TLS/SSL Certificates

The Transport Layer Security (TLS) protocol, as well as its outdated predecessor, the Secure Sockets Layer (SSL) protocol, ensures that the communication between a client computer and a server is secure. The protocol requires the server to present a digital certificate, proving that it is the intended destination.

By default, Files.com will provide your site with valid and chained TLS/SSL Certificates. Files.com will manage these certificates for you, automatically renewing and updating the certificates on your behalf, providing seamless, secure connectivity for your users, systems, partners, and customers.

We also provide you with the ability to instead use your own TLS/SSL Certificates with Files.com.

Files.com will generate and use TLS/SSL Certificates provided by Let's Encrypt.

Let's Encrypt is a non-profit Certificate Authority, providing exceptional security that meets, or exceeds, that of comparable commercial Certificate Authorities.

Files.com chooses to use Let's Encrypt for the following reasons:

Although hacking of certificates, and Certificate Authorities, is rare, Let's Encrypt provides short-lived certificates. If a certificate is ever compromised, the attacker can only utilize it for a much shorter period of time compared to commercial certificates, which are valid for much longer.

Let's Encrypt provides automated processes for managing and updating certificates. Our platform is programmatically integrated with Let's Encrypt, removing human interaction which can introduce human error into the certificate management process.

Files.com allows you to use your own TLS/SSL Certificates.

You must first set up a Custom Domain for your site, which will then allow you to configure your own certificates to be used.

Certificate management can be a time consuming and complex task which carries risks for your business connectivity if performed incorrectly.

At Files.com, we have a dedicated team of security experts that manage our certificate implementation and integrations on your behalf. If your organization does not have a dedicated security team, or wishes to outsource this task, then choosing the default Files.com TLS/SSL Certificates is the better option for you.

If your organization has a dedicated security team, that already manages all your TLS/SSL Certificates, then configuring a Custom Domain and choosing your own TLS/SSL Certificates is the better option for you.

There are also different types of TLS/SSL Certificates. The most widely used are Domain Validation (DV) certificates, but there are also Organization Validation (OV) and Extended Validation (EV) type certificates. Only Domain Validation (DV) type certificates can be managed automatically and this is the type of certificate that Files.com uses. If you require the Organization Validation (OV) or Extended Validation (EV) type certificates, then configuring a Custom Domain and choosing your own TLS/SSL Certificates is the better option for you.

You can change your TLS/SSL Certificate preferences at any time.