Nope -- you don't have to do anything. SSL is all handled by
your HTTP server. ColdFusion doesn't care whether the request was
HTTPS or not.
Consumer requests .cfm HTTPS resource
Server receives & decrypts HTTPS request
Server sends decrypted Request to ColdFusion
ColdFusion processes decrypted Request
ColdFusion sends results back to Server
Server encrypts CF results
Server sends encrypted results back to Consumer
The HTTP server you're running takes care of everything SSL
related. ColdFusion doesn't care one way or the other.
The best way to make sure your data is secure -- look for the
lock on your browser when you test it. Double click it and make
sure all your certificate information is valid and up to date. If
that's all good, then you have no problems.