公开(公告)号：US10263789B1

公开(公告)日：2019-04-16

申请号：US15083060

申请日：2016-03-28

Applicant: AMAZON TECHNOLOGIES, INC.

Inventor： Stefan Popoveniuc ,  Nicholas James Lynch ,  Preston Anthony Elder, III ,  Param Sharma ,  Todd Lawrence Cignetti ,  Dmitry Berkovich ,  Iftach Ragoler

IPC: H04L29/06 ,  H04L9/32 ,  H04L9/30

Abstract: A service provider network includes a certificate manager that auto-generates and auto-renews security certificates for customers of the provider network. The security certificates may be usable to implement a Secure Sockets Layer (SSL) protocol, or other types of security protocols. The certificate manager generates a public key, private key pair for the customer, generates the certificate signing request (CSR) on behalf of the customer, transmits the CSR to the certificate authority (CA), and binds the resulting CA-generated certificate and private key to whatever internet-facing service the customer chooses (e.g., a load balancer).