Sonatype’s project to make SSL the default connectivity option for all Central users is underway and will be complete by 12th of August 2014, if not sooner. Stay tuned for details and look for updates on our web site.

We know how components from the Central Repository have become critical to your development efforts. We also know that you need to trust those components. Part of that trust is knowing that hackers don't have visibility into the components you download or that they compromise components using a man-in-the middle attack.

If you are using Nexus OSS or another repository manager like JFrog Artifactory or Apache Archiva, you can get SSL connectivity support today by contacting support@sonatype.com. We will walk you through the necessary configuration changes, including sending an email with tokens necessary to enable support.