The document discusses Highwinds' secure delivery and content protection products for securely delivering content and effectively monetizing assets. It describes using SSL to securely deliver streaming and cached content over HTTPS. It also discusses several content protection tools available on the CDN, including URL signing, HTTP referrer restriction, geoblocking, and HTTP basic authentication, that can be used to control access to content.

1. Secure Delivery, Content Protection
and Monetization
Use SSL and Configurable Protection Policies to Securely
Deliver and Effectively Monetize Your Content
WWW.HIGHWINDS.COM

2. Secure Protect $ Monetize
Monetization strategies require content owners to protect their assets from viral distribution.
Highwinds enables our customers to create delivery business rules enforced by the CDN. With
Highwinds’ secure delivery and content protection products, end users must view the media
through the workflow designated by the publisher.
Secure Delivery with HTTPS
SSL (Secure Sockets Layer)
HTTP Streaming and HTTP Caching can be secured using SSL. HTTPS offers the same feature-rich delivery capabilities
as standard HTTP with the addition of encrypted communication and secure identification of the CDN caching and
streaming platforms, resulting in protection of your content.
SSL can be used to protect streaming content, static website assets, games and more. Additionally, SSL enables
publishers to deliver unsecured content to secured web pages to avoid browser warning messages.
Benefits
Protect your valuable assets
• rohibit users from intercepting your stream by protecting it
P
between the server and the network
SSL CERTIFICATE TYPES
What can’t be stolen must be bought
• rofit from your assets by eliminating illegal distribution of
P Highwinds Wildcard Certificate
your content • ses Highwinds’ URLs
U
• o set-up fee and no monthly certificate
N
Perform both HTTP and HTTPS using the same host name
maintenance fee
• any CDNs make it difficult to manage content offered via
M
HTTP and HTTPS, but Highwinds uses proprietary software to
allow delivery of both protocols using a single virtual host Custom Certificates
• se a certificate from a signing authority of your
U
Simplified set-up choice
• elf-service management of SSL certificate configuration
S
• an be used to create your own wildcard
C
once certificate is installed
certificate
Control access rules on a per directory basis • ne-time set-up fee and monthly certificate
O
• n StrikeTracker 2 you can add SSL to existing content with
I maintenance fee
one click
Shared Certificates
Secure ingest
• lso called Subject Alternative Name (SAN)
A
• y combining secure ingest and secure delivery, content is
B
certificates
protected from both your origin to the CDN and from the
CDN to the end user • hared by a number of customers
S
• ne-time set-up fee and monthly certificate
O
Protect your users’ identities
maintenance fee
• ith secure delivery, your customer’s identity and personal
W
information are protected, giving them confidence in viewing
your content, playing your games, etc.
Secure static asset delivery
• y securing the delivery of static site assets, you avoid
B
browser warnings that can scare away customers

3. Content Protection
Highwinds enables the configuration of content protection policies inside the
StrikeTracker 2 console, often with just a single click. By setting policies that are enforced
by the CDN, your content can only be delivered through the workflow you determine.
URL Signing
URL Signing is the most popular content protection product offered by Highwinds. CDN account owners publish
content with a query string parameter token that includes an optional time-to-live (TTL). This private token can only
be generated by the publisher and can be used to create unique publishing URLs for each end user request.
URL security prevents free distribution of content outside the workflow designated by the publisher:
• f an end user tampers with the URL, their request for CDN content is denied
I
• f a URL has a TTL in the past, end user requests for CDN content are denied
I
• upports optional IP address and User-Agent enforcement
S
• se partial URL signing to provide folder-level access to content, or groups of files using a common prefix
U
HTTP Referrer Restriction
HTTP Referrer Restriction is a security product that prevents CDN publishing URLs from being freely distributed
on unauthorized websites (also known as hot linking or deep linking). Publishers configure one or more websites
that end users can visit and successfully request content hosted by the CDN. When an end user request is made,
Highwinds compares the HTTP Header Referrer field with the list of approved websites. If the end user is not visiting
an approved website, the CDN will issue an HTTP 403 – Access Denied response.
Geoblocking
Geoblocking allows publishers to restrict content to end users in specified locations. The IP address of incoming
requests is checked against a current list of IP allocations. If an end user’s IP address is not found in the exclude list,
they are allowed access to the content by default. The feature has both include and exclude lists which are used to
target the allowed audience.
• eoblocking Granularity: ASN, Continent, Country, Region, City, Postal Code, Area Code, and DMA (US Metro
G
Code)
HTTP Basic Authentication
With Basic HTTP Authentication, end users are prompted to enter login credentials that are approved by the
publisher’s web server before the media is delivered. HTTP Authentication policies are enabled and managed in the
StrikeTracker 2 portal.

4. Secure Corporate
Use SSL for secure delivery of HTTP Streaming and Headquarters
HTTP Caching
807 W. Morse Boulevard
Protect Winter Park, FL 32789
Several CDN-enforced content protection tools
available Phone: +1.407.215.2400
Toll Free: +1.866.872.0357
$Monetize Email: info@highwinds.com
Create monetization strategies that are support by www.highwinds.com
CDN security and protection policies
North America
Costa Mesa, CA
+1.714.727.2800
Phoenix, AZ
+1.602.515.0931
South America
São Paulo, BR
+55.11.3711.9307
www.highwinds.com/brazil
Europe
Amsterdam, NL
+31.20.2629545
London, UK
+44.20.7096.5940
WWW.HIGHWINDS.COM