ECDSA Root and Intermediates


#1

As the “Embed SCT receipts in certificates” feature is almost complete, I had a some questions about the preparation of the next one: “ECDSA Root and Intermediates” with the ETA Q3 2018 according to https://letsencrypt.org/upcoming-features/

Before the generation of the publicly trusted Root and Intermediates, do you plan:

Will the new root (or intermediates) be cross signed with “ISRG Root X1” ?
Will the new root (or intermediates) be cross signed with “DST Root CA X3” or another widely trusted root ?

I guess you planned to submit that new root to trust stores?


ISRG ECDSA Root Timeline
Switch intermediate certificate from IdenTrust to ISRG signed
#2

Maybe @josh or @jsha could comment on this?


#3

We hadn’t planned to publish a draft hierarchy before the ceremony, but that’s an excellent idea and we’ll do it. Thanks for suggesting it! We will also generate a fake version of that hierarchy and make it available on staging as you suggest.

Most likely the new root will be cross-signed by ISRG Root X1 and also submitted to trust stores directly. We haven’t yet decided about a DST Root CA X3 cross-sign.


#4

If you choose not to cross-sign, how would a browser make a valid chain if ISRG Root X1 isn’t valid in that certain client?


LE Cross Signed Intermediate Certificate
#5

We could request a DST Root CA X3 cross-sign on ISRG Root X1, which would then pass on trust to the new ECDSA root. But details like these are a good reason to publish a draft before doing the ceremony. :slight_smile: I’m going to be focusing on SCT stuff today, but will circle back to this soonish.


#6

Perfect!

I’m not sure it’s technically/legally/contractually possible but a cross-sign from a Let’s Encrypt intermediate already cross-signed by DST Root CA X3 should is probably another solution (but maybe not a good one, as it’s add a level in the chain to send, which increase the handshake size, where one of the objective of ECDSA is to reduce it.)

Yes! Of course, it’s the priority without any doubts. These questions just needed to be asked before it was too late and some irremediable steps took place.

Thanks a lot for these answers, and all the awesome work you all do, making the internet a safer place!


What happens in 2021 when the IdenTrust root certificate expires?
#7

Do you have a estimated timeline about it? (As https://letsencrypt.org/upcoming-features/ still indicate an ETA for “Q3 2018” and https://letsencrypt.org/certificates/ “March 2018” => https://github.com/letsencrypt/website/issues/323)

The CT, ACMEv2 and the TLS-SNI bug obviously has delayed your previsions. (Not a criticism, on the contrary, there is absolutely no reason to rush for ECDSA)


#8

Hi, do you have any update on this topic? Upcoming Features page still lists ETA for Q3 2018, and it’s already Q3 2018. :slightly_smiling_face: Thanks.


#9

Hi,

@jsha is cureently out for vacation… so I’m afraid he can’t answer anything until mid-auguest…

In the meantime, @josh might be able to help?

Thank you


#10

The ETA has been pushed back to Q1 2019:


ISRG ECDSA Root Timeline
#11

Is the publication of the draft still planned?


#12

Yep, still planned; thanks for the reminder!