The padlock icon and HTTPS in the URL bar not only ensure the integrity of your data, but also increase your visitor’s confidence knowing that their personal and financial details are safe and encrypted. Beyond satisfying HIPAA & PCI compliancy requirements, HTTPS is also a ranking signal, potentially improving your domain’s SEO.
Creating and managing your SSL certificates can be easily accomplished through a few clicks within the Cloudflare dashboard or via API.
Wildcard certificates reduce the complexity of protecting multiple hostnames by covering multiple levels of a domain (e.g. example.com, *.example.com, *.secure.example.com), all in the same certificate.
Keeping your SSL certificates up to date is an important security practice. Cloudflare Dedicated SSL Certificates are automatically renewed on your behalf prior to expiration. When security conditions require it, certificates are also automatically reissued ensuring your data has the highest level of integrity and availability.
Shorter physical distance between your certificate and your visitors results in enormous performance gains. Cloudflare distributes your certificates to our edge servers around the globe to significantly reduce the latency incurred during the TLS handshake.
Cloudflare has been a major contributor of emerging encryption technologies like the Transportation Layer Security (TLS) 1.3 protocol. TLS 1.3 provides unparalleled privacy and performance compared to previous versions of TLS, and Cloudflare is the first to offer TLS 1.3 on a global scale. The secure web is now more performant than any other previous version and non-secure HTTP.
Cloudflare has also been a leader in the global implementation of networking technologies like HTTP/2 and Server Push, which have been designed to improve page load times. A secure connection over HTTPS is required in order to take advantage of HTTP/2 and Server Push.
Cloudflare issued certificates are trusted by all common browsers, email clients, operating systems, and mobile devices.
For utmost compatibility, each Dedicated SSL Certificate includes three versions of the certificate SHA-2/ECDSA, SHA-2/RSA, SHA-1/RSA. When a browser attempts to connect to your domain, Cloudflare will serve the optimal certificate version to establish the connection.
The SHA-2/RSA and SHA-1/RSA certificates utilize a 2048-bit private key to secure data transmission where SHA-2/ECDSA certificates uses the P-256 curve. ECDSA results in smaller key sizes making TLS faster and more scalable while providing better security than the default cryptography in use on the web.
Set up a domain in less than 5 minutes. Keep your hosting provider. No code changes required.
Everyone’s Internet application can benefit from using Cloudflare.
Pick a plan that fits your needs.