Fastly, the edge cloud platform provider, has announced the general availability of Certainly, its own Transport Layer Security (TLS) certificate authority (CA). This comes after the initial announcement of Certainly as a limited program in February. The purpose of Certainly is to allow customers to use in-house issued digital certificates to secure any website or API endpoint served by Fastly’s content delivery network (CDN).
TLS is a security protocol that establishes an encrypted connection between web servers and web applications. It relies on signed certificates that are issued by certificate authorities (CAs). However, if a CA loses trust due to issues like not properly validating domain ownership or losing control of encryption keys, the certificates it issued can no longer be trusted. This not only compromises the security of data flowing to and from the web application but also raises doubts about the legitimacy of the domain.
In February, Fastly recognized the importance of having a fallback option when other CAs experience failures, which led to the development of Certainly. Certainly certificates have a validity period of only 30 days, which is significantly shorter than the 90-day industry norm that Google is advocating for. This shorter validity period reduces the timeframe in which a compromised certificate can be used. In comparison, Let’s Encrypt, another CA, issues certificates valid for 90 days.
In addition to the launch of Certainly, Fastly has also made an undisclosed acquisition of Domainr, a real-time domain availability API provider. This acquisition will allow Fastly to integrate Domainr’s API into its services and infrastructure. As a result, customers will gain the ability to instantly check domain availability, monitor critical domains, and identify at-risk domains.
The combination of Certainly and the Domainr acquisition positions Fastly to provide end-to-end services for all TLS and domain name needs. It strengthens the company’s global web infrastructure as it expands its reach worldwide. Anil Dash, head of Glitch and vice president of developer experience at Fastly, expressed his enthusiasm for the acquisition, stating that Domainr’s API and unique view of the ecosystem will enable new ways of preventing risks related to domains in the future.
Fastly’s move towards establishing its own TLS certificate authority reflects the increasing importance of securing web applications and protecting domains from potential vulnerabilities. By offering customers the option to use in-house issued digital certificates, Fastly aims to provide a reliable and secure solution for their content delivery needs.
With the integration of Domainr’s API, Fastly further enhances its services by empowering customers to efficiently manage their domain portfolios. The ability to instantly check domain availability and monitor critical domains can help businesses proactively address potential issues and mitigate risks.
As Fastly expands its global web infrastructure and strengthens its position as a leading edge cloud platform provider, Certainly and the acquisition of Domainr bring added value to its customers. By offering end-to-end solutions for TLS and domain name needs, Fastly demonstrates its commitment to providing comprehensive and secure services in an ever-evolving digital landscape.