AWS bolsters CloudFront security

AWS bolsters CloudFront security

Summary: Amazon Web Services enhanced the SSL implementation for its content delivery network called CloudFront.

SHARE:
TOPICS: Cloud, Amazon
2

Amazon Web Services said Thursday that it has revamped the SSL approach to its CloudFront content delivery network.

SSL (secure sockets layer) uses cryptography to secure communication over Web connections. CloudFront supported the use of secure HTTPS connections, but AWS said it is adding the following:

  • Improved performance with two features called Session Tickets and OCSP Stapling. Both features allow SSL to be used without code changes.
  • SSL Session Tickets will improve latency as a server exchanges multiple packets of content. In a nutshell, Session Tickets enables faster negotiations over SSL by streamlining server behavior and the "handshake" process.
  • OCSP Stapling improves the validation of an SSL certificate by resolving domain names and certificate validation and attaching the data to content packets.
  • Private keys for each SSL session.
  • Support for that latest ciphers in SSL exchanges.

The features are already rolled out and working in the background. CloudFront customers include PBS, Sega and NASA.

Topics: Cloud, Amazon

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

2 comments
Log in or register to join the discussion
  • Interesting

    I think what people are most concerned about is the specifics of how pipeline is being monitored and managed and that integration with encryption at rest, it's not enough to just say it is the cloud and fluffy, the SecSaaS details matter
    cdaringer@...
  • Interesting

    I think what people are most concerned about is the specifics of how pipeline is being monitored and managed and that integration with encryption at rest, it's not enough to just say it is the cloud and fluffy, the SecSaaS details matter
    cdaringer@...