'Let's Encrypt' Now Offers Free HTTPS Certificates To Everyone

Let’s Encrypt’s beta program is now open to the public a year after the service was first announced. Let’s Encrypt adds software automation to the Domain Validation (DV) certificate creation, which means the certificates can be provided free of charge to anyone.

The certificate business has been disliked by many website developers because they didn’t like having to pay for something that they believe should be free. The digital certificate is only a file that is signed by a Certificate Authority. However, not that many sites were using HTTPS encryption in the past, and Certificate Authorities had to charge even for something as simple as DV certificates to develop a business.

In the past few years, especially after the Snowden revelations in 2013, many more sites have started using HTTPS encryption by default. There has also been no major performance issue with using HTTPS encryption in recent years due to how powerful computing hardware has become. The recently standardized HTTP/2 protocol in encrypted mode can also be even faster than the unencrypted HTTP/1.1 protocol, making the transition to fully encrypted websites even easier for all developers.

Because of Let’s Encrypt, some major Certificate Authorities are also considering offering free DV certificates and switch to a more “freemium” business model. They could soon give out DV certificates for free, but continue to charge for Extended Validation certificates, as well as other security services.

Let’s Encrypt has already issued 26,000 certificates in the limited beta period, which made the team behind it confident enough that they can now launch the public beta. Let’s encrypt is supported by organizations and companies such as the EFF, Mozilla, Cisco, and Akamai, which are “Platinum” sponsors. Facebook has also recently become one of the “Gold” sponsors of the project.

Alex Stamos, Chief Security Officer at Facebook, said, “Making it easier for websites to deploy HTTPS encryption is an important step in improving the security of the whole internet, and Facebook is proud to support this effort.”

Instructions for how to install the Let’s Encrypt client and get a free certificate can be found here. Other developers have also created alternative clients that can be simpler or easier to use. However, with these clients, you'll have to manually handle the renewable of the certificates yourself, whereas Let's Encrypt's official client does it automatically every 90 days.

______________________________________________________________________

Lucian Armasu joined Tom’s Hardware in early 2014. He writes news stories on mobile, chipsets, security, privacy, and anything else that might be of interest to him from the technology world. Outside of Tom’s Hardware, he dreams of becoming an entrepreneur.

You can follow him at @lucian_armasu. Follow us on Facebook, Google+, RSS, Twitter and YouTube.

Lucian Armasu
Lucian Armasu is a Contributing Writer for Tom's Hardware US. He covers software news and the issues surrounding privacy and security.
  • brandonjclark
    It's about time! Hooray!

    Remember folks, disable SSL V1, 2 and 3. They are now totally insecure. Only TLS 2.0 still works.
    Reply
  • Darkk
    It's about time! Hooray!

    Remember folks, disable SSL V1, 2 and 3. They are now totally insecure. Only TLS 2.0 still works.

    Ummm... TLS 2.0 doesn't exist. It's actually TLS 1.0, 1.1 and 1.2.

    Reply
  • drtweak
    Ummm only on Unix-ish boxes? Really? COMON!
    Reply
  • jasonkaler
    Remember folks, just because it's encrypted, doesn't mean it's secure.
    Reply
  • mikes383
    So when is tomshardware.co.uk going to start using HTTPS?
    Reply
  • Haravikk
    Ummm only on Unix-ish boxes? Really? COMON!
    Does anyone really use other OSes for hosting web-sites? All the best tools and packages are available for Linux and other unix flavours, plus there are loads of good Linux server distros available for free.
    Reply
  • bourgeoisdude
    Does anyone really use other OSes for hosting web-sites? All the best tools and packages are available for Linux and other unix flavours, plus there are loads of good Linux server distros available for free.

    Umm...depending on which reports you believe, Microsoft IIS runs on nearly 40% of web servers, although I'm sure much of that is email server share. Those need certificates too.
    Reply
  • Haravikk
    17066756 said:
    Umm...depending on which reports you believe, Microsoft IIS runs on nearly 40% of web servers, although I'm sure much of that is email server share. Those need certificates too.
    Even so, I expect a much larger majority of DIY servers are unix-based, and do remember that Let's Encrypt is still in beta, so enterprise servers won't (or at least shouldn't) use it yet except for testing. I'm sure there are clients in the works for other platforms, but for the needs of a public beta I think that unix support is more than enough, as that covers a lot of server environments.
    Reply
  • Rona__
    ACCESS LIVE VIDEO ONLINE==>> https://tr.im/lDFql

    Reply
  • stryk187
    Ummm only on Unix-ish boxes? Really? COMON!
    Why would you run a web server on anything else? (yes, IIS is a thing, but imo there's an extremely limited scope to which it's a viable solution to use)
    Reply