People deserve a secure and privacy-respecting Internet. Ubiquitous HTTPS is an essential part of delivering on that vision. To that end, our public benefit certificate authority has been issuing TLS certificates free of cost in a reliable, automated, and trustworthy manner for ten years. We went from issuing our first certificate in 2015 to servicing over 500,000,000 websites in 2025, and we’ve got big plans for the future.

TLS is a core Internet technology, relevant to almost all developers. We’ll talk about how we try to make the working lives of developers around the world easier, while learning lessons from the developer community about how to do our job better.

We’ll aim to provide interesting history and helpful context for those managing TLS certificates today, as well as some heads up and guidance for the future. We’ll also talk about changes coming down the pipe, including better resiliency via ACME Renewal Information (ARI), the end of the OCSP revocation information protocol, shorter lived certificates, and support for IP address certificates.