SSL/TLS - Upload a certificate bundle with an RSA and ECDSA certificate per custom hostname
1y ago
Source
CloudflareSSL/TLS - Upload a certificate bundle with an RSA and ECDSA certificate per custom hostnamecloudflare.comCloudflare has supported both RSA and ECDSA certificates across our platform for a number of years. Both certificates offer the same security, but ECDSA is more performant due to a smaller key size. However, RSA is more widely adopted and ensures compatibility with legacy clients. Instead of choosing between them, you may want both – that way, ECDSA is used when clients support it, but RSA is available if not. Now, you can upload both an RSA and ECDSA certificate on a custom hostname via the API. curl -X POST \ -H 'Content-Type: application/json' \ -H "X-Auth-Email: $CLOUDFLARE_EMAIL" \ -H "X-Auth-Key: $CLOUDFLARE_API_KEY" \ -d '{ "hostname": "hostname", "ssl": { "custom_cert_bundle": [ { "custom_certificate": "RSA Cert", "custom_key": "RSA Key" }, { "custom_certificate": "ECDSA Cert", "custom_key": "ECDSA Key" } ], "bundle_method": "force", "wildcard": false, "settings": { "min_tls_version": "1.0" } } }’ You can also: Upload an RSA or ECDSA certificate to a custom hostname with an existing ECDSA or RSA certificate, respectively. Replace the RSA or ECDSA certificate with a certificate of its same type. Delete the RSA or ECDSA certificate (if the custom hostname has both an RSA and ECDSA uploaded). This feature is available for Business and Enterprise customers who have purchased custom certificates.
You might also wanna read
Cloudflare Introduces Merkle Tree Certificates for Post-Quantum Internet Security
Cloudflare is introducing Merkle Tree Certificates as part of its post-quantum cryptography initiative to protect internet security against
Cloudflare expands post-quantum encryption to enterprise zero trust services
Cloudflare is rolling out post-quantum encryption for enterprise users, with approximately 35% of human-directed web traffic on its network
Technical Analysis of ECDSA Cryptography and Security Implications for Web3 Systems
This comprehensive technical article provides an in-depth exploration of ECDSA (Elliptic Curve Digital Signature Algorithm) from a Web3 secu
Large-Scale Study Finds 0% Adoption of Post-Quantum Certificates Across 32,011 Domains
This research paper presents a large-scale empirical evaluation of post-quantum readiness across 32,011 domains, focusing on real-world TLS
Cloudflare Accelerates Post-Quantum Security Roadmap, Targets 2029 for Full Implementation
Cloudflare has accelerated its post-quantum security roadmap, now targeting 2029 to achieve full post-quantum security including authenticat

Comments
Sign in to join the conversation.
No comments yet. Be the first.