Let’s Encrypt is a free, automated, and open certificate authority brought to you by the Internet Security Research Group (ISRG).
193 followers 0 artículos/semana
Intent to End OCSP Service

Today we are announcing our intent to end Online Certificate Status Protocol (OCSP) support in favor of Certificate Revocation Lists (CRLs) as soon as possible. OCSP and CRLs are both mechanisms by which CAs can communicate certificate revocation information, but CRLs have significant advantages over OCSP. Let’s Encrypt has been providing an OCSP responder...

Tue Jul 23, 2024 18:05
More Memory Safety for Let’s Encrypt: Deploying ntpd-rs

When we look at the general security posture of Let’s Encrypt, one of the things that worries us most is how much of the operating system and network infrastructure is written in unsafe languages like C and C++. The CA software itself is written in memory safe Golang, but from our server operating systems to our network equipment, lack of memory safety...

Mon Jun 24, 2024 18:26
Let’s Encrypt Continues Partnership with Princeton to Bolster Internet Security

Let’s Encrypt is proud to have been partnering with the Center for Information Technology Policy team at Princeton University since 2018 to bolster defenses against Border Gateway Protocol (BGP) attacks. We’re thrilled to continue this partnership thanks to renewed funding from the Open Technology Fund. “Let’s Encrypt has played a pivotal role in...

Thu May 30, 2024 17:26
Takeaways from Tailscale’s Adoption of ARI

Since March 2023, Let’s Encrypt has been improving our resiliency and reliability via ACME Renewal Information (ARI). ARI makes it possible for our Subscribers to handle certificate revocation and renewal easily and automatically. A primary benefit of ARI is that it sets Subscribers up for success in terms of ideal renewal times in the event that Let’s...

Wed May 1, 2024 17:55
An Engineer’s Guide to Integrating ARI into Existing ACME Clients

Following our previous post on the foundational benefits of ACME Renewal Information (ARI), this one offers a detailed technical guide for incorporating ARI into existing ACME clients. Since its introduction in March 2023, ARI has significantly enhanced the resiliency and reliability of certificate revocation and renewal for a growing number of Subscribers....

Thu Apr 25, 2024 17:58
Deploying Let's Encrypt's New Issuance Chains

On Thursday, June 6th, 2024, we will be switching issuance to use our new intermediate certificates. Simultaneously, we are removing the DST Root CA X3 cross-sign from our API, aligning with our strategy to shorten the Let’s Encrypt chain of trust. We will begin issuing ECDSA end-entity certificates from a default chain that just contains a single ECDSA...

Fri Apr 12, 2024 17:15

Crea tu propia fuente de noticias

¿Listo para probarlo?
Comienza una prueba de 14 días, no es necesaria tarjeta de crédito.

Crear cuenta