TechQA.

Paid SSL certificate vs Free SSL Certificate

6.4k views Asked by At

What is the main difference (may be pro/con list) between buying a custom SSL certificate and getting one from Free certificate provided by Let's Encrypt. This is all about just having simple https in our Web Application

P.S I believe you understand what I am trying to do.

ssl https lets-encrypt
Original Q&A
1

There are 1 answers

0
pedrofb On BEST ANSWER

The main practical difference is to be trusted in all browsers and third party systems, for example Android, iOS or Windows.

Lets encrypt has taken this restriction into account and has proposed a solution that you can read on its website https://letsencrypt.org/certificates/

Our intermediate is signed by ISRG Root X1. However, since we are a very new certificate authority, ISRG Root X1 is not yet trusted in most browsers. In order to be broadly trusted right away, our intermediate is also cross-signed by another certificate authority, IdenTrust, whose root is already trusted in all major browsers. Specifically, IdenTrust has cross-signed our intermediate using their DST Root CA X3.

That is, in fact, their certificates are signed by a trusted 'usual' CA. So in practice there is no difference

Take a look at letsencrypt's own web certificate, it is signed by DST Root CA X3 (IdenTrust) enter image description here

I have checked if CA is present in some keystore:

  • Chrome, IExplorer, Edge (using windows 10): OK
  • Mozilla Firefox: OK
  • Android (Nexus 5x -android 7): OK

Full list here: https://letsencrypt.org/docs/certificate-compatibility/

Related Questions in SSL

Related Questions in HTTPS

Related Questions in LETS-ENCRYPT

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions