Skip to main content

TLS/SSL Certificates

The Transport Layer Security (TLS) protocol, and its outdated predecessor the Secure Sockets Layer (SSL) protocol, secures communication between a client computer and a server. The protocol requires the server to present a digital certificate proving that it is the intended destination.

By default, Files.com provides your site with valid and chained TLS/SSL Certificates. Files.com manages these certificates for you, automatically renewing and updating them on your behalf to provide secure connectivity for your users, systems, partners, and customers.

You can also use your own TLS/SSL Certificates with Files.com.

Let's Encrypt

Files.com generates and uses TLS/SSL Certificates provided by Let's EncryptExternal LinkThis link leads to an external website and will open in a new tab.

Let's Encrypt is a non-profit Certificate Authority that provides security meeting or exceeding that of comparable commercial Certificate Authorities.

Files.com uses Let's Encrypt for the following reasons:

Duration Security

Hacking of certificates and Certificate Authorities is rare, but Let's Encrypt issues short-lived certificates. If a certificate is ever compromised, the attacker can only use it for a much shorter period than with commercial certificates, which are valid for much longer.

Less Error Prone

Let's Encrypt provides automated processes for managing and updating certificates. Our platform is programmatically integrated with Let's Encrypt, removing the human interaction that can introduce error into the certificate management process.

Using Your Own Certificates

Files.com lets you use your own TLS/SSL Certificates.

You must first set up a Custom Domain for your site. You can then configure your own certificates.

Choosing Between Files.com Certificates And Your Own Certificates

Certificate management is a time-consuming and complex task that carries risks for your business connectivity if performed incorrectly.

Files.com has a dedicated team of security experts who manage our certificate implementation and integrations on your behalf. If your organization does not have a dedicated security team, or wishes to outsource this task, the default Files.com TLS/SSL Certificates are the better option.

If your organization has a dedicated security team that already manages all your TLS/SSL Certificates, configuring a Custom Domain and choosing your own TLS/SSL Certificates is the better option.

There are also different types of TLS/SSL Certificates. The most widely used are Domain Validation (DV) certificates, followed by Organization Validation (OV) and Extended Validation (EV) certificates. Only Domain Validation (DV) certificates can be managed automatically, and this is the type Files.com uses. If you require Organization Validation (OV) or Extended Validation (EV) certificates, configuring a Custom Domain and using your own TLS/SSL Certificates is the better option.

You can change your TLS/SSL Certificate preferences at any time.