Let’s Encrypt to Offer Wildcard Certificates in 2018

Certificate authority Let’s Encrypt said this week it will begin offering wildcard certificates in 2018.

Certificate authority Let’s Encrypt said this week it will begin offering wildcard certificates in 2018.

Wildcard certificates are public key certificates that can be used with multiple subdomains of a domain. The certificates are traditionally viewed as less expensive and more convenient by webmasters.

Josh Aas, executive director for the Internet Security Research Group, the nonprofit corporation behind Let’s Encrypt, announced the news via a blog entry Thursday.

Aas says he hopes the effort will make HTTPS deployment easier for Let’s Encrypt users and help “accelerate the Web’s progress towards 100% HTTPS,” long a goal of the initiative.

The CA said it would begin offering wildcard certificates to users beginning in January of next year. It will only support base domain validation via DNS for wildcard certificates at first but could add additional validation options over time, Aas said.

The certificates will be offered for free via the CA’s forthcoming ACME v2 API endpoint. Announced in June, the IETF-standardized protocol is slated to launch around the same time Let’s Encrypt plans to begin offering wildcard certs.

The protocol, a medium for subscribers to acquire and manage certificates, will build off the CA’s ACME v1 protocol API but won’t replace it just yet.

“Once we’re confident that we can predict an appropriate end-of-life date for our ACME v1 API endpoint we’ll announce one,” Aas said last month.

The news comes a week after the CA announced it had issued more than 100,000,000 certificates.

Aas and Let’s Encrypt still have a long way to go until 100 percent of web pages are loaded by HTTPS but the CA has made some admirable strides over the past year and a half since the CA’s inception. When the Let’s Encrypt first entered public beta in December 2015 less than 40 percent of page loads used HTTPS. Since then, a span of 19 months, HTTPS loads have jumped 18 percent to nearly 58 percent.

Suggested articles

Newsmaker Interview: Scott Helme on Securing the Web

Threatpost sat down with Helme to discuss the state of web security, including certificate transparency, HTTPS deployment, Let’s Encrypt, content security policy and HTTP strict transport security.

Free Certs Come With a Cost

Leading certificate authority Let’s Encrypt is facing criticism that its rapid growth and eagerness to encrypt internet communications is happening at a cost.

Discussion

07/15/18 4:00
The 6-year-old Dorkbot #malware is now ranked the second biggest banking malware headache in 2018 so far: https://t.co/DiD2XV0eln

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.