CloudSSL – the cloud usage model applied to SSL

optimized cloud environments. Talk to GlobalSign about how the new CloudSSL can start securing your cloud services today.

SSL in the CloudCloudSSL - SSL deployment optimized for on-demand Cloud environments

CloudSSL v1.0.pdf

Given the nature of increased dependency on cloud-based services, it is imperative to evaluate the security trepidations involved. SSL/TLS is the standard for securing internet communications and increasingly the movement is for https to become the norm and preferred method of internet communication rather than traditional http.

Dynamic activation/deactivation of FQDNs

Unlimited license model for virtualization

Minimizes unique IP usage

SSL trusted by all browsers and mobile devices

API integration & automated approval process

The requirements for SSL deployment and usage have changed as cloud environments have developed. The following are some of the characteris-tics of the cloud environment’s SSL needs:

1. The need to secure multiple domains under one IP address2. Frequent updates and changes to the domain names used in cloud applications and storage3. Reliance on economies of scale for reduced costs in order to achieve operational effectiveness

Deployments falling into these categories include virtualized hosting and storage, hosted MS Exchange or Sharepoint, Content Distribution Networks (CDNs), DNS acceleration, DDoS protection and any other innovative service utilizing multiple FQDN’s under a single IP address.

As many cloud services require the cloud provider to operate some aspect of the customer’s DNS, host their domain or subdomain, control flow of data to and from multiple Web 2.0 applications and ensure cloud based data storage is suitably protected, traditional SSL administration becomes extremely complicated. Yet throughout the complexities, SSL is still the core security technology required for safe usage of the cloud.

To ensure cloud deployments use SSL effectively, GlobalSign has developed the essential technology to dramatically simplify the use of on-demand SSL in the cloud environment.

GlobalSign’s CloudSSL affords a unique SSL issuance model for the providers of cloud application, infrastructure, platform, storage and service environments. CloudSSL enables cloud style architectures to incorporate on-demand SSL protection in a scalable and cost effective fashion without the usual manual intervention required by the end customer.

The CloudSSL service issues GlobalSign multi-domain SSL certificates to the cloud service provider with the ability to dynamically add/remove customer domains via API calls including an unlimited license model to allow a single Certificate to be used across an entire virtualized infrastruc-ture. Uniquely, FQDNs are only activated when the end customer approves the right of the cloud provider to use SSL on their domain – ensuring cloud providers risk no liability in use of SSL specifically for their own particular service.

Essentially the CloudSSL service allows the rapid modification of the secure site scope of the Certificate over the lifetime of the certificate. Cloud service providers are then able to grant SSL protection to customers and end users without needing to purchase individual SSL certificates on their behalf, eliminating IP pool restrictions and activating SSL for domains as services are created, and deactivating SSL for domains as services are terminated – fitting perfectly in with the preferred cloud business model.

Along the theme of scalability, these processes can be completely integrated into the current infrastructure by using the CloudSSL SOAP-based XML API. Because of these features, CloudSSL has the potential to expand the SSL offerings and capabilities of your cloud environment while also providing scalability and flexibility that is essential to an effective cloud and ultimately benefiting from an SSL usage process that delivers quick issuance and minimal end user involvement.

CloudSSL – as used by:

UK +44 1622 766766 | www.globalsign.co.ukBelgium +32 16 891900 | www.globalsign.eu