© 2019 Omnisence, llc
“Lets Encrypt” is now trusted by all major root programs
The major root programs like Microsoft, Google, Mozilla, Oracle, Apple, Blackberry have all come to trust Let’s Encrypt recently. Previously they had a non-direct relationship through IdenTrust which is trusted by all the major OS and service providers. What this means is that Let’s encrypt can piggy-back off IdenTrusts relationships and be a great support system in the off chance that IdenTrust has a mishap. Let’s Encrypt would still be able to ensure smooth certification and allow the operating systems to proceed with no problems. However this new relationship with Let’s Encrypt will only be in effect with newer versions of Operating Systems and programs, while older versions will exclusively use IdenTrust.
So what does Let’s Encrypt bring to the table for the newer versions of operating systems?
Let’s Encrypt is a free, automated, and open certificate authority (CA) which was made and is used for the public’s benefit. Let’s Encrypt is a service provided by the Internet Security Research Group, and gives people the digital certificates they need which allow for HTTPS (SSL/TLS) for websites, all for free and works in the most user conscious manner possible.
When it comes to Let’s Encrypt, there are six core principles:
Free: Accessibility to all is a key part of their functioning. Meaning if you own a domain name, you will be able to use Let’s Encrypt and acquire a trusted certificate at zero cost.
Automatic: Software running on a web server can seamlessly interact with Let’s Encrypt to obtain a certificate, securely configure the certificate for use and automatically take care of renewal.
Secure: Let’s Encrypt serves as a platform for advancing TLS security practices, both on the CA side and by helping site operators properly secure their servers.
Transparent: All certificates awarded and revoked are posted to public records so there is never any questions as to the presence of a certificate or not.
Open: The ability to issue and renew will be a published, open standard that can be adopted by others.
Cooperative: Let’s Encrypt is not run by a single organization, but rather a cooperative, ensuring the community stays the focus.
Ultimately this will serve as a great relationship heading into the future as our operating systems will now have two reliable certification options to manage from, meaning us end users have less to worry about if one drops the ball for a moment!
If you have any network or network security questions or inquiries, give us a call at Omnisence or visit our website!