122
edits
Security/Automation/Winter Of Security 2015: Difference between revisions
Jump to navigation
Jump to search
Security/Automation/Winter Of Security 2015 (view source)
Revision as of 17:04, 8 July 2015
, 8 July 2015Let's Encrypt project - Enable hardmode
(Let's Encrypt project - Add example) |
(Let's Encrypt project - Enable hardmode) |
||
| Line 71: | Line 71: | ||
=== Certificate Automation tooling for Let's Encrypt === | === Certificate Automation tooling for Let's Encrypt === | ||
* Mozilla Advisor: [https://mozillians.org/en-US/u/jcjones/ J.C. Jones] and [https://mozillians.org/en-US/u/rbarnes/ Richard Barnes] | * Mozilla Advisor: [https://mozillians.org/en-US/u/jcjones/ J.C. Jones] and [https://mozillians.org/en-US/u/rbarnes/ Richard Barnes] | ||
* Difficulty: | * Difficulty: hard | ||
* Language: English | * Language: English | ||
[https://letsencrypt.org/ Let's Encrypt] is a certificate authority that aims to streamline the issuance and management of X.509 Certificates, the authentication mechanism behind Transport Layer Security (TLS). Today, Let's Encrypt provides a tool to manipulate server configuration files to enable TLS. This project would be to write a module or patch for a popular web server such that it natively speaks the [https://datatracker.ietf.org/doc/draft-barnes-acme/ ACME protocol for Certificate Management]. For example, the team could produce an Apache module (''mod_acme'') to handle certificate issuance and renewal automatically, with the eventual goal of being included in Apache distributions by default. | [https://letsencrypt.org/ Let's Encrypt] is a certificate authority that aims to streamline the issuance and management of X.509 Certificates, the authentication mechanism behind Transport Layer Security (TLS). Today, Let's Encrypt provides a tool to manipulate server configuration files to enable TLS. This project would be to write a module or patch for a popular web server such that it natively speaks the [https://datatracker.ietf.org/doc/draft-barnes-acme/ ACME protocol for Certificate Management]. For example, the team could produce an Apache module (''mod_acme'') to handle certificate issuance and renewal automatically, with the eventual goal of being included in Apache distributions by default. | ||