Functions
-
Manage CAs
You can create and manage private root CAs and subordinate CAs. You can also manage CAs from third parties.
You can create and manage private root CAs and subordinate CAs. You can also manage CAs from third parties.
-
Manage Certificates
You can manage SSL and private certificates through their entire lifecycle, including issuing, querying, and revoking certificates.
You can manage SSL and private certificates through their entire lifecycle, including issuing, querying, and revoking certificates.
-
Protect Websites, Applications, and Applets
You can use SSL to encrypt connections between your website, applications, or applets and your customers. Your customers will no longer see warning messages indicating that their connections are not secure.
You can use SSL to encrypt connections between your website, applications, or applets and your customers. Your customers will no longer see warning messages indicating that their connections are not secure.
-
Protect Internal Assets
Private certificates identify and protect internal resources, such as applications, servers, IoT devices, and user details.
Private certificates identify and protect internal resources, such as applications, servers, IoT devices, and user details.
Certificate Differences
活动对象:华为云电销客户及渠道伙伴客户可参与消费满送活动,其他客户参与前请咨询客户经理
活动时间: 2020年8月12日-2020年9月11日
活动期间,华为云用户通过活动页面购买云服务,或使用上云礼包优惠券在华为云官网新购云服务,累计新购实付付费金额达到一定额度,可兑换相应的实物礼品。活动优惠券可在本活动页面中“上云礼包”等方式获取,在华为云官网直接购买(未使用年中云钜惠活动优惠券)或参与其他活动的订单付费金额不计入统计范围内;
活动对象:华为云电销客户及渠道伙伴客户可参与消费满送活动,其他客户参与前请咨询客户经理
活动对象:华为云电销客户及渠道伙伴客户可参与消费满送活动,其他客户参与前请咨询客户经理
活动时间: 2020年8月12日-2020年9月11日
活动期间,华为云用户通过活动页面购买云服务,或使用上云礼包优惠券在华为云官网新购云服务,累计新购实付付费金额达到一定额度,可兑换相应的实物礼品。活动优惠券可在本活动页面中“上云礼包”等方式获取,在华为云官网直接购买(未使用年中云钜惠活动优惠券)或参与其他活动的订单付费金额不计入统计范围内;
活动对象:华为云电销客户及渠道伙伴客户可参与消费满送活动,其他客户参与前请咨询客户经理
活动对象:华为云电销客户及渠道伙伴客户可参与消费满送活动,其他客户参与前请咨询客户经理
活动时间: 2020年8月12日-2020年9月11日
活动期间,华为云用户通过活动页面购买云服务,或使用上云礼包优惠券在华为云官网新购云服务,累计新购实付付费金额达到一定额度,可兑换相应的实物礼品。活动优惠券可在本活动页面中“上云礼包”等方式获取,在华为云官网直接购买(未使用年中云钜惠活动优惠券)或参与其他活动的订单付费金额不计入统计范围内;
活动对象:华为云电销客户及渠道伙伴客户可参与消费满送活动,其他客户参与前请咨询客户经理
Certificate Type
SSL Certificate
Private Certificate
Issued By
World-famous CAs, such as DigiCert and GeoTrust
A trusted CA established inside an enterprise
Application Scenarios
SSL certificates encrypt data transmission for websites, applications, and applets. Using SSL certificates can strip away the "Not Secure" warning from browsers, improve brand image, raise SEO rankings, and help meet security compliance standards.
Private certificates are used to identify and protect internal applications, services, devices, and user details of an organization, such as internal networks of an enterprise, Internet of Vehicles (IoV) platforms, and Internet of Things (IoT) platforms.
Security Level
Many cryptographic algorithms supported, such as RSA and ECC; trusted by public browsers and systems; EV or OV SSL certificates available to meet special security requirements.
Many cryptographic algorithms supported, such as RSA and ECC; trusted by internal systems of enterprises.
Deployed on Internal Network
Not supported. SSL certificates must be associated with a domain name.
Supported. Private certificates can be deployed on internal networks.
Validity Period Range
An SSL certificate is valid for one year from the date it is issued. You can buy and apply for a new one when the old one is about to expire.
Private root CAs: 1 to 30 years. Private certificates: 1 to 20 years
Pricing
Private CAs and certificates
$0
.55 USD
/hour
Issued By
SSL Certificate
World-famous CAs, such as DigiCert and GeoTrust
Private Certificate
A trusted CA established inside an enterprise
Application Scenarios
SSL Certificate
SSL certificates encrypt data transmission for websites, applications, and applets. Using SSL certificates can strip away the "Not Secure" warning from browsers, improve brand image, raise SEO rankings, and help meet security compliance standards.
Private Certificate
Private certificates are used to identify and protect internal applications, services, devices, and user details of an organization, such as internal networks of an enterprise, Internet of Vehicles (IoV) platforms, and Internet of Things (IoT) platforms.
Security Level
SSL Certificate
Many cryptographic algorithms supported, such as RSA and ECC; trusted by public browsers and systems; EV or OV SSL certificates available to meet special security requirements.
Private Certificate
Many cryptographic algorithms supported, such as RSA and ECC; trusted by internal systems of enterprises.
Deployed on Internal Network
SSL Certificate
Not supported. SSL certificates must be associated with a domain name.
Private Certificate
Supported. Private certificates can be deployed on internal networks.
Validity Period Range
SSL Certificate
An SSL certificate is valid for one year from the date it is issued. You can buy and apply for a new one when the old one is about to expire.
Private Certificate
Private root CAs: 1 to 30 years. Private certificates: 1 to 20 years
Application Scenarios
SSL Certificate Manager (SCM)
You can deploy SSL certificates on your websites, applications, or other services to migrate your workloads from HTTP to HTTPS.
Application Scenarios
Trusted website authentication | Trusted application authentication | Data transmission protection
Advantages
Product Advantages
-
Managed Private CAs
You can easily manage CAs and private certificates on a pay-per-use basis. This frees you from having to build or maintain complex CA infrastructures.
You can easily manage CAs and private certificates on a pay-per-use basis. This frees you from having to build or maintain complex CA infrastructures.
-
Complete CA Hierarchy
You can create a flexible CA hierarchy that covers root CAs, subordinate CAs, and external CAs. This allows you to deploy as many applications as you want.
You can create a flexible CA hierarchy that covers root CAs, subordinate CAs, and external CAs. This allows you to deploy as many applications as you want.
-
Entire Lifecycle Management
You can centrally manage up to millions of certificates and keys. You can revoke certificates using certificate revocation lists and receive notices before and when a certificate expires.
You can centrally manage up to millions of certificates and keys. You can revoke certificates using certificate revocation lists and receive notices before and when a certificate expires.
-
Varied Key Algorithms
PCA uses a wide range of key algorithms, such as RSA2048, RSA4096, ECC256, and ECC384. PCA supports X.509 v3 certificate format and complies with international PKI and CA standards.
PCA uses a wide range of key algorithms, such as RSA2048, RSA4096, ECC256, and ECC384. PCA supports X.509 v3 certificate format and complies with international PKI and CA standards.
-
Flexible API Integration
PCA provides you with great flexibility through abundant APIs that allow you to efficiently integrate and deploy products in the development environment.
PCA provides you with great flexibility through abundant APIs that allow you to efficiently integrate and deploy products in the development environment.
-
Secure Key Storage
CCM uses Huawei Key Management Service (KMS) and hardware security modules (HSMs) to store keys securely.
CCM uses Huawei Key Management Service (KMS) and hardware security modules (HSMs) to store keys securely.