SSL for SaaS

Protect customers’ data with strong encryption

Protecting customer data is not only a security best practice but also what your customers and auditors expect.

Cloudflare partners with SaaS Providers to make encryption easy so your customers will have more confidence than ever in your service, knowing their data is safe.

ssl tls hero illustration
Cloudflare has been leading the way when it comes to SSL technology.
Kerry Munz
Director of Engineering – Platform Infrastructure

What's New with SSL for SaaS

location pin

Apex Proxy Flexibility

Allow your customers to proxy their apex to your application, regardless of their DNS provider. Either bring your own IP or we’ll supply a set for your end customer, so they can point to your application with an A record.

internet globe

Bring your own IP

Bring your own IP range to announce at Cloudflare’s edge. With BYOIP + SSL for SaaS solution you are able to manage the IP assignments of your customers.

cerificate

Custom SSL Certification Support

Upload your customer’s certificate whenever necessary. For your security-conscious customers, we offer CSR support, meaning their private keys stay on Cloudflare, while they use the CA of their choice.

cloudflare browser

Wildcard Custom Hostnames

Extend encryption, performance, and security to any customer subdomain with wildcard custom hostnames.

performance routing

Custom Origins

Route customers to your origin of choice as your company scales.

edit

Customizable Domain Configurations

Add specific rules to customer domains for maximum customization.

Sign up for the beta

Are you ready to extend Cloudflare benefits to your customers? Sign up for our beta here.

SaaSプロバイダーがエンドカスタマーのSSLのニーズに対応する場合のシナリオには次の3つがあります。

ssl for saas scenario 1

暗号化未対応でブランド名が含まれるバニティドメイン

SSLを使用しないカスタムバニティドメインは、SSLによるパフォーマンスの利点がなく安全にデータを転送できません。のぞき見に対して脆弱なために訪問者が閲覧する前にコンテンツが編集されたりインジェクション攻撃を受けるおそれがあります。

ssl for saas scenario 2

暗号化に対応済みでブランド名が含まれないドメイン

SaaSプロバイダーを通じてSSLに対応済みでカスタムバニティドメインでないドメインは結果的にブランド力やSEOランキングが低くなります。

ssl for saas scenario 3

社内での対応が困難

暗号化したうえでブランド名を含むバニティドメインを希望するSaaSプロバイダーはSSLのライフサイクルを手動で管理することができますが、展開期間が長期に及んで間接費がかかるか、複雑な自動ソリューションを社内で構築する結果になります。

Benefits of SSL for SaaS

Branded visitor experiences

Branded visitor experiences

You can offer branded domains to your customers, all while enjoying the added benefits of a fully managed SSL certificate. Branded domains offer end customers higher SEO rankings and improved visitor trust.

Secure and performant customer assets

Secure and performant customer assets

With SSL/TLS certificates, protect your end customers’ domains from on-path attackers and network snooping. Additionally, the HTTP/2 protocol becomes available for even greater speed improvements.

Automated SSL lifecycle management

Automated SSL lifecycle management

You don’t have to worry about any part of the SSL lifecycle. Cloudflare manages the entire process, from private key creation and protection through domain validation, issuance, renewal, and reissuance.

Rapid global SSL deployments

Rapid global SSL deployments

During the SSL issuance process, Cloudflare deploys new certificates across its global network of data centers in 200 cities, bringing HTTPS online within minutes.

With SSL for SaaS we have implemented a simpler flow because Cloudflare’s API handles the provisioning, serving, automated renewal and maintenance of our customers’ SSL certificates. Plus, end-to-end HTTPS now means we have bolstered privacy and performance for our customers, and can leverage browser features, like Local Storage, that we couldn’t use before.
Andrew Murray
CTO of Olo