Eastman Chemical Company — Infrastructure Technology Matrix

eastman.com  |  NYSE: EMN  |  ~$9.5B Revenue  |  ~14,000 Employees  |  Analysis Date: June 30, 2026

Secure Gap Partial ℹ Info CF Opportunity
At-a-Glance — Who Runs What NO WAF ON $9.5B FORTUNE 500 SITE
DNS
AWS Route 53
Vanity NS · ~2015 · No DNSSEC
CDN
AWS CloudFront
Main site only · ~2018
WAF
None
No WAF protection detected
Bot Management
None
No bot protection in place
API Security
None
No API protection in place
Network DDoS
None
4× /24 blocks unprotected
Email Security
Proofpoint
+ M365 · DMARC reject · SPF -all
Identity / SSO
Auth0 (on Cloudflare!)
+ Microsoft Entra ID
VPN / SASE
Palo Alto
GlobalProtect · Prisma (likely)
AI Tools
Cursor AI
Domain-verified · dev team
CMS / DAM
Adobe AEM
AEM Cloud (Fastly) + Scene7 (Akamai)
Cloud / BGP
AWS + On-Prem
AS397308 peers with Cloudflare!
Core Infrastructure
AWS Route 53Managed DNS
Category
Managed DNS
Nameservers
4 AWS NS
ns-326.awsdns-40.com
ns-769.awsdns-32.net
ns-1346.awsdns-40.org
ns-1888.awsdns-44.co.uk
Vanity NS
ℹ ns1–ns4.eastman.com
Actually Route 53 IPs (205.251.x.x)
DNSSEC
Not Enabled
CAA Records
None Published
IPv6 (AAAA)
None
Wildcard
Yes → 11.9.0.1 (sinkhole)
Est. Activation
~2015   Medium
CF Opportunity: 1-click DNSSEC, CAA mgmt, native IPv6, fastest authoritative DNS globally
AWS CloudFrontCDN
Category
Content Delivery Network
Coverage
www.eastman.com
hr, careers, status, qa subdomains
Via 18.154.206.x IPs
Origin
Apache + Adobe AEM Dispatcher
Behind AWS ALB
Gaps
media on Akamai, dev/preview on AEM Cloud (Fastly), on-prem exposed
Header Leaks
x-dispatcher, x-vhost, AWSALB/AWSALBTG cookies exposed
Multi-CDN
4 CDNs: CloudFront + Akamai + AEM Cloud/Fastly + Auth0/Cloudflare
Est. Activation
~2018   Medium
CF Opportunity: Unified CDN across ALL properties, eliminate 4-vendor fragmentation
None DetectedWeb Application Firewall
Category
WAF
XSS Test
NOT BLOCKED — HTTP 200
SQLi Test
NOT BLOCKED — HTTP 200
Path Traversal
404 (Apache, not WAF)
UA Fuzzing
sqlmap UA accepted
Assessment
No WAF on a Fortune 500 site — critical gap
Confidence
High — multiple vectors confirm
CF Opportunity: HIGHEST PRIORITY — Cloudflare WAF with managed rulesets, demo SQLi blocking
None DetectedBot Management
Category
Bot Management
Status
No bot mgmt visible
JS Challenge
None observed
CAPTCHA
None
Fingerprinting
None
Risk
IP/trade-secret scraping, credential stuffing, form abuse
Confidence
High
CF Opportunity: Cloudflare Bot Mgmt — protect product data and trade secrets
None DetectedAPI Security / Gateway
Category
API Security
API Gateway
None detected
Rate Limiting
None detected
CSP Header
Missing on main site
X-Frame-Options
Missing — clickjacking risk
Good Headers
HSTS preload, nosniff, referrer-policy
Confidence
High
CF Opportunity: API Shield, Transform Rules to inject missing headers, strip leaking ones
Cloud, Hosting & Network
Amazon AWSPrimary Cloud
Category
Cloud Hosting (Primary)
Services
CloudFront, ALB, EC2, Lambda@Edge, Route 53
IPs
18.154.206.x (CloudFront)
34.195.233.230 (EC2 — FTP)
Origin Leak
AWSALB/AWSALBTG cookies expose ALB
AEM Leak
x-dispatcher: dispatcher2useast1, x-vhost: publish
Est. Activation
~2015–2018   Medium
CF Opportunity: Cloudflare in front of AWS — header stripping, caching, WAF layer
EastmanOn-Prem (AS397308 + AS400157)
Category
Self-Managed Network
ASNs
AS397308 (EAB-ASN)
AS400157 (ENL-ASN)
IP Blocks
199.190.14.0/24
199.190.15.0/24
199.190.8.0/24
199.190.9.0/24
(1,024 total IPs)
Transit
Equinix (AS15830), COLT (AS8220)
CF Peering
AS397308 peers with AS13335 (Cloudflare!)
DDoS
None — direct transit only
CF Opportunity: Magic Transit for 4× /24 blocks — BGP peering already exists
AdobeAEM Cloud + Scene7 (CMS/DAM)
Category
Content Management / DAM
Production
Apache AEM Dispatcher → CloudFront
Dev/Preview
cdn.adobeaemcloud.com (Fastly)
Media/DAM
vsan-ion.scene7.com.edgekey.net (Akamai)
Analytics
GTM-PWPKVH, OneTrust consent
Est. Activation
AEM: ~2018 · AEM Cloud: ~2023  
CF Opportunity: Cloudflare works with AEM via standard origin pull — consolidate away from Fastly
DigiCert / GeoTrustSSL/TLS Certificates
Category
Certificate Management
Issuer
GeoTrust TLS RSA CA G1
→ DigiCert Global Root CA
Type
Organization Validated (OV)
RSA 2048-bit / SHA-256
Expires
Aug 28, 2026
SANs
eastman.com, www, preview, recreation + www variants (8 total)
CAA
No CAA records — any CA can issue
CF Opportunity: Auto cert management, Advanced Certificate Manager, 1-click DNSSEC
AkamaiMedia CDN (Scene7 only)
Category
Media Delivery CDN
Scope
media.eastman.com ONLY
Adobe Scene7 / Dynamic Media
CNAME
vsan-ion.scene7.com.edgekey.net
Note
Akamai use is inherited from Adobe, not direct contract
Coverage
Media assets only — not web
Confidence
High
CF Opportunity: Cloudflare Images / R2 can replace Scene7 CDN
Email, Identity & Security
ProofpointEmail Security Gateway
Category
Email Security
MX
eastman-com.mail.protection.outlook.com (pri 10)
SPF IP
149.72.194.3 (Proofpoint)
DMARC
p=reject (strongest)
SPF
Hard fail (-all) — excellent
DKIM
selector1/selector2 via M365
DMARC Reporting
Valimail (dmarc_agg@vali.email)
Est. Activation
~2019   Medium
CF Opportunity: CF Email Security as complement or replacement — defense in depth
Microsoft365 / Exchange Online
Category
Email & Collaboration
Tenant
eastmanchem.onmicrosoft.com
DKIM
selector1/selector2 active
Autodiscover
autodiscover.outlook.com
Teams
lyncdiscover → webdir.online.lync.com
sip → sipdir.online.lync.com
MDM
enterpriseenrollment → Microsoft Intune
SharePoint
On-prem still at 199.190.10.55
CF Opportunity: CF Access can protect hybrid SharePoint; replace Azure AD App Proxy
Auth0 (Okta) Already on Cloudflare!
Category
Customer / Partner Identity
Subdomain
auth.eastman.com
CNAME
eastman-cd-7mwzstpwgyassiyc.edge.tenants.us.auth0.com
Cloudflare
CF-Ray headers confirmed — runs on Cloudflare edge
Type
Custom Domain Auth0 deployment
Significance
Eastman's security team already sees CF in their logs
CF Opportunity: Expansion story — "You're already on our network via Auth0"
Palo Alto NetworksVPN / SASE
Category
VPN & Network Security
VPN
vpn.eastman.com → 199.190.14.138
Palo Alto GlobalProtect
SASE
Prisma likely — PAN TXT verification present
VPN Headers
Strong — CSP, HSTS, X-Frame, COOP
Note
VPN has BETTER security headers than main website
Est. Activation
~2020   Medium
CF Opportunity: Cloudflare One (ZTNA + SWG + CASB) — replace GlobalProtect
Microsoft Entra IDEmployee Identity / MDM
Category
Employee Identity & MDM
Entra ID
enterpriseregistration → windows.net
Intune MDM
enterpriseenrollment → manage.microsoft.com
Legacy ADFS
Decommissioned (sinkholed to 11.9.0.1)
Integration
Entra ID + Auth0 = dual identity (employees + customers)
Confidence
High
CF Opportunity: CF Access integrates natively with Entra ID; WARP complements Intune
AI Platforms, SaaS & Third-Party Services
Cursor AIAI Code Editor
Evidence
cursor-domain-verification TXT record
Significance
Dev team using AI-powered editors — signals openness to AI tooling
Confidence
Confirmed
CF: AI Gateway for observability + Workers AI
OneTrustPrivacy / Consent
Evidence
onetrust-domain-verification TXT + JS on site
Purpose
GDPR/CCPA cookie consent, privacy compliance
Confidence
Confirmed
Adobe SignE-Signature
Evidence
adobe-sign-verification TXT record
Purpose
Contract & document signing
Confidence
Confirmed
Cisco WebexCollaboration
Evidence
cisco-ci-domain-verification TXT record
Purpose
Video conferencing, meetings
Confidence
Confirmed
Miro / Sprout SocialCollaboration & Social
Evidence
miro-verification + sprout-social TXT records
Purpose
Visual collab (Miro), social media mgmt (Sprout)
Confidence
Confirmed
Vertex / Bluebeam / DellEnterprise SaaS
Evidence
vertexinc-cloud + bluebeam + dell TXT records
Purpose
Tax automation (Vertex), PDF markup (Bluebeam), hardware (Dell)
Confidence
Confirmed
Subsidiaries & Sister Domains
eastmanchemical.comLegacy Brand Domain
DNS
Vanity NS (ns1–ns4.eastman.com → Route 53)
Hosting
AWS CloudFront
Purpose
Redirects to eastman.com
Email
SPF: -all (hard fail, no sending)
Status
Properly configured
Confidence
High
eastman.org ON CLOUDFLARE — Verify Ownership
DNS
Cloudflare NS
elisabeth.ns.cloudflare.com
yahir.ns.cloudflare.com
Email
Google Workspace MX
Ownership
Likely NOT Eastman Chemical — different org (George Eastman Museum?)
Action
Verify whether related to Eastman Chemical
Confidence
Medium
Note: CF DNS + proxy confirmed but may not be Eastman Chemical's account
eastman.net NOT OWNED BY EASTMAN
DNS
mdnsservice.com / mailbank.com (third party)
Email
hostedemail.com MX
Risk
HIGH — brand confusion / phishing vector
Action
Eastman should acquire or file UDRP dispute
Confidence
High
CF Opportunity: CF Registrar for domain consolidation & brand protection
eastman.io / eastman.coReserved Domains
eastman.io
Vanity NS · CloudFront A records · SPF -all
eastman.co
Vanity NS · No A/MX · SPF -all
Status
Properly parked/reserved
Confidence
High
Other Brand DomainsMixed Status
eastmanperformancefilms.com
Vanity NS · No A/MX — parked
eastmansafety.com
Sinkholed (11.9.0.1) — decommissioned
recreation.eastman.com
Adobe AEM Cloud + Fastly — employee recreation
Status
Properly managed
Confidence
High
CF Opportunity: Registrar consolidation for all Eastman domains
Legacy Infrastructure & Shadow IT
F5 BigIP Decommissioned Gateway
Endpoint
connect.eastman.com → 199.190.14.149
Status
Returns 404 but F5 BigIP still responding
Risk
HIGH — F5 has had critical RCE CVEs (CVE-2023-46747, CVE-2022-1388)
Replaced By
Palo Alto GlobalProtect (~2020)
Fix
Remove DNS record; fully decommission appliance
FTP Server Insecure File Transfer
Endpoint
ftp.eastman.com → 34.195.233.230 (AWS EC2)
Protocol
FTP — cleartext credentials
Risk
HIGH — no CDN, no WAF, insecure protocol
Fix
Migrate to SFTP or Cloudflare R2 + Access
CF Opportunity: CF Access + R2 for secure file transfer
QA + Dev Environments Pre-Prod Exposed
QA
qa.eastman.com → d1a8wervetbhjy.cloudfront.net
Dev
dev.eastman.com → cdn.adobeaemcloud.com
Preview
preview.eastman.com → cdn.adobeaemcloud.com
Risk
MEDIUM — pre-production publicly accessible
Fix
Restrict via Cloudflare Access or IP allowlist
On-Prem Exposed Services Internal Tools Public
SMTP
smtp.eastman.com → 199.190.8.4
Open relay risk
SharePoint
sharepoint.eastman.com → 199.190.10.55
On-prem, publicly resolvable
eteams
eteams.eastman.com → 199.190.14.172
Internal collaboration tool
Fix
Move behind Cloudflare Tunnel or restrict to internal DNS
Header / Origin Leaks Info Disclosure
Server
Server: Apache (web server exposed)
AEM Dispatcher
x-dispatcher: dispatcher2useast1
AEM VHost
x-vhost: publish
ALB Cookies
AWSALB/AWSALBTG cookies leak backend
Fix
CF Transform Rules to strip all leaking headers
Competitive Landscape — Who Uses What
Arkema$10B · Direct Competitor
DNS
CSC DNS
CDN/WAF
Cloudflare
Cloudflare?
FULL STACK — best peer reference
Hexion$4B · Specialty Resins
DNS
DNS Made Easy
CDN/WAF
Cloudflare
Cloudflare?
FULL STACK — second peer ref
Dow / BASF$43B / $69B · Industry Giants
Dow DNS/CDN
Akamai (full stack)
BASF DNS/CDN
Self-managed DNS + CloudFront
Cloudflare?
No
Celanese / Huntsman$11B / $6B · Closest Peers
Celanese
Akamai CDN + WAF
Huntsman
CloudFront CDN, no WAF
Cloudflare?
No
DuPont / LANXESS / INEOSOther Peers
DuPont
UltraDNS
LANXESS
AWS Route 53 + Azure
INEOS
Netnames + Azure
Cloudflare?
No — 2/10 peers on CF (20%)
Top 5 Cloudflare Sales Entry Points
#1 — No WAF on Fortune 500WAF + Bot Mgmt + API Shield
A $9.5B company with zero WAF, zero bot management, zero API security. XSS and SQLi payloads return HTTP 200. Only company in peer set with no WAF.
Urgency
IMMEDIATE
#2 — Unprotected IP SpaceMagic Transit
4× /24 blocks (1,024 IPs) with no DDoS scrubbing. VPN, SMTP, SharePoint exposed. BGP peering with Cloudflare already exists — easiest possible deployment.
Urgency
HIGH
#3 — Palo Alto DisplacementCloudflare One (SASE)
Palo Alto GlobalProtect VPN + likely Prisma SASE. Cloudflare One (ZTNA + SWG + CASB + DLP + Browser Isolation) as full replacement. Auth0 already on CF edge.
Urgency
CONTRACT-DEPENDENT
#4 — DNS + DNSSEC + IPv6Cloudflare DNS (Enterprise)
AWS Route 53 with no DNSSEC, no CAA, no IPv6. 6+ CDN/proxy vendors to consolidate. Cloudflare DNS as foundation for full security stack.
Urgency
MEDIUM
#5 — Email SecurityCF Email Security
Proofpoint incumbent. Email posture is strong (DMARC reject, SPF -all) but CF Email Security as defense-in-depth complement or Proofpoint displacement at renewal.
Urgency
CONTRACT-DEPENDENT