Cloudflare has released the results of a privacy audit of their a 1.1.1.1 DNS service that backs up Cloudflare's statement regarding how DNS query data is being stored and collected on their servers.
After launching their 1.1.1.1 DNS service in 2018, people became concerned that Cloudflare was utilizing the data received from the use of their DNS resolvers as a currency that could be sold to third-parties or enrich the company in some way.
No doubt having huge amounts of data about the sites people visit would be of benefit, Cloudflare has always stated they put privacy first when they designed their 1.1.1.1 service by wiping logs within 24 hours and never writing the full IP address of users to logs.
"We began talking with browser manufacturers about what they would want from a DNS resolver. One word kept coming up: privacy. Beyond just a commitment not to use browsing data to help target ads, they wanted to make sure we would wipe all transaction logs within a week. That was an easy request. In fact, we knew we could go much further. We committed to never writing the querying IP addresses to disk and wiping all logs within 24 hours." - Cloudflare
Even with these promises, with the huge portions of the Internet already utilizing their services, users were still concerned about the tremendous amount of data being fed into Cloudflare.
This was further exacerbated when Cloudflare became the default DNS resolver in Firefox for the browser's DNS-over-HTTPS implementation.
To ease user's concerns, Cloudflare hired an independent auditing firm, KPMG, to perform a p ..
Support the originator by clicking the read the rest link below.
