latest

Quick and Easy (and Free) SSL Certificates

We've talked a little about security here on Head in the Cloud. One of the minimum bars that you can employ is having a proper SSL Certificate. The SSL Certificate serves two functions.

  1. It provides an online ID that has been verified by a third party called a Certificate Authority.
  2. It provides the certificate that is used to encrypt data traveling back and forth from the user's brower and the server side.

The following video gives a fairly simple explanation of it all.

There's a number of options out there for SSL Certifications including DigiCert, Geo Trust, Global Sign and more. These are well trusted and reliable sources of SSL Certs.

But there's a new kid on the block called Let's Encrypt. These guys have opened a new certificate authority that is free, automated and open sourced. The non-profit behind the service is Internet Security Research Group which has a number of folks from different companies. They've got sponsorship from Mozilla, Akamai, Cisco, Electronic Frontier Foundation and more.

Cal Evans recently blogged about his experience setting up Let's Encrypt on his server at How I got Let's Encrypt Setup and Operating. He's got setup scripts, renewal scripts and everything working great for Apache on CentOS.

If you're not using Apache on CentOS, you can look at the different clients at the Let's Encrypt List of Client Implementations.

That should get you started - enjoy!

Author image
Josh is currently working for Microsoft as the Director of Architecture for the Partner Catalyst team in the Technical Evangelism and Development organization. Head in the Cloud is his baby...
In the cloud... Website