Another thought just came to me. Given recent vulnerabilities in SSL, I thought of TLS support. I haven't researched TLS for HTTPS yet. Does it also require a certificate with a third party, or can it be used more like SSH? In other words, is there a way to encrypt traffic to your website without having to buy a cert or have end users deal with a warning? Jaime