HTTPS for all: Let’s Encrypt reaches one billion certificates issued

Encrypted communication has gone from "only if it's important" to "unless you're incredibly lazy" in four short years—and Let's Encrypt deserves a lot of the credit for that.

Enlarge / Encrypted communication has gone from "only if it's important" to "unless you're incredibly lazy" in four short years—and Let's Encrypt deserves a lot of the credit for that. (credit: nternet1.jpg by Rock1997 modified.)

Let's Encrypt, the Internet Security Research Group's free certificate signing authority, issued its first certificate a little over four years ago. Today, it issued its billionth.

The ISRG's goal for Let's Encrypt is to bring the Web up to a 100% encryption rate. When Let's Encrypt launched in 2015, the idea was pretty outré—at that time, a bit more than a third of all Web traffic was encrypted, with the rest being plain text HTTP. There were significant barriers to HTTPS adoption—for one thing, it cost money. But more importantly, it cost a significant amount of time and human effort, both of which are in limited supply.

Let's Encrypt solved the money barrier by offering its services free of charge. More importantly, by establishing a stable protocol to access them, it enabled the Electronic Frontier Foundation to build and provide Certbot, an open source, free-to-use tool that automates the process of obtaining certificates, installing them, configuring webservers to use them, and automatically renewing them.

Read 16 remaining paragraphs | Comments



https://ift.tt/2I1UARv

Comments