• Skip to main content
  • Skip to header right navigation
  • Skip to site footer
iGuRu

iGuRu

Real-time Technology News. Opinions & Tweaks

  • / news
  • / infosec
  • / tools
  • / tweaks
  • / dummies
  • / opinions
  • / support
home / News / Lets Encrypt a billion positives & negatives

Lets Encrypt a billion positives & negatives

28/02/2020 07:48 by giorgos

Lets Encrypt: Not long ago most websites were not secured with Security Layer Security (TLS) encryption. Because the internet started with HTTP instead of HTTPS. So today, 81% of websites worldwide use the HTTPS protocol. This percentage has reached 91% in the US.

  • HTTP and HTTPS: What I Need to Know about Transport Protocols

We owe a huge thank you to the Internet Security Research Group for this huge increase in secure web browsing (ISRG) with their project Lets Encrypt.

Let's Encrypt just issued the billionth security certificate.

lets encrypt - Lets Encrypt a billion positives & negatives

"Encryption should be the default for the Internet," said Josh Aas, CEO of ISRG and senior Mozilla technologist when Lets Encrypt was first created. project.

"The Internet is a complex space nowadays, and it is very difficult for consumers to control their data. The only reliable strategy to ensure that the personal data and information of each of us is protected during our web browsing is encryption. ”

It should be noted here that Let's Encrypt not only provided free TLS certificates worldwide, but also used them very easy. The automatic process was made possible with ACME protocol (Automatic Certificate Management Environment).

ACME is now an IETF standard, RFC 8555 and automates the creation of public key infrastructure certificates (PKI), enabling the rapid creation of millions of security certificates.

Thanks to ACME, Let's Encrypt now serves almost 200 million websites with two new employees and a 28% increase in its budget from June 2017.

To use ACME and obtain a certificate from Let's Encrypt, you need an ACME client. One of the best ACME clients is Certbot of the EFF (Electronic Frontier Foundation).

EFF has developed Certbot to make it as easy as possible to secure a website with Lets Encrypt or any other CA supported by ACME.

However, as easy as it is for each of us to issue a security certificate for one of our pages, it is just as easy for malicious users to try to place "tampered" pages as safe.

By automating TLS certificates, Let's Encrypt is said to facilitate them malicious users who want to launch "secure" websites. to obtain safe locations. For example, hackers have been able to forge certificates to help hide malicious websites like pages from major companies such as Apple, Google and PayPal because any website can obtain a TLS certificate.

In short: just because you can log in to a site securely does not mean that the site itself is secure.

So Let's Encrypt is currently working to further improve the quality of its security.

For example, it has recently enhanced domain validation methods. It is a process used by all TLS certificate authorities to ensure that the person requesting a certificate is actually the owner of the domain for which they want it.

But despite the problem mentioned above, Let's Encrypt (a non-profit company) seems to have done a very good job on the world wide web.

Lets Encrypt a billion positives & negatives was last modified: 28 February, 2020, 7: 48 am by giorgos

Subscribe to our newsletter

no spam

spread the news

  • Facebook
  • Twitter
  • Reddit
  • Printing
  • Email

Read them Technology News from all over the world, with the validity of iGuRu.gr

Follow us on Google News


Competition: Newstag: acme, Lets Encrypt, SSL, TLS, encryption, security protocols

You May Also Like

CryptoMathesis a cryptography course
End-to-End encryption What it is and why it matters
NSA does not use SSL 2.0, SSL 3.0, TLS 1.0 and TLS 1.1

About Us giorgos

George still wonders what he's doing here ...

Previous Post: « Polys: The first blockchain voting machine
Next Post: Kr00k At stake for over one billion devices »

Reader Interactions

Comment Policy:

IGuRu.gr does not publish the comments immediately. Malicious comments, comments that include ads, or comments that are offensive are deleted without notice. We do not adopt the opinions expressed by our readers.
Your comments will be displayed after approval by the administrators


Leave your comment
Ακύρωση απάντησης

Your email address is not published. Τα υποχρεωτικά πεδία σημειώνονται με *

 

 © 2021 · iGuRu.gr · ☢ · Keep It Simple Stupid Genesis theme

about  ·   get in touch  ·  rss  ·  sitemap  ·  cough

loadingCancel
Could not post post - check your email address!
Email verification failed, please try again
Your blog can not post posts via email.