Who controls the Internet? Analyzing global threats

&gt; Distributing malicious JavaScript content The authors consider three ways to do this: – directly compromising (or colluding with) web servers hosting JS code; injecting malicious JavaScript when JS libraries are accessed over unprotected connections (HTTP instead of HTTPS); and redirecting requests for JS content via compromised name resolution.<p>Importantly, the first and third can be mitigated by subresource integrity (SRI) in modern browsers. If you don&#x27;t control the host&#x2F;CDN serving your static JS, that&#x27;s how you protect against these attacks.<p>(The second, of course, is mitigated by regular old HTTPS.)

CloudFlare has certainly and quite quickly become a major player in the internet game. For what it&#x27;s worth, I&#x27;ve spent hours talking to Matthew Prince and while I&#x27;m sure he may rub some the wrong way he&#x27;s undoubtedly a really good human. I&#x27;m thankful he and Michelle Zatlyn (an equally awesome and talented person) are steering that ship given the power they hold.

It&#x27;s interesting to compare this with the 2006 book of the same name by Tim Wu.