• Christophe Brocaspublished an articlethat looks at the irresistible rise of Let’s Encrypt - the free public key infrastructure (PKI) certification model that has swept over the Internet since 2015. • Christophe was able to interview key playersAaron Gable,Sarah Gran,Jacob Hoffman-AndrewsandJ.C. • Jonesabout the decision to launch Let’s Encrypt, and its approach to identity assertion and certificate request -now standardized in RFC 8555. • Certification before Let’s Encrypt was a process with business model issues, and concerns about exactly why Certificate Authorities (CAs) were in your browser as a Trust Anchor, and what process determined issuance of a certificate. • These problems were exemplified in theDiginotar incidents, where certificates were issued to unassociated entities, allowing Man-in-the-Middle attacks on trusted services like Gmail. • As Christophe notes, Let’s Encrypt became popular at a time when less than 40% of websites worldwide were being protected on-the-wire in the HTTPS/TLS protocol suite.

Article Summaries:

  • Christophe Brocas published an article that looks at the irresistible rise of Let’s Encrypt - the free public key infrastructure (PKI) certification model that has swept over the Internet since 2015. Christophe was able to interview key players Aaron Gable, Sarah Gran, Jacob Hoffman-Andrews and J.C. Jones about the decision to launch Let’s Encrypt, and its approach to identity assertion and certificate request - now standardized in RFC 8555. Certification before Let’s Encrypt was a process with business model issues, and concerns about exactly why Certificate Authorities (CAs) were in your bro

Sources: