SCM is provided by world-renowned Certificate Authorities (CAs). It provides management of SSL certificates throughout their lifecycles to ensure trusted authentication and security for websites.

HTTPS Encryption

SSL certificates encrypt transmission for websites, applications, and applets using HTTPS to protect your data from being tampered with in transit.

Safety Symbol

A security padlock will be displayed in the address bar for a website, indicating that the connection is secure and no insecure connection warnings are returned to website visitors.

Trustworthiness Certification

SSL certificates can authenticate websites to protect users from phishing attempts and to improve brand image.

Raise SEO Rankings

Search engines preferentially display websites with SSL certificates. They improve your SEO rankings.

SSL Certificate Authorities for Different Scenarios

Huawei Cloud provides DigiCert, GlobalSign, and GeoTrust.

SSL Certificate Authorities for Different Scenarios

Huawei Cloud provides DigiCert, GlobalSign, and GeoTrust.

Certificate Type

EV Pro

OV Pro

DV (Basic)

Certificate Authority

DigiCert

DigiCert, GlobalSign, and GeoTrust

DigiCert

DigiCert, GlobalSign, and GeoTrust

GeoTrust

DigiCert and GeoTrust

Domain Name Type

Single domain names and multiple domain names

Single domain names, multiple domain names, and wildcard domain names

Single domain names and wildcard domain names

Scenario

Websites, applications, and applets of large enterprises or organizations, such as government departments, e-commerce platforms, online education agencies, financial institutions, and healthcare institutions. EV Pro certificates use stronger encryption algorithms than EV certificates.

Websites, applications, and applets of small and medium-sized enterprises. OV Pro certificates use stronger encryption algorithms than OV certificates.

Personal websites and enterprise testing

Security Level

Highest

High

Minor

HTTPS Data Transmission Encryption

Supported

Browser Padlock Icon Display

Supported

Encryption Algorithm

DigiCert: RSA and ECC

For details, see the encryption algorithms supported by SSL certificates.

DigiCert: RSA and ECC

GlobalSign: RSA and ECC

GeoTrust: RSA and ECC

For details, see the cryptographic algorithms supported by SSL certificates.

DigiCert: RSA and ECC

For details, see the cryptographic algorithms supported by SSL certificates.

DigiCert: RSA and ECC

GlobalSign: RSA and ECC

GeoTrust: RSA and ECC

For details, see the cryptographic algorithms supported by SSL certificates.

GeoTrust: RSA

For details, see the cryptographic algorithms supported by SSL certificates.

DigiCert: RSA

GeoTrust: RSA

For details, see the cryptographic algorithms supported by SSL certificates.

Validation Requirement

The CA follows a strict process to validate organization identity and the domain name ownership.

The CA follows a standard process to validate the organization identity and the domain name ownership.

The CA validates the domain name ownership only.

The CA verifies the domain name ownership only.

Validation Duration

7 to 10 working days

3 to 5 working days

Several hours

Recommended Certificate

DigiCert EV Pro

Globalsign EV

DigiCert OV Pro

GeoTrust OV

GeoTrust DV

GeoTrust DV Basic

Recommended Price

$ 1,849.00+

USD/year

Buy

$ 599.00+

USD/year

Buy

$ 1,291.00+

USD/year

Buy

$ 309.00+

USD/year

Buy

$ 159.00+

USD/year

Buy

$ 59.00+

USD/year

Buy

EV Pro

DigiCert

Single domain names and multiple domain names

Highest

Supported

DigiCert: RSA and ECC

For details, see the encryption algorithms supported by SSL certificates.

The CA follows a strict process to validate organization identity and the domain name ownership.

7 to 10 working days

DigiCert EV Pro

$ 1,849.00+

USD/year

Buy

DigiCert, GlobalSign, and GeoTrust

Single domain names and multiple domain names

Highest

Supported

DigiCert: RSA and ECC

GlobalSign: RSA and ECC

GeoTrust: RSA and ECC

For details, see the cryptographic algorithms supported by SSL certificates.

The CA follows a strict process to validate organization identity and the domain name ownership.

7 to 10 working days

Globalsign EV

$ 599.00+

USD/year

Buy

OV Pro

DigiCert

Single domain names, multiple domain names, and wildcard domain names

Websites, applications, and applets of small and medium-sized enterprises. OV Pro certificates use stronger encryption algorithms than OV certificates.

High

Supported

DigiCert: RSA and ECC

For details, see the cryptographic algorithms supported by SSL certificates.

The CA follows a standard process to validate the organization identity and the domain name ownership.

3 to 5 working days

DigiCert OV Pro

$ 1,291.00+

USD/year

Buy

DigiCert, GlobalSign, and GeoTrust

Single domain names, multiple domain names, and wildcard domain names

Personal websites and enterprise testing

High

Supported

DigiCert: RSA and ECC

GlobalSign: RSA and ECC

GeoTrust: RSA and ECC

For details, see the cryptographic algorithms supported by SSL certificates.

The CA follows a standard process to validate the organization identity and the domain name ownership.

3 to 5 working days

GeoTrust OV

$ 309.00+

USD/year

Buy

GeoTrust

Single domain names and wildcard domain names

Personal websites and enterprise testing

Minor

Supported

GeoTrust: RSA

For details, see the cryptographic algorithms supported by SSL certificates.

The CA validates the domain name ownership only.

Several hours

GeoTrust DV

$ 159.00+

USD/year

Buy

DV (Basic)

DigiCert and GeoTrust

Single domain names and wildcard domain names

Personal websites and enterprise testing

Minor

Supported

DigiCert: RSA

GeoTrust: RSA

For details, see the cryptographic algorithms supported by SSL certificates.

The CA verifies the domain name ownership only.

Several hours

GeoTrust DV Basic

$ 59.00+

USD/year

Buy

Why Huawei Cloud SCM?

Meet Different Service Requirements with Different Certificate Types

A wealth of certificates issued by the world's leading digital CAs are available.
SCM supports multiple certificate types, such as Domain Validation (DV), Organization Validation (OV), and Extended Validation (EV). Customers can select the certificate type best fit to their service needs.
SCM provides international certificates that support the RSA and ECC algorithms.

Full-lifecycle Management Ensures Easy Hosting

Full-lifecycle management is provided. You can request, issue, query, and revoke SSL certificates.
You can upload SSL certificates you have issued from third parties to the console and manage on-premises certificates in a unified manner.
SCM provides high-level management functions such as a certificate data dashboard and automated notifications when a certificate is expiring soon.

Efficient Certificate Deployment with Automatic Management

Multi-year SSL certificates are provided. You do not need to apply for and deploy certificates every year.
You can deploy your certificates to other cloud services in just a few clicks.

Multi-level Security Protection, Ensuring Reliable Information Management

Key Management Service (KMS) and Hardware Security Module (HSM) provides secure protection for information management.
SCM runs on a distributed storage and service architecture to ensure high reliability.

Improving Network Information Security in Multiple Scenarios

Website authentication - a must-have for new sites

SSL certificates can authenticate websites, so users can rest assured the site is not fake.

Click here to apply for HTTPS authentication.

Application authentication - a must-have for networked applications

For example, a wide range of cloud applications, such as customer relationship management (CRM), office automation (OA), and enterprise resource planning (ERP) applications, can be authenticated to prevent insecure access.

Click here to apply for application authentication.

Application transmission protection - anti-theft

This effectively ensures data integrity and prevents data from being stolen or tampered with in transit.

Click here to apply for a trusted transmission channel.

Website authentication - a must-have for new sites

SSL certificates can authenticate websites, so users can rest assured the site is not fake.

Click here to apply for HTTPS authentication.

Application authentication - a must-have for networked applications

Click here to apply for application authentication.

Application transmission protection - anti-theft

This effectively ensures data integrity and prevents data from being stolen or tampered with in transit.

Click here to apply for a trusted transmission channel.

Application Process

Purchase a certificate.

On the SCM platform, purchase an SSL certificate for your domain name.

Apply for a certificate.

Associate a domain name with the certificate, enter the applicant details, and submit the application for approval.

Verify domain name ownership.

Verify the domain name ownership through DNS, email, and file verification.

Verify your organization.

CA sends a verification email to confirm the certificate application (required for OV, OVPro, EV, and EVPro).

Issue the certificate.

CA issues, downloads, and installs the certificate after approving the request.

Buy Now

Have You Ever Had These Questions?

What Are the Differences Between Single-, Multi-, and Wildcard-Domain SSL Certificates?

1. Single-domain certificate: A single domain name can associate with a certificate. For example, example.com or test.example.com.

2. Wildcard-domain certificate: A wildcard-domain certificate can be used for a wildcard (*) domain name and all its matched domain names at the same level. For example, for wildcard domain names *.example.com and *.test.example.com, the certificate for domain name *.example.com can be used for its matched domain names a.example.com, b.example.com, and c.example.com, but cannot be used for a.a.example.com.

3. Multi-domain certificate: Multiple domain names can be associated. A domain name can contain multiple single domain names and multiple wildcard domain names (*), for example, four single domain names associate with one wildcard domain name and six single domain names associate with three wildcard domain names.

What Are the Differences Between CAs?

1. GeoTrust certificates: cost-effective and less know-how required for HTTPS protection

2. GlobalSign certificates: Widely used by large e-commerce enterprises (including Huawei Cloud), supported standard RSA+ECC algorithms, less resource required for installation

3. DigiCert certificates: Suitable for digital transactions with high security requirements and widely used by financial institutions.

How Long Does It Take to Approve an SSL Certificate?

1. EV and EV Pro: CA reviews the information manually. If the information is correct, the review takes 7 to 10 working days.

2. OV and OV Pro: CA reviews the information manually. If the information is correct, the review takes 3 to 5 working days.

3. DV and DV (Basic): CA checks the domain name authorization configuration automatically. If the DNS configuration is correct, the certificate can be issued within several hours. Free certificates are included in certificates of this type. Generally, a basic DV certificate can be issued within several hours. Domains of basic DV certificates are verified by the CA automatically.

Documentation

More Services

Web Application Firewall (WAF)

Malicious request identification and defense against unknown threats

Elastic Load Balance (ELB)

Distribute incoming traffic across multiple backend servers

Content Delivery Network (CDN)

Get content to users faster on this scalable, secure, high-speed network

SSL Certificate Manager (SCM)