SSL Encryption is crucial for the encrypted internet. We have supported strong encryption and modern ciphers since our startup, and the large majority of sites on Servebolt have been securely encrypted ever since.
Servebolt supports many flavours of SSL certificates and encryption. In addition to selling several flavours of certificates, like multi-domain, wildcard, EV and regular certificates, we also provide free solutions.
Check your certificate with SSL Labs
You can test your SSL configuration using the online tool from SSL Labs. On Servebolt, your setup should deliver A or A+ results, indicating that the setup is modern and secure.
SSL and Performance
Traditionally SSL had a hard impact on page load time. This is largely resolved in HTTP/2, where added connection setup time is countered by multiplexing and faster delivery of all page assets. This means that encrypted websites running modern protocols, accessed from modern devices, run faster than they did un-encrypted on HTTP/1.
On the server side, encryption has an added cost. Encryption takes time, and how expensive the encryption is in terms of CPU resources depends on the bit size of the encryption keys, and the type of algorithm used, for example traditional RSA or modern elliptic curve ECDSA.
Free SSL on all testing domains
Every Bolt has it’s own unique default testing domain name. These domains are delivered out of the box with SSL enabled, totally free of charge.
Free Let’s Encrypt Certificates
Our users have been asking for free Let’s Encrypt certificates since it was first launched. Because of our custom tech stack, and for performance reasons we have had to plan a Free SSL offering so that it does not limit performance, and affect performance and scalability negatively.
This project is nearing an end, and we expect to add Free Let’s Encrypt as an option for Bolts before 2019 comes to an end.
Free Self-signed Certificates
Self-signed certificates can be generated for any domain free of charge. They provide the same level of security as other SSL certificates, but post a browser warning which makes them unusable for public website usage. They are however useful to secure internal and API-endpoints, or if your website is running behind a reverse proxy, for example like a CDN.
SSL on Proxy CDNs
When using services like Cloudflare or Sucuri, the CDN edge is the user facing connection point. It is still important though, to encrypt the connection from the CDN to the origin server. Certificates on the origin server can either be signed certificates, or self-signed certificates. The latter provides the same level of encryption, but the validation of the issuer can be ignored in private setups.
If you have any questions about how you should set up and configure your encrypted solution, we are happy to assist you making the right decisions. Talk to us on the site chat!