Blog about digital certificates, CAs, and security
ACME and EAB: Support for Web Servers (Status as of 10/2025)
Learn how to use ACME and EAB to automate TLS certificates. We compare support on Nginx, Apache, LiteSpeed, and others, tips for DigiCert, and hassle-free implementation.
14 Oct 2025 | Jindřich ZechmeisterFrom the latest articles
Client authentication in TLS certificates will soon end.
DigiCert has announced that it will gradually discontinue support for the extended use of Client Authentication in its public TLS certificates. The change does not affect the normal use of certificates for HTTPS, but will affect scenarios such as Mutual…
25 Jul 2025 | Jindřich ZechmeisterComparison of ACME, EST, SCEP, and CMPv2 Protocols for Certificate Acquisition
Automation of digital certificate management is crucial for modern IT environments – from web servers and mobile devices to enterprise PKI. There are several protocols used to obtain certificates from certificate authorities (CAs). In this article,…
25 Jun 2025 | Jindřich ZechmeisterMeet the new X9 PKI
DigiCert X9 PKI is a specialized Public Key Infrastructure (PKI) designed to provide interoperability and flexibility for environments outside of web browsers. It was developed in collaboration with the financial standards body ASC X9 and operates independently…
11 Jun 2025 | Jindřich ZechmeisterGoogle Chrome will now allow automatic changing of breached passwords.
Password management is often one of the most frustrating yet crucial aspects of online security for many users. That’s why Google has decided to take user protection to the next level. At the Google I/O 2025 conference, the company announced that Chrome…
11 Jun 2025 | Jindřich Zechmeister