Certificate Management Service is a platform that is provided by Alibaba Cloud for certificate issuance and management. Certificate Management Service allows you to manage your SSL certificates throughout their entire lifecycles, manage private certificates, and use the certificate application repository feature. You can install and manage certificates in different scenarios. This topic describes the features that are provided by Certificate Management Service.
Feature | Description | References |
SSL certificate management (referring in particular to server certificates) | Alibaba Cloud SSL certificates are trusted credentials that are issued by well-known certificate authorities (CAs). The CAs are certified by WebTrust. You can use SSL certificates to authenticate visitors to your website and encrypt data in transmission. HTTP cannot be used to encrypt data. During HTTP transmission, data leaks, data tampering, or phishing attacks may occur. After you install an SSL certificate on your web server, you can establish HTTPS-encrypted connections between your web server and website. This ensures the security of your website and data transmission. In addition, your website can meet the compliance requirements of app stores or application ecosystems. | |
Private certificate management | Private Certificate Authority (PCA) allows you to build a private certificate platform for your enterprise in an efficient manner. Then, you can issue and manage self-signed private certificates within your enterprise. Private certificates are used to authenticate applications and encrypt and decrypt the data of your enterprise. | |
HTTPS acceleration gateway | The traditional application and deployment processes of certificates are time-consuming. In addition, the issue that the certificate validity period continues to shorten results in high O&M pressure. To resolve the preceding issues, Alibaba Cloud provides the HTTPS acceleration gateway feature. You can add the domain name of a website to an HTTPS acceleration gateway instance with a few clicks to implement HTTPS transmission. The HTTPS acceleration gateway feature supports auto-renewal to reduce frequent certificate updates due to shortened validity periods and relieves O&M pressure. | |
Certificate application repository | You can use the certificate application repository feature to classify certificates from different data sources, including Alibaba Cloud certificates and local certificates. This way, you can manage certificates in a convenient and efficient manner. You can also use certificate application repository-related API operations to encrypt, decrypt, or sign sensitive data files such as electronic contracts and electronic invoices, or verify signatures. This helps ensure the authenticity, integrity, and security of the data files. | |
Certificate notification | You can use the notification feature to configure custom notifications for certificates based on your business requirements. The notification settings include notification items, notification frequencies, and notification methods. | |
Certificate toolkit | You can use the certificate toolkit to view the information about a certificate signing request (CSR), view the information about a certificate, check the status of SSL encryption, and convert the format of a certificate. This way, you can obtain more references when you apply for, configure, and deploy a certificate. |