Til Ressurser

Buypass Go SSL - Gratis, enkelt, basert på ACME-standarden

What is ACME?

ACME (Automated Certificate Management Environment) is an extensible framework for automating the issuance and domain validation procedures, thereby allowing servers and infrastructural software to obtain certificates without user interaction.

ACME is used to obtain Domain Validated (DV) certificates where the CA verifies that the requester has effective control of the Web server and/or DNS server for the domain. This is as opposed to Organisation Validated (OV) and Extended Validation (EV) certificates, where the process is intended to also verify the real-world identity of the requester. ACME defines a protocol that a certificate authority (CA) and an applicant (using an ACME Client) can use to automate the process of verification and certificate issuance. The protocol also provides facilities for other certificate management functions, such as certificate revocation.

go-acme

The two main entities in ACME are the ACME client and the ACME server. The client uses the protocol to request certificate management actions, such as issuance or revocation. A client may run on any server that requires trusted SSL certificates. The server runs at a certificate authority, and responds to client requests, performing the requested actions if the client is authorised. The communication between the client and the server are based on JSON messages over HTTPS. An ACME client is represented by an account key pair. It uses the private key of this key pair to sign all messages sent to the server. The server uses the public key to verify the authenticity and integrity of messages from the client. Many ACME-client implementations are available, however the preferred client is the EFF’s Certbot client.

Get Started

ACME defines a protocol that a certificate authority (CA) and an applicant (using an ACME Client) can use to automate the process of verification and certificate issuance. To start using the ACME protocol you need an ACME Client and we recommend you to use the EFF’s Certbot Client. You may also use other ACME Client software available, or you may develop your own client implementing the ACME protocol towards Buypass ACME API endpoints according to the ACME specifications.

Certbot. We recommend to use Certbot because it’s easy and work on most OS or servers. Download Certbot here. You will need to configure Certbot to use Buypass ACME API.

Buypass Go SSL

Buypass Go SSL is the name of the SSL certificate you will obtain from Buypass CA using the Buypass ACME API. This is a Domain Validated (DV) certificate.

Advantages

  • free certificate
  • automatic issuance and renewal of certificates - no user action required
  • certificate lifetime is 180 days
  • certificate from a Norwegian publicly trusted CA
  • trusted by all major browser vendors

Technical information

If you need more technical specification and information please take a look at Buypass Community.