It looks like you're using an Ad Blocker.
Please white-list or disable AboveTopSecret.com in your ad-blocking tool.
Thank you.
Some features of ATS will be disabled while you continue to use an ad-blocker.
Let’s Encrypt is a free, automated, and open certificate authority (CA), run for the public’s benefit. Let’s Encrypt is a service provided by the Internet Security Research Group (ISRG).
The key principles behind Let’s Encrypt are:
Free: Anyone who owns a domain name can use Let’s Encrypt to obtain a trusted certificate at zero cost.
Automatic: Software running on a web server can interact with Let’s Encrypt to painlessly obtain a certificate, securely configure it for use, and automatically take care of renewal.
Secure: Let’s Encrypt will serve as a platform for advancing TLS security best practices, both on the CA side and by helping site operators properly secure their servers.
Transparent: All certificates issued or revoked will be publicly recorded and available for anyone to inspect.
Open: The automatic issuance and renewal protocol will be published as an open standard that others can adopt.
Cooperative: Much like the underlying Internet protocols themselves, Let’s Encrypt is a joint effort to benefit the community, beyond the control of any one organization.
originally posted by: 3ncrypt0Rdie
Hello everyone at ATS
Im not sure why the site dose not use (https) but it would sure be nice to know that there is some form of encryption between me and your servers. Also almost every site on the web now uses it.
There are services that allow for free certificates to secure your sites.
Mods and other in control at ATS take a look at lestencrypt.org
Let’s Encrypt is a free, automated, and open certificate authority (CA), run for the public’s benefit. Let’s Encrypt is a service provided by the Internet Security Research Group (ISRG).
The key principles behind Let’s Encrypt are:
Free: Anyone who owns a domain name can use Let’s Encrypt to obtain a trusted certificate at zero cost.
Automatic: Software running on a web server can interact with Let’s Encrypt to painlessly obtain a certificate, securely configure it for use, and automatically take care of renewal.
Secure: Let’s Encrypt will serve as a platform for advancing TLS security best practices, both on the CA side and by helping site operators properly secure their servers.
Transparent: All certificates issued or revoked will be publicly recorded and available for anyone to inspect.
Open: The automatic issuance and renewal protocol will be published as an open standard that others can adopt.
Cooperative: Much like the underlying Internet protocols themselves, Let’s Encrypt is a joint effort to benefit the community, beyond the control of any one organization.
Encryption makes using the web a lot more private and allows for some level of assurance that your communications are secure.
What do you think Members would you like to see HTTPS here on ATS? After all it is 2016
originally posted by: 3ncrypt0Rdie
Im not sure why the site dose not use (https) but it would sure be nice to know that there is some form of encryption between me and your servers. Also almost every site on the web now uses it.
originally posted by: 3ncrypt0Rdie
I guess my main question to you and for everyone is, Why was this not part of the original business model in the beginning or to be more flexible,once (https) became ubiquitous.
And finally can anyone in ATS management that has the deciding pull about this issue, could you let us know your thoughts and what the likely hood of getting (https) is.
It really stinks that Google's AdSense, AdExchange, and Double Click, and others have made it harder to allow sites to secure there users in order to maintain a balance of revenue which is essential to all Internet services and forums.
Let's Encrypt & NginxState of the art secure web deployment Not long ago SSL encryption was still considered just a nice-to-have feature, and major services secured only log-in pages of their applications. Things have changed, and for the better: encryption is now considered a must-have, and enforced by most players. Search giant Google even takes SSL implementation into account in search results ranking. Despite the larger reach of SSL, setting up your own secure web service is still considered daunting, time consuming, and error-prone. A recent player in the field, Let’s Encrypt promises to make SSL certificates more widely available and to radically simplify the workflow of maintaining a website’s security. Combined with the powerful Nginx web server, and with some additional hardening tips, you can use it to achieve top notch security grades, rating A on the popular Qualys SSL and securityheaders.io analysers.
The major ad platforms (Google, AOL ONE, Tribal Fusion, OpenX, Rubicon, etc.) have set a date of January 1, 2017 as the deadline for all advertisers to support HTTPS, but I suspect it will end up being a moving target.