LetsEncrypt.com is cross signed
31 views
Skip to first unread message
Joel Weinberger
Oct 19, 2015, 11:33:35 PM10/19/15
to security-dev
As a point of interest, Let's Encrypt is officially a certificate authority. Check out the Connection tab in the page info for https://helloworld.letsencrypt.org/.
--Joel
PhistucK
Oct 20, 2015, 1:46:00 AM10/20/15
to Joel Weinberger, security-dev
It is the intermediate one for me - do you see that as well?
DST Root CA X3 is the first in the chain.
☆PhistucK
On Tue, Oct 20, 2015 at 6:33 AM, Joel Weinberger <j...@chromium.org> wrote:
As a point of interest, Let's Encrypt is officially a certificate authority. Check out the Connection tab in the page info for https://helloworld.letsencrypt.org/.--Joel
To unsubscribe from this group and stop receiving emails from it, send an email to security-dev...@chromium.org.
Joel Weinberger
Oct 20, 2015, 1:55:06 AM10/20/15
to PhistucK, security-dev
Yes, I believe that's expected. According to their blog post, that demo page is meant to demo their intermediate authority.
-Joel
Yan Zhu
Oct 20, 2015, 1:22:28 PM10/20/15
to Joel Weinberger, PhistucK, security-dev
FWIW, Let's Encrypt submitted applications for the Mozilla, Google,
MSFT, and Apple root stores in Sept, so it will take a while before
the root is widely trusted.
More info at https://letsencrypt.org/certificates/
MSFT, and Apple root stores in Sept, so it will take a while before
the root is widely trusted.
More info at https://letsencrypt.org/certificates/
Reply all
Reply to author
Forward
0 new messages