KeyChest Blog

Let’s Encrypt for Companies with KeyChest

Dec 3, 2019 1:53:43 PM / by Dan posted in letsencrypt, https, keychest

0 Comments

Let’s Encrypt has a number of downsides when used on a large scale. It uses modern key management protocols, but the high-level of automation requires management. This is what KeyChest provides.

Read More

Certificate Monitoring - HTTPS/TLS

Nov 28, 2019 11:36:08 AM / by Dan posted in letsencrypt, certificate, https

0 Comments

As we continuously improve our own certificate management service, we keep an eye on other tools. There is a wide range of services and each of us has different requirements and preferences.

Read More

Let's Encrypt Uptime - 2 years on

Nov 24, 2019 5:37:46 PM / by Dan posted in letsencrypt, https

0 Comments

I have looked at the service disruptions of Let's Encrypt back at the end of 2017. Two years on, I had another look - and compared twelve months periods.

Read More

KeyChest – Unifying Public and Private Keys

Jun 24, 2019 11:03:03 AM / by Dan posted in https, keychest, key management

0 Comments

KeyChest has started as an easy to use HTTPS monitoring service. What we are aiming for is a general purpose key management service, which can look after your public as well as internal web encryption keys.

Read More

Is there a way to generate a self-signed EV SSL (X.509) certificate?

May 19, 2019 9:24:26 PM / by Dan posted in certificate, https, quora

0 Comments

Technically, all you need is to add correct extensions to your certificate, which will identify it as an EV certificate. CA/Browser forum defined one in https://cabforum.org/wp-content/... (section 9.3.2).

Read More

What are online security certificates, SSL, HTTPS and how do they work?

May 19, 2019 9:05:55 PM / by Dan posted in https, key management, quora

0 Comments

If you’re interested in technical details, the best really is to read relevant standards. However, it’s relatively easy to give you a good idea of what they are.

Read More

Growth of Certificate Transparency Public Logs

Sep 10, 2018 2:32:00 PM / by Dan posted in https, keychest

0 Comments

As we have a database of all the issued public certificates, we started looking at some of the data (Autumn 2018). This is a quick note about the frequency of updates of certificate transparency (CT) logs.

Read More

Real-time Certificate Info – 5,560,000,000 KEYCHEST

Sep 10, 2018 2:22:00 PM / by Dan posted in https, keychest

0 Comments

We have finally completed a GLOBAL certificate look-up table for real-time notifications in our re-designed KeyChest service. KeyChest has been using an external service to check for new certificates. This has become unsustainable due to the number of users and certificates we monitor.

Read More

LetsEncrypt in numbers - all restrictions you should know

Jun 30, 2017 11:07:00 PM / by Dan posted in letsencrypt, https

0 Comments

Let's Encrypt is now the largest certificate provider for internet servers (combining a Frost&Sullivan report on SSL/TLS certificates from 2016 and actual data from Let's Encrypt, LE currently issues around 80% of all browser-trusted certificates). It does not issue the "most secure" certificates (i.e., EV, or extended validation certificates, which require manual validation of the address and legal status of the web service owner), but its certificates provide a very good level of security for most of us.

When we started using Let's Encrypt (LE), we slowly learnt about various limitations imposed on users. There is not any single place where you can find all important information in one place so here's the first attempt. We will amend it as we learn more directly, or from your feedback.

Read More