Let’s Encrypt wants to encrypt the entire web
A coalition of organizations – including the Electronic Frontier Foundation (EFF), Mozilla, Cisco, Akamai, and numerous others – have joined forces in order to create the infrastructure and tools required to help websites offer more secure and private browsing to their visitors by establishing a non-profit organization, Let’s Encrypt.
“It’s clear at this point that encrypting is something all of us should be doing. Then why don’t we use TLS everywhere?” said Josh Ash, director of the Internet Security Research Group in a statement, as quoted by Tech Times. “Every browser in every device supports it. Every server in every data center supports it. Why don’t we just flip the switch?”
Let’s Encrypt will offer free digital certificates and open-source tools for configuring and offering the secure Web functionality known as Secure HTTP (HTTPS). As enticing as that it, creating the tools to easily manage the certificate process and set up Web servers to properly handle HTTPS is the most important part of this combined effort.
“A browser will and/or should throw up a warning encouraging the user to not trust the site as there is no way to tell if the site you are accessing is really who they say they are,” said Stephen Ludin, Akamai and ISRG board member, as quoted by eWEEK. “In the case of ISRG and the Let’s Encrypt initiative, the certificates generated are legitimate certs and will be trusted by a significant percentage of browsers right out of the gate.”