In the name of resilience, what should a true alternative to Lets Encrypt offer for you.
Besides the following basic requirements:
- feature complete (offering both simple domain and wildcard support via ACME)
- registered non-profit
- not inside the US (simply based on resillience)
- like lets encrypt community driven
There's already other CAs that (optionally) use ACME to issue. As I understand it from the mod_md readme [1], Buypass basically works (without must staple), Sectigo and ZeroSSL work too, but require an account to be setup.
Are these true alternatives? If not, why not? I don't know where these companies reside.
They are alternatives. With true I wanted to specifically point to: nonprofit and same features (so not only simple DV for free accounts but also wildcard.)
The “requirements”a re things that I already had in mind.
The US part is based on legal framework. Based on stuff like politics and such. So another jurisdiction, das would allow the same model then let’s encrypt, would add to the ecosystem more, then another one in der US.
