Lets Encrypt Ending TLS Client Authentication Certificate Support in 2026
Lets Encrypt Ending TLS Client Authentication Certificate Support in 2026

letsencrypt.org
Ending TLS Client Authentication Certificate Support in 2026

cross-posted from: https://lemmy.bestiver.se/post/390337
Im curious for Google's reasoning.
This honestly is basic security in a number of ways. Separate PKI for every use-case is the standard. Eggs in on ebasket, yadablahwut.
The actual change shouldn't take long for LE to actually do, it's the implication of the thing though. I'd love to see a different tool for enrolling TLS services, or at least a better flow than the existing one.
So what is the PKI for client certificate authentication?