SSL/TLS Certificates being revoked by Let’s Encrypt
A non-profit organisation named Let’s Encrypt has recently stated its plans to revoke a number of improperly issued SSL/TLS certificates. Let’s encrypt helps people obtain SSL and TLS certificates for the their websites.
SSL/TLS: What is it and why you should use it?
SSL (Secure Sockets Layer) is a security protocol. The purpose of SSL is to secure sensitive information on your website. SSL does this by establishing an encrypted connection between the browser and the website.
Having an SSL/TLS certificate on your website is very important. Normally data between a browser and a site is sent as plain text. This means that a 3rd party could easily gain access to this data. This could be credit cards, emails, passwords and many more. Having an SSL/TLS certificate means that data is encrypted and can’t be viewed by unauthorised parties. A browser URL bar also indicates to your clients if your site is secure, which builds trust with your visitors.
SSL/TLS Certificates issued improperly
A Let’s Encrypt staff member stated in a post that a third party alerted them to irregularities in their codebase. This code was responsible for implementing a validation method. Let’s Encrypt deployed a fix on 26th January 2022 and all certificates issued before that are considered mis-issued.
Is your website affected?
Let’s Encrypt estimates that more than 2 million active certificates have been affected. Those affected will be notified via email. This is likely to be your website admin. As a result, you will need to renew your certificates if affected.
Are you setting up a new website or struggling to manage your existing one?
We offer professional Web Design and Hosting and will take care of everything for you. You will never have to worry about issues involving your site again, because we will be keeping an eye on everything for you.
Get in touch with us!
June 28, 2022
June 21, 2022
May 27, 2022