Académique Documents
Professionnel Documents
Culture Documents
Cloudflare is determined to help build a better internet. Traditionally, websites purchased and installed
Launched in 2010 at TechCrunch Disrupt as an easy certificates on their own, often requiring extra effort
way to protect websites from attacks, Cloudflare has to make them function with CDNs and other service
evolved into an internet performance and security providers. Delivering secure connections was a
company that protects websites, APIs, applications, and prerequisite for the modern web, but getting there one
pretty much anything connected to the internet, all while site at a time wasn’t fast enough.
accelerating and improving performance.
Patrick and his team saw the opportunity to give all
Utilizing 150+ data centers in 74 countries around the customers—and their customers’ end users—SSL
world, Cloudflare protects internet applications against certificates for all their Cloudflare-protected domains.
DDoS attacks, web application vulnerabilities and This would require a CA partner who could handle
traffic from malicious bots, and in addition Cloudflare high-volume deployment and deliver the fastest
accelerates internet applications, improves mobile issuance speeds.
experiences and ensures availability. Cloudflare
makes more than 8.5 million internet properties
faster and safer, and serves more web traffic than “SSL for SaaS was a big
Twitter, Amazon, Apple, Instagram, Bing, and opportunity and a big undertaking.
Wikipedia combined.
We needed a CA partner that
The Challenge could handle issuing millions of
Customers have shifted from seeing SSL as nice to
certificates—quickly and reliably.”
have, to a non-negotiable part of running a business. Patrick R. Donahue,
Demand has been driven by industry changes, like Security Engineering Product Lead, Cloudflare
Google Chrome visibly labeling websites as “Not
Secure” if they don’t use HTTPS. Unfortunately, there
wasn’t a fast and easy way for SaaS providers to deploy
certificates by the millions for their customers.
1
Cloudflare case study
Solution
Working with DigiCert, Cloudflare made issuing and disruptive to customers and end users, and resulted in
managing SSL certificates simple and fast. The result low HTTPS adoption rates.
was SSL for SaaS—a solution which allows a SaaS
provider’s customers to use SSL with their custom Now, customers need only make the DNS change.
vanity domain and receive all the other security and Cloudflare takes care of the rest by automating
performance benefits of Cloudflare’s network. validation, issuance, and renewal using DigiCert APIs.
Sending a single API call or making a few clicks in the
Before SSL for SaaS, there was no automated solution Cloudflare dashboard, customers can issue and deploy
for SaaS companies to manage the SSL lifecycle a certificate worldwide in around 60 seconds. By the
for their customers. Providers were forced to build time the SaaS application is provisioned, Cloudflare has
their own costly integration, or put in place manual an SSL certificate ready at the edge.
processes which required their customers to obtain,
upload, and renew SSL certificates. The ability to scale up to millions—even billions—of
certificates was one of the many reasons Cloudflare
Customers were required to make DNS changes, chose to partner with DigiCert. Patrick explained,
generate private keys and CSRs, send them to a CA “One thing that gave us a lot of comfort in partnering
for signing, upload the certificates, securely provide with DigiCert was the fact that they had stress tested
the key material, and repeat this process every time their systems to issue a billion certificates. It gave us
the certificate was up for renewal. This was highly confidence that, if we were to hit that number, DigiCert’s
infrastructure could keep up.”
app.yourcustomer.site
api.cloudflare.com
2
Cloudflare case study
© 2019 DigiCert, Inc. All rights reserved. DigiCert is a registered trademark of DigiCert, Inc. in the USA and elsewhere.
All other trademarks and registered trademarks are the property of their respective owners.