BY JACOB HOFFMAN-ANDREWS
The first free and automated certificate authority, Let's Encrypt, will launch to the public in September of this year. This is a huge milestone for web security and privacy. Encryption in transit (HTTPS) is vital to protect people and websites from spying and tampering. Someday soon, we hope every site on the web will use HTTPS by default.
Unfortunately, there are still obstacles preventing some sites from implementing HTTPS. Many are stymied by the need to obtain and install a certificate. For years, this was an expensive and difficult process. Today, it's possible to obtain a certificate for free, so it is merely a difficult process. Our informal tests have shown that it often takes 1-3 hours for a web administrator to install a certificate. People without web administration skills may not be able to install one at all. We think that's not acceptable. The free and open web must be accessible to anyone who wants to publish their thoughts, not just those with technical skills. As HTTPS becomes a more integral part of the web, we must democratize access to its benefits.