Global CDN and DNS provider CloudFlare has launched Keyless SSL, a new technology that allows organizations to keep Secure Sockets Layer (SSL) keys private – out of reach from external parties. Keyless SSL would remove the last roadblock companies face in the migration from on-premise hardware to cloud-based network infrastructure.
Before Keyless SSL, organizations could not get the benefits of a cloud-based WAF, CDN, or other security and performance enhancement services without turning over cryptographic keys to a third-party cloud provider. Because of legitimate security concerns over revealing private SSL keys to a third party, most banks and Fortune 500 companies chose to maintain expensive on-premise equipment that would often fail under load.
“Organizations shouldn’t be shackled to a box just because they need to protect their private keys,” said Matthew Prince, co-founder and CEO of CloudFlare. “For the first time, enterprises can benefit from the functionality of on-premise hardware, but deployed as-a-service with infinite scalability and elasticity. CloudFlare’s Keyless SSL removes the last reason that has held organizations back from ripping out legacy hardware and moving to the power of the cloud.”
Fundamental security innovation
Senior director of Trust at EMC Corporation, Davi Ottenheimer believes Keyless SSL is a fundamental innovation in security. “The trade-offs between control and cloud services are being solved by innovation in key management. Keyless solutions, where customers retain control of keys, clearly improve security while maintaining the best service offerings. Keeping control of your own private key, yet enabling a cloud provider to serve your customers with the same level of trust, is a real breakthrough in content delivery security.”
Regardless of size or platform, the CloudFlare CDN supercharges websites with no need to add hardware, install software, or change a line of code. More than 5 percent of global Web requests would flow through CloudFlare’s network daily. The company has offices in San Francisco, California, USA and London, UK.
