Certainly, Fastly’s Certification Authority

Trusted, secure, reliable and compliant

TLS encryptionNetwork servicesContent deliveryEdge cloud platformCompute

Fully supported by Fastly, Certainly certificates offer a high level of trust and reliability. Achieve tighter security with short-lived certificates and simpler certificate management.

On this page

Secure sites simplified

Certainly is Fastly’s publicly-trusted Transport Layer Security (TLS) Certification Authority (CA), giving Fastly customers the option of using certificates issued by Certainly to secure any website or API endpoint served by Fastly (CDN and Compute). Certainly certificates offer a high level of trust and reliability, and are fully supported by Fastly.

Certificates are hard to manage, requiring resources to dedicate time in maintaining and monitoring the certificate lifecycle. Errors in this lifecycle can cause service downtime. With Certainly, you can rest easy knowing Fastly is taking care of all of your certificate management needs. 

Key benefits 

Tighter security and reduced risk

Certainly certificates have a 30-day validity period – the shortest with no extra charge. Shorter validity periods coupled with automation achieve a higher level of security by reducing the time in which a compromised certificate is usable. Certainly is not available on the public internet which provides even more protection for your certificates. 

Simplified certificate management

Reduce the pain of managing certificates and renewals, even for hundreds of thousands of domains. Fastly customers have a dedicated, publicly trusted, certification authority to quickly and easily issue all of their certificate needs.

More reliable, better support

Fastly service reliability standards and network back our CA. Put trust in Fastly’s distributed, speedy global delivery network for TLS certificates. Removing the dependency on third-party providers means Fastly is in control of resolving any issues, supported from provisioning to renewing.

Our TLS Offerings

Fastly TLS

Frictionless setup and management for foundational encryption needs, including: 

  • Management via UI and API 

  • Managed certificates from your choice of: 

    • Our Certification Authority (Certainly)

    • A non-profit CA

    • Commercial CA

    • Unmanaged certificates (bring your own)

Concierge TLS

Our Enterprise support add-on for addressing more complex requirements, including: 

  • Dedicated concierge support email address 

  • TLS configuration review and optimization 

  • Support for custom cipher suites outside our defaults (requires dedicated IP*) 

  • Fallback certificate management and provisioning 

  • Legacy TLS (1.0 and 1.1) support (requires dedicated IP*) 

  • Advanced service pinning configuration (requires dedicated IP*)

Platform TLS

Platform TLS is designed for organizations that want to maintain control of the certificate lifecycle, need to use a specific CA, or have regulatory requirements that require use of a specific CA. It includes an API for setup and can support a high-volume of domains. Platform TLS supports Domain Validated(DV), Organization Validated (OV), and Extended Validation (EV) certificates.

Meet a more powerful global network.

Our network is all about greater efficiency. With our strategically placed points of presence (POPs), you can scale on-demand and deliver seamlessly during major events and traffic spikes. Get the peace of mind that comes with truly reliable performance — wherever users may be browsing, watching, shopping, or doing business.

336 Tbps

Edge network capacity1

150 ms

Mean purge time2

>1.8 trillion

Daily requests served4

~90% of customers

Run Next-Gen WAF in blocking mode3

See our network

As of March 31, 2024

As of December 31, 2019

As of March 31, 2021

As of July 31, 2023

Ready to get started?

Get in touch.

Talk to an expert
Fastly
© Fastly 2024