"Install SSL certificate" will disappear from the dictionaryJune 1, 2022

All readers who encounter or know about SSL certificates know what the term "install SSL certificate" means. For the convenience of readers who are not very familiar, I will explain it a little here. All browsers display websites without SSL certificates as "Not secure". Everyone has noticed this, because websites without SSL certificates are not certified, and their identity is unknown and untrustworthy. And the website without SSL certificate cannot implement https encrypted transmission, any information (such as account password or other personal information) entered by the website visitor from the browser or App is very easy to be stolen and illegally tampered with. Therefore, all browsers will prompt "Your connection to this site is not secure. You should not enter any sensitive information on this site (for example, passwords or credit cards), because it could be stolen by attackers."

What to do? The website owner must apply for an SSL certificate from the CA operator and install the SSL certificate into the server. This "installation" is actually a bit exaggerated, but it is really needed to install the SSL certificate in .pfx format on the IIS server, and other servers only need to configure the private key and public key certificate on the server, which is of course also a certificate installation process. So why is the title of this article being "Install SSL Certificate" disappearing from the dictionary? Does anyone no longer need to install SSL certificate in the future? The answer is Yes.

Let's take a look at Certificate Transparency log data. As of today, 737 million valid SSL certificates have been issued worldwide, Let's Encrypt that supports the ACME protocol and does not require users to install SSL certificates, has issued 443 million, plus other CAs that support ACME have issued 165 million SSL certificates, the ACME installed SSL certificate is up to total of 608 million. That is to say, 82% of SSL certificates do not require users to "install SSL certificate", and 60% of users only need to install the ACME client software on the server to automatically configure the SSL certificate for the server to implement https encryption. The remaining 12% of users do not need to "install SSL certificate" because they use the automatically configured SSL certificate service provided by the cloud service provider.

In other words, only 18% of the SSL certificates in the world need to be manually installed. This data is really amazing. This credit is due to Let's Encrypt being the first in the world to provide automatic configuration of SSL certificates for users, and to make the automatically configure SSL certificate protocol become the international standard RFC 8555, so that everyone can use this standard to automatically configure SSL certificates. Of course, this innovation also allowed Let's Encrypt to win 60% of the global market share, down 1.7% from the data in December last year, the reason should be that other companies also provide ACME automatic configuration SSL certificates. From October 2015, before Let's Encrypt provided automated services, 100% SSL certificate needed to be installed manually, and now only 18% left that need to be installed. It only took 6 years and 8 months. According to this momentum, by the end of 2023, the term "install SSL certificate" could be completely disappeared!

At this point, the reader may think that this article is over. In fact, the front section is just a foreshadowing, the good show is still to come, please read the next. These 82% of the SSL certificates do not need to be installed, and 60% of the users need to install an ACME client software on their servers. This client software is responsible for automatically applying for SSL certificate and installing certificate. Users do not need to "install SSL certificate", but need to "install ACME client software", of course, the two "installation" are different, "install SSL certificate" needs to be done once a year, and "install ACME client software" only needs to be done once, no need to be done every year. That is to say, the current situation is that there is no need to “install SSL certificate” but need to install a software for automatically installing the SSL certificate.

Now, the good news has come. The first website security cloud service in the world launched by ZoTrus Technology is simpler than one time "install ACME client software". There is no need to "install SSL certificate", no need to "install ACME client software". Only two CNAME domain name resolutions are required to complete the automatic deployment of SSL certificates, and the https encryption service can be enabled immediately! This is the innovative service that truly makes the word "install SSL certificate" disappear more quickly, nothing needs to be installed!


This innovative service also completely solves the problem that virtual hosting websites that cannot install SSL certificates, because virtual hosting websites are not independent and manageable hosts, and users cannot install ACME client software. Now, with ZoTrus Website Security Cloud Service, there is no need to install anything, just do CNAME domain name resolution, and immediately not only automatically enable https encryption for the website, but also enable WAF protection, realizing dual security technical guarantee, this is the website security services that all websites really need.

The launch of Website Security Cloud Service will definitely make the word "install SSL certificate" disappear more quickly, and truly liberate customers from "installation". ZoTrus Website Security Cloud Service is the service that customers really need.

Click here to download this blog post (PDF format, digital signed and timestamped with global trust and global legal effect, all rights reserved, plagiarism is prohibited! Reprint this article, please indicate: Reprinted from ZoTrus CEO Blog)