
CAcert
CAcert.org is a community-driven Certificate Authority that issues certificates to the public at large for free.
- Free • Proprietary
- Online
What is CAcert?
CAcert.org is a community-driven Certificate Authority that issues certificates to the public at large for free.
CAcert's goal is to promote awareness and education on computer security through the use of encryption, specifically by providing cryptographic certificates. These certificates can be used to digitally sign and encrypt email, authenticate and authorize users connecting to websites and secure data transmission over the internet. Any application that supports the Secure Socket Layer Protocol (SSL or TLS) can make use of certificates signed by CAcert, as can any application that uses X.509 certificates, e.g. for encryption or code signing and document signatures. GPG/PGP keys are also supported.
CAcert can't be trusted: It has serious code vulnerabilities, the coding style is very bad & they failed an organizational-practices audit which all other major certificate authorities have passed. Almost no browsers or operating systems support CAcert, so any website using the certificate will trigger a big untrusted connection/certificate warning that will drive most visitors away. https://tinyurl.com/cacert-got-what-you-paid-for | https://www.reddit.com/r/technology/comments/1qj1tz/http_20_to_be_https_only/cddfmz0
CAcert Screenshots
CAcert information
Supported Languages
- English
Comments and Reviews
Tags
- certificage-authority
- Encryption
- certificate
- Authentication
- PKI
- HTTPS
Category
Security & PrivacyRecent user activities on CAcert
cmcrossno liked CAcert
ssltutor added CAcert as alternative(s) to SSLTutor
REMC0 doesn't think MEO File Encryption Software is an alternative to CAcert
It's utility software, not a certificate service
After CACert's breach, their CA public certs were removed from all the major browsers and operating systems. This means that any website using a certificate issued by them would now show as untrusted. CACert is to be avoided as there is no going back once you've opened the doors and allowed anyone to issue a certificate for any domain name they want, especially domain names they don't control such as gmail, yahoo, hotmail, etc... as was the case with CACert.