> For the complete documentation index, see [llms.txt](https://docs.vngcloud.vn/vng-cloud-document/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.vngcloud.vn/vng-cloud-document/vcdn/chi-tiet-tinh-nang/cryptography.md).

# Cryptography

## Overview <a href="#tong-quan" id="tong-quan"></a>

**Crypto** in CDN is a group of settings and tools that help manage encryption and security features related to websites.

## Detail <a href="#chi-tiet" id="chi-tiet"></a>

When initializing a Web Accelerator on the vCDN system, in the Crypto section, you need to select/enter:

<figure><img src="/files/bBIAOc0EqglxBShbv3P9" alt=""><figcaption></figcaption></figure>

<figure><img src="/files/M1wrn9sarowSYYhCmZaw" alt=""><figcaption></figcaption></figure>

In there:

* **HTTPS (HTTP/2)** : Enable or disable HTTPS security for the CDN stream. You can create a new **Certificate** by selecting **Add new** .
* **HTTP Strict Transport Security (HSTS)** : tells the user's browser that they can only connect to the Web server via the HTTPS protocol. This can be used to prevent some attacks that downgrade connections from HTTPS to HTTP. Enable this feature to protect visitors to your customer's website.
* **Max Age Header (max-age):** Specifies how long HSTS headers are cached in the browser.
* **Apply HSTS policy to subdomains (includeSubDomains):** Every domain will inherit the same HSTS headers. If any of your domains don't support HTTPS, they won't be accessible.
* **Preload:** Allows the browser to preload the HSTS configuration automatically. Preloading can make a non-HTTPS-enabled site completely inaccessible.
* **Relative Canonical URL:** A canonical URL allows you to tell search engines that similar URLs are actually the same content. This is useful when you have a product or content that can be found on multiple URLs or even multiple websites.
* **No-Sniff Header:** Send the "X-Content-Type-Options: nosniff" header to prevent Internet Explorer and Google Chrome from checking MIME types other than the declared Content-Type.


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter:

```
GET https://docs.vngcloud.vn/vng-cloud-document/vcdn/chi-tiet-tinh-nang/cryptography.md?ask=<question>&goal=<endgoal>
```

`ask` is the immediate question: it should be specific, self-contained, and written in natural language.
`goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal.

The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.