The Internet Security Research Group (ISRG) will expand the Let’s Encrypt Certificate Authority to enable the issuance of free and automated Transport Layer Security (TLS) certificates with lifespans of 10 days or less for both DNS-based domains and IP addresses. TLS certificates convert “HTTP://” to “HTTPS://” (with the S standing for “secure”) to encrypt data sent over the internet, ensuring that eavesdroppers and hackers are unable to see what is transmitted. This is particularly important for people living in repressive-information environments.
Shorter-lived TLS certificates will increase the digital security of at-risk individuals by creating a shorter rotation cycle for domains / IP addresses or TLS keys that become compromised, including by repressive governments. This will reduce the window in which malicious actors are able to exploit compromised certificates.