A year or two ago, trusted Micro ISV‘er Andy Brice posted an article entitled The Great Digital Certificate Ripoff? It’s well worth a read as it underlines some of the apparent anticompetitive aspects of this particular market.

I’m very happy to say that the ground is shifting – something interesting is happening. Internet Explorer is pretty much universally despised by tech-savvy users, but its sheer market slice means that only a fool would ignore it. As of now, Internet Explorer (and by extension, Windows) will have a new root certificate installed. The root certificate will be that of StartCom Ltd. Why is this important?

StartCom is the only public certification authority providing digital certificates for free!

The implications for security on Windows are profound. No longer will SSL and code signing certificates be expensive commodities for the little guy. Firefox and Apple have supported StartCom for some time, but thankfully us Windows developers can now get in on it.

The SLL certificates are free and provide:

• Web server certificates (SSL/TLS)
• Client and mail certificates (S/MIME)
• 128/256-bit encryption
• US $ 10,000 insurance guaranteed
• Valid 365 days (1 year)

The code signing certificates require a verified account, but still cost a measley $39, and boast:

Web server certificates (SSL/TLS)

Wild cards (*.domain.com)

Multiple domains (DNS Alt Names)

128/256-bit encryption

Object Code Signing (beta)

Client and mail certificates (S/MIME)

US $ 10,000 insurance guaranteed

2 Years validity (730 days)

Well done to StartCom, and well done to Microsoft. Check out the certificates on offer here.

Related articles by Zemanta

• Long Zheng: Microsoft adds free root certificate authority to Windows (istartedsomething.com)
• EV SSL Certificates — Not Just for Major Organizations (newswire.ca)