[kalleboo]

Are the high SSL costs because they need a dedicated IP per domain at each of their POPs?

Would it be possible for them to offer an SNI-only SSL option for far cheaper if you know beforehand who your clients are (say, if you're hosting content for an iOS app)?

[twistedpair]

CloudFront is the same, $600/mo/cert. They claim it is not so much the cert as the need for a dedicated IPv4 address at each edge node (45 edges and counting), and the paucity of addresses left in said pool.

CloudFront has been asking a lot about a hypothetical SNI only offering in their user surveys lately, so that is likely the route they'll pursue shortly for far cheaper SSL options.

[stellar678]

CDN.net offers the Subject Alternate Name option for $199/year. I've been doing research but we haven't tried them yet.

Edit: Just recalled they use Subject Alternate Name, not SNI. This is where they add your domain to their SSL certificate.