Certificate Management Service is an all-in-one platform from Alibaba Cloud for the entire lifecycle management of SSL certificates, private certificates, and a certificate application repository. It helps you deploy and manage certificates across various scenarios. This topic provides an overview of the main services offered by Certificate Management Service to help you better understand its capabilities.
Service | Description | Reference |
SSL certificate management (referring in particular to server certificates) | Alibaba Cloud SSL certificates are trusted credentials issued by well-known, WebTrust-certified certificate authorities (CAs). They serve the dual functions of verifying your website's identity to users and encrypting data in transit. Because the HTTP protocol does not encrypt data, transmissions are vulnerable to leaks, tampering, and phishing attacks. By installing an SSL certificate, you establish a trusted, encrypted HTTPS connection between user browsers and your web server. This secures data in transit and helps meet the security compliance requirements of app markets and application ecosystems. | |
Private Certificate Authority (PCA) management | Enables you to build your own private certificate platform with a few clicks through Certificate Management Service console. You can then issue and manage self-signed private certificates for internal use, such as for application identity authentication and data encryption/decryption. | |
HTTPS acceleration gateway | Traditional certificate application and deployment can be time-consuming, and shortening certificate validity periods increase operational overhead. To address this, Alibaba Cloud offers the HTTPS acceleration gateway. By simply adding your domain name, you can enable HTTPS with some clicks. This service also supports auto-renewal, significantly reducing the maintenance pressure from frequent certificate updates. | |
Certificate application repository | Allows you to classify and manage certificates from various sources, such as Alibaba Cloud or your local environment. Using the repository's APIs, you can perform operations like signing, signature verification, and data encryption/decryption on sensitive files like electronic contracts and invoices to ensure their authenticity, integrity, and security. | |
Certificate notification | Allows you to customize the frequency, method, and business-specific dimensions of certificate alerts to meet your specific needs | |
Certificate toolkit | Allows you to perform free actions such as viewing certificate signing request (CSR) and certificate details, checking SSL status, and converting certificate formats. This provides helpful information to assist you with certificate application, configuration, and deployment. |