Great article. The other challenge with traditional cert providers and the costs associated is that most browsers no longer accept a cert that lasts more than a year or wildcards. Meaning the cost multiplies greatly.
I also love lets encrypt but companies ultra paranoid about security seem to not. I have run into several financial services and banking companies that will not allow a letsencrypt cert to be used. This gives the benefit to the cloud providers or vendors who have ACME compliant solutions like digicert or Cloudflare.
Great points, thanks Justin! I remember a widespread LetsEncrypt certificate revocation not too long ago which affected many production systems. I can appreciate how highly security conscious customers might look elsewhere.
Great article. The other challenge with traditional cert providers and the costs associated is that most browsers no longer accept a cert that lasts more than a year or wildcards. Meaning the cost multiplies greatly.
I also love lets encrypt but companies ultra paranoid about security seem to not. I have run into several financial services and banking companies that will not allow a letsencrypt cert to be used. This gives the benefit to the cloud providers or vendors who have ACME compliant solutions like digicert or Cloudflare.
Great points, thanks Justin! I remember a widespread LetsEncrypt certificate revocation not too long ago which affected many production systems. I can appreciate how highly security conscious customers might look elsewhere.
https://www.theregister.com/2022/01/26/lets_encrypt_certificates/