Considering that "AJAX" as it is supported in all the major
browsers is the most stringent when it comes to security, You're
cfajaxproxy essentially will use the same exact protocol, domain
and port combination as where the .CFM file is originally served
from. That means if your client views the site from
https://somehost.com/ the ajax proxy will essentially point to that
same location. This means that you're AJAX messages will be sent
via SSL.