• Overview
    Key features
    • Observability
    • Auto-scaling
    • Multiframework
    • Security
    Frameworks
    • Django
    • Next.js
    • Drupal
    • WordPress
    • Symfony
    • Magento
    • See all frameworks
    Languages
    • PHP
    • Python
    • Node.js
    • Ruby
    • Java
    • Go
  • Industries
    • Consumer Goods
    • Media/Entertainment
    • Higher Education
    • Government
    • Ecommerce
    Use cases
  • Pricing
  • Agencies
    Resources
  • Overview
    Learn
    Company
    Featured articles
    • Switching to Platform.sh can help IT/DevOps organizations drive 219% ROI
    • Organizations, the ultimate way to manage your users and projects
  • Support
  • Docs
  • Login
  • Request a demo
  • Free Trial
Blog
Meet Upsun. The new, self-service, fully managed PaaS, powered by Platform.sh.Try it now
Blog
Cover image

Let's Encrypt mis-issued certificates

security
03 February, 2022
Platform.sh
Platform.sh

On Tuesday 25 January 2022, Let's Encrypt was notified of a compliance issue with their "TLS Using ALPN" validation method (TLS-ALPN-01).

Even though Let's Encrypt fixed the issue, all certificates generated before 00:48 UTC on 26 January 2022 were considered mis-issued. In compliance with the Let’s Encrypt CP, they began to revoke mis-issued certificates at 16:00 UTC on 28 January 2022.

What's the impact for Platform.sh customers

There are multiple methods (aka “challenges”) available (HTTP-01, DNS-01, TLS-SNI-01, and TLS-ALPN-01) for generating a Let's Encrypt certificate. Because TLS-ALPN-01 method isn't used at Platform.sh, no impact is expected for our customers.

What are the different challenge types

All the challenge types are documented here: https://letsencrypt.org/docs/challenge-types/

What's Let's Encrypt

A service provided by the Internet Security Research Group (ISRG), Let’s Encrypt is a free, automated, and open certificate authority (CA) run for the public’s benefit.

Get the latest Platform.sh news and resources
Subscribe

Related Content

We can’t wait for SBOMs to be demanded by regulation

We can’t wait for SBOMs to be demanded by regulation

How software company security priorities are changing

How software company security priorities are changing

International data protection with EU-entities of US-headquartered IaaS providers

International data protection with EU-entities of US-headquartered IaaS providers

Leader Winter 2023
Company
AboutSecurity and complianceTrust CenterCareersPressContact us
Compare
Heroku alternativePantheon alternativeAcquia alternativeAWS alternativeGCP alternativeAzure alternativeManaged hostingKubernetes alternativeFly.io alternativeRender alternative
Resources
BlogROI CalculatorDownloadsDemosSupport CenterWhat is FleetOps?CI/CD on Platform.shPartner portalRegions map
Product
PricingWhat is Platform.sh?What can you run on Platform.sh?Drupal cloud hostingWordPress cloud hostingResources Auto-ScalingObservability Suite
Thank you for subscribing!
  •  
Field required
Leader Winter 2023
System StatusPrivacyTerms of ServiceImpressumWCAG ComplianceAcceptable Use PolicyManage your cookie preferencesReport a security issue
© 2024 Platform.sh. All rights reserved.
Supported by Horizon 2020's SME Instrument - European Commission 🇪🇺