One of the most common pieces of feedback I get from developers moving clients to Pantheon is that our HTTPS service is too expensive. Because we have to deploy custom infrastructure to get the static IP necessary to terminate SSL certificates, there's an add-on cost, as well as increased complexity. Luckily, other awesome technology companies are working on solving this problem, and with our powers combined we can HTTPS all the things!
Specifically, I've been impressed with what CloudFlare has been bringing to the table. In addition to "disrupting" the CDN and WAF spaces, and providing one of the best DNS services around, they have made it free to get HTTPS service for any website on the internet. They provide the certificate, and handle high-availability termination; it only takes a couple minutes to set up.
And thanks to the fact that Pantheon provides HTTPS for all development sites out of the box, CloudFlare can securely backend to our platform without an "air gap" between their layer and ours. This means that every site and client can encrypt their traffic end-to-end, all without incurring any additional costs, an important step to making encryption a standard part of how the web operates.
If you want to try it out, check out my guide on how to set up CloudFlare's free HTTPS service on Pantheon sites.Topics: WordPress Hosting, Drupal Hosting, Guides and Tutorials, Security, Speed & Performance