Let’s Encrypt automates certificate renewals. It sells the idea that you install a client and don’t have to think about it again. This requires reliability that has to start with Let’s Encrypt itself. We can now see that with KeyChest.
Keep an Eye on Let’s Encrypt Performance
Jun 28, 2020 2:30:45 PM / by Dan posted in letsencrypt, https, keychest
Apple Safari Not Trusting Long Certs from Sept 1
Feb 23, 2020 8:28:19 PM / by Dan posted in certificate, https, keychest
Apple believes that SSL/HTTPS certificates valid for more than a year are not secure enough. As such the Safari browser will not be trusting certs valid for more than 13 months. Change comes on September 1. What does it mean?
KEYCHEST - Confidence In Your Online Business
Feb 6, 2020 10:36:21 AM / by Dan posted in https, keychest, key management
While KEYCHEST as a brand started as a straightforward expiry management service for Let's Encrypt, it has become a service with a rich set of features and there is still several technologies that wait for production deployment.
Quick Inspection of Web Endpoints (incl.SSL Expiry Check)
Feb 5, 2020 11:20:25 AM / by Dan posted in certificate, https, keychest
KeyChest is about keeping your business up and running by preventing the expiry of important web services - this is our goal. While it may be prudent to reach A+ rating in specialised audit tools (like SSL Labs), it will not prevent your business downtime 3 months later when your super secure ordering service expires.
Let’s Encrypt for Companies with KeyChest
Dec 3, 2019 1:53:43 PM / by Dan posted in letsencrypt, https, keychest
Let’s Encrypt has a number of downsides when used on a large scale. It uses modern key management protocols, but the high-level of automation requires management. This is what KeyChest provides.
Automating HTTPS Issuance in KeyChest
Nov 21, 2019 10:10:44 AM / by Dan posted in certificate, keychest, key management
KeyChest's business model is based on the management of HTTPS expiry. Automation of certificate issuance is for us an additional service that moves it closer to a complete service to manage your internal and external certificates. What it means in practical terms is that we simply pass on our cost of certificates to all paying users of KeyChest.
KeyChest – Unifying Public and Private Keys
Jun 24, 2019 11:03:03 AM / by Dan posted in https, keychest, key management
KeyChest has started as an easy to use HTTPS monitoring service. What we are aiming for is a general purpose key management service, which can look after your public as well as internal web encryption keys.
KeyChest and Reliability
Jun 17, 2019 2:59:01 PM / by Dan posted in keychest, incident response
Those who have been with us for a while may know that we change the cloud provider to Digital Ocean in January. At the same time, we started experimenting with HA database cluster. And we learnt a lot.
What are disadvantages of Let's Encrypt
Jun 7, 2019 8:24:18 AM / by Dan posted in letsencrypt, keychest, quora
Letsencrypt is now installed on more than 50% of all webservers. This is mostly thanks to its adoption by many web hosting providers. We can also see it starts being used by large companies and enterprises. But what are the downsides?
KeyChest Update - June 2019
Jun 5, 2019 7:12:45 PM / by Dan posted in identity, phishing, keychest
Having spent quite a few months working on the "invisible" code powering KeyChest, we have added two new reports - phishing threat and identity reports. But that is not all, we will finally add agents for monitoring internal networks.