluded.
You must present a working proof of concept, and a valid attack scenario to be eligible for any sort of reward.
The following would not meet the threshold for consideration:
www.distilled.net is out of scope