-
Let’s Encrypt ends expiration emails − Here’s how to stay notified
Thursday, May 1, 2025
Let’s Encrypt has announced that it will discontinue its expiration notification emails starting June 4, 2025. This change is driven by several factors: The widespread adoption of automated certificate renewal processes among users. A commitment to enhancing user privacy by reducing the retention of email addresses linked to certificate issuance. The desire to allocate resources more efficiently, as maintaining the notification system incurs significant costs. An effort to simplify infrastructure and reduce potential points of failure.…more
-
Monitor more than websites: SSL Certificate checks for IMAP and other services
Friday, April 25, 2025
Did you know SSLreminder isn’t just for websites? Your mail server, API endpoints, and many other services also rely on valid SSL/TLS certificates. Letting these certificates expire can disrupt critical business operations and compromise security. Example: Monitoring IMAP SSL certificates To monitor your IMAP server’s SSL certificate with SSLreminder: Log into your SSLreminder account. Click on “Add new”, enter a new domain name, and save it Click “Edit” and specify the custom port number, in this case 993 (IMAPS).…more
-
SSL/TLS world in 2025: April check-in
Sunday, April 20, 2025
The secure‑web stack has evolved more over the past two years than in the previous five. Here’s a quick mid‑2025 update covering the most significant shifts: from protocol updates to certificate automation. 1. TLS 1.3 is now the standard 93% of Cloudflare’s connections are now using TLS 1.3, a huge increase from less than 1% in 2018. This seven‑year‑old spec has become the baseline for browsers and CDNs. Major players like Chrome, Firefox, and Cloudflare have brought back Encrypted Client Hello (ECH) after a few bumps in 2023, helping hide the Server Name Indication for better HTTPS privacy.…more
-
Apple to limit ADP availability in the UK
Wednesday, March 5, 2025
Apple has recently decided to stop offering Advanced Data Protection (ADP) to new users in the United Kingdom. While the company has not explicitly stated the reason for this change, it reaffirmed its stance on encryption, saying: “We have never built a backdoor or master key to any of our products or services and we never will.” A possible factor in this decision is the UK’s Investigatory Powers Act (IPA) of 2016, which gives the government the authority to request access to encrypted data.…more
-
OSCP to go away soon
Thursday, February 27, 2025
In a recent Feisty Duck newsletter post titled “The slow death of OCSP” the author explains why the Online Certificate Status Protocol (OCSP) is gradually losing significance in the SSL/TLS ecosystem. It is interesting to understand what’s next for the protocol and have a quick look at how it came to be in the first place many years ago. Originally conceived to provide real-time certificate revocation information, OCSP has been hampered by performance bottlenecks, occasional inaccuracies, and soft-fail browser implementations.…more
-
Account API is now live! 🥳
Friday, September 13, 2024
We’re thrilled to announce that the SSLreminder account API is now live and available to all paid customers! After an exciting pre-release phase with a select group of testers, we’ve fine-tuned the endpoints to ensure they meet the needs of our users. The API allows you to automate domain management, making it easier to keep track of your SSL/TLS certificates, integrate seamlessly with your existing tools, and streamline domain management operations.…more
-
Introducing our new account API (pre-release)
Friday, August 9, 2024
We’re excited to announce the launch of a new feature that many of our customers have been asking for—our Account API is here and currently in pre-release testing! We’ve rolled it out to a select group of customers who requested it specifically, and they’re helping us fine-tune its functionality. Once the testing phase is complete, API access will be available to all customers on a paid plan. The new API will offer an easy and secure way to manage domain names under your SSLreminder account, automate management actions, and integrate with your existing tools.…more
-
Customer Emails feature released
Saturday, September 2, 2023
Following multiple requests, we’re happy to release a new feature called “Customer Emails”. It will be most beneficial to SSLreminder account owners who manage domain names on behalf of their customers. The Customer Emails feature allows you to assign a customer email address to a tracked domain name so that the notification is also delivered to your customer. Let’s see how this works in practice below. Please note there’s a Q&A section at the bottom to ensure we’ll cover everything that changes with this release.…more
-
The PQC Migration Handbook
Monday, May 15, 2023
The Dutch National Communications Security Agency and several other participants have released the PQC Migration Handbook. This handbook provides actionable steps for organizations to identify and mitigate the risks of quantum computers to their cryptographic landscape. With the increasing development of quantum computers, many cryptographic schemes currently in use will become weakened or completely insecure. The handbook explains the importance of identifying and migrating to post-quantum cryptography (PQC) to ensure the security of sensitive data and prevent unauthorized access.…more
-
RPKI in Dutch government routing by the end of 2024
Monday, May 8, 2023
By the end of 2024, all Dutch government ICT systems must use the RPKI standard to improve the government’s internet routing security. This also means that RPKI must not only be used for new purchases but should also be implemented in all existing government systems. The Government-wide Policy Consultation on Digital Government (OBDO) established this objective on March 30th as part of a target agreement. Why use RPKI? RPKI is a technique that aims to prevent route leaks and hijacks, which occur when internet traffic is redirected to unauthorized networks.…more
Keep the business running