Let’s Encrypt SSLs Are Now EnabledLet’s Encrypt SSLs Are Now Enabled
SSL certificates have become a must-have attribute for websites since Google declared secure HTTPS connections a ranking factor and especially since the search engine giant voiced its intention to start flagging all non-HTTPS pages as insecure later in 2017 in a visible-to-the-Chrome-user manner. The hype around SSLs has made SSL providers reconsider the pricing of certificates so as to make them more affordable to the wide public. Meanwhile, a public-benefit authority aimed at providing an all-free HTTPS encryption solution to users was born. We’ve now adopted their approach on our platform as well. Learn more about the Let’s Encrypt initiative and how Let’s Encrypt SSLs fare against regular SSLs from our new post.
What is Let’s Encrypt all about? Introduced in 2016, Let’s Encrypt represents a free open certificate authority (CA), which provides website owners with digital certificates for enabling HTTPS (SSL/TLS). It was launched by the Internet Security Research Group (ISRG), a public-benefit organization sponsored by the Mozilla Foundation, the Electronic Frontier Foundation (EFF) and Cisco Systems, with the aim of making HTTPS encryption both affordable and user-friendly. Their main goal is to create a more secure, privacy-driven web.
Let’s Encrypt certificates are: free to use: each domain name owner can obtain a trusted certificate at absolutely no cost; automatic: the certificate setup and renewal procedures are fully automated; no human intervention is needed; simple to use: there are neither payments to make nor validation emails to respond to; secure: Let’s Encrypt serves as a platform for implementing the latest security practices; fully transparent: all issued certificates are publicly available for anyone to view; open: the issuance and renewal protocol is published as an open standard that can be adopted; ‘self-regulated’: Let’s Encrypt is a joint community effort, beyond the control of any organization;
The verdict, a Let’s Encrypt SSL certificate or Commercial SSL Certificate? Both SSLs types will do the encryption job that is expected of them in order to protect your sites against interception and eavesdropping. So, your choice will solely be determined by the type of site you manage, which in fact defines your security requirements. If you own a non-commercial site, a blog or a photo gallery, or just need a quickly configurable, simple and free SSL certificate that you can obtain with minimum effort, then Let’s Encrypt is the way to go. If you run an e-store or an enterprise site, then you will need to invest in a paid, warranty-equipped SSL certificate issued by an established CA. Due to Google’s recently voiced intent to give HTTPS sites higher search rankings and the subsequent rise of authorized SSL sellers, the prices for commercial SSLs have been going down steadily. Today, every e-commerce website owner can obtain an affordable commercial SSL certificate from a reputable authority.