#WebPKI and You

https://blog.brycekerley

#HTTPS #TLS #certificates

X9.146 QTLS Case Study with curl and nginx Learn how to deploy quantum-resistant TLS today using X9.146 hybrid certificates in real-world curl and nginx workflows. Watch now for a practical deep dive into post-quantum TLS implementation. With CNSA 2.0 and evolving NIST guidance, engineers are being asked to experiment, validate and prepare

🛠️ Practical guide to quantum-resistant TLS is here.
Hybrid ECC + post-quantum certs. X9.146 Chimera certificates. Real demos with #curl & nginx.
See how migrated & unmigrated systems coexist during the transition. 🔀

🎥 Watch now → youtu.be/20dpnrl7bV0...
#PQC #TLS #postquantum

PlaneAlert ICAO: 395D67
Owner: AIRBUSTRANSPORTINTERNATIONAL
Flt: BGA214H FGXLH A337 TLS-CEG
Time: 2026-03-13 12:52:37 GMT
Min Alt: 34000 ft
Squawk: 2330
adsb planefence planealert by kx1t - sdr-e adsbexchange flightaware

PlaneAlert ICAO: 395D69
Owner: AIRBUSTRANSPORTINTERNATIONAL
Flt: BGA114J FGXLJ A337 TLS-CEG
Time: 2026-03-13 11:12:10 GMT
Min Alt: 34000 ft
Squawk: 2314
adsb planefence planealert by kx1t - sdr-e adsbexchange flightaware

Intel’s Heracles Chip Speeds Up Encrypted Computing Intel's Heracles chip speeds up encrypted data processing by up to 5000 times.

Intel increasing Fully Homorphic Encryption speeds (FHE) to overcome encrypt/decrypt hardware needs Intel Demos Chip to Compute with Encrypted Data Fully homomorphic encryption chip speeds operations 5,000-fold
spectrum.ieee.org/fhe-intel

Google Primes Chrome for a Post-Quantum World Google is testing a new certificate architecture in Chrome designed to protect HTTPS and TLS connections from future quantum computer attacks without slowing web performance or straining bandwidth.

Google prepping for post-quantum network encrypt/decrypt overhead
www.technewsworld.com/story/google...

PlaneAlert ICAO: 395D67
Owner: AIRBUSTRANSPORTINTERNATIONAL
Flt: BGA313H FGXLH A337 TLS-XFW
Time: 2026-03-12 15:15:22 CET
Min Alt: 10623 m
Squawk: 3373
adsb planefence planealert by kx1t - sdr-e adsbexchange flightaware

PlaneAlert ICAO: 395D69
Owner: AIRBUSTRANSPORTINTERNATIONAL
Flt: BGA213J FGXLJ A337 TLS-XFW
Time: 2026-03-12 12:03:21 CET
Min Alt: 9747 m
Squawk: 3373
adsb planefence planealert by kx1t - sdr-e adsbexchange flightaware

ACME ARI support and 6-day certificates CertKit now polls Let's Encrypt multiple times a day to check when each certificate should renew. That means mass revocations happen automatically, without you doing anything. We also added support fo...

CertKit now supports ACME ARI and 6-day certificates.

ARI means the CA tells us when to renew. We check it multiple times a day. The next mass revocation event will be boring for you.

www.certkit.io/blog/acme-ar... #PKI #TLS

PlaneAlert ICAO: 395D69
Owner: AIRBUSTRANSPORTINTERNATIONAL
Flt: BGA116J FGXLJ A337 TLS-LEGT
Time: 2026-03-11 11:23:50 CET
Min Alt: 31000 ft
Squawk: 2312
adsb planefence planealert by kx1t - sdr-e adsbexchange flightaware

PlaneAlert ICAO: 395D67
Owner: AIRBUSTRANSPORTINTERNATIONAL
Flt: BGA114H FGXLH A337 TLS-CEG
Time: 2026-03-11 08:40:51 GMT
Min Alt: 34000 ft
Squawk: 2301
adsb planefence planealert by kx1t - sdr-e adsbexchange flightaware

To me #TLS is legacy and only needed for security theatre on the public internet. Who controls certificate authorities or can force use of their own certs can unmask traffic. This is even before we talk about quantum I am not interested in appearance of security.
.

If you ask users to think about security, to update garbage certs from some untrustworthy external entity, to make sure each application is constantly updated and #TLS stacks are correct, you have lost the picture. I want privacy and autonomy, not hard to secure systems and SV surveillance.

Automating SSL/TLS certificate renewal in Azure The maximum validity of SSL/TLS certificates is being significantly reduced over the next few years, so there’s never been a better time to automate your certificate management. In Azure TLS certifica...

My #AzureSpringClean contribution is now live. This year I am raising awareness of the impending reduction in #TLS #certificate lifetimes and how you can automate certificate management within #Azure. By 2029 max cert lengths will be 47 days so the time to automate is now.

wragg.io/automating-s...

PlaneAlert ICAO: 395D69
Owner: AIRBUSTRANSPORTINTERNATIONAL
Flt: BGA114J FGXLJ A337 TLS-CEG
Time: 2026-03-10 09:03:45 GMT
Min Alt: 34000 ft
Squawk: 2315
adsb planefence planealert by kx1t - sdr-e adsbexchange flightaware

PlaneAlert ICAO: 395D68
Owner: AIRBUSTRANSPORTINTERNATIONAL
Flt: BGA113Y FGXLI A337 TLS-XFW
Time: 2026-03-10 09:35:54 CET
Min Alt: 34000 ft
Squawk: 3375
aircraft over heerlen - adsb planefence by kx1t - sdr-e airplanes flightaware

PlaneAlert ICAO: 395D68
Owner: AIRBUSTRANSPORTINTERNATIONAL
Flt: BGA113Y FGXLI A337 TLS-XFW
Time: 2026-03-10 09:31:19 CET
Min Alt: 10357 m
Squawk: 3375
adsb planefence planealert by kx1t - sdr-e adsbexchange flightaware

Welcome! You are invited to join a webinar: Integrating Crypta Labs' QRNG into wolfSSL. After registering, you will receive a confirmation email about joining the webinar. Integrate true quantum entropy into your TLS stack to strengthen cryptographic security and trust. Join us for a focused joint webinar exploring how Crypta Labs’ Quantum Random Number Generator (QRNG) technology integrates with the wolfSSL cryptographic library using its RNG callback facility. The session walks through how external quantum entropy can be connected to wolfSSL and what that means in practice for TLS and cryptographic operations. Crypta Labs builds quantum-based random number generators that deliver true, non-deterministic entropy for security-critical systems. Their QRNG products are designed for environments where entropy quality and predictability directly impact cryptographic strength. wolfSSL is a lightweight, high-performance TLS and cryptography library widely deployed across embedded, automotive, aerospace, defense, and other security-critical systems, offering flexible mechanisms such as RNG callbacks for integrating external entropy sources. This webinar will cover: - Where QRNGs add value compared to conventional entropy sources - How wolfSSL’s RNG callback mechanism fits into the TLS stack - Integrating Crypta Labs’ QRNG products using practical code examples - Benchmarking demo output for QRNG-backed entropy Date: March 11 | 9 AM PT Duration: 60 minutes Register now to see how quantum-generated randomness can be integrated into real-world TLS deployments. As always, our webinar will include Q&A throughout. If you have questions about any of the above, please contact us at facts@wolfssl.com or call us at +1 425 245 8247.

Register now: us02web.zoom.us/webi...

@CryptaLabs #TLS #PQC #PostQuantum

Planefence ICAO: 3C65C9
Flt: DLH89T LUFTHANSA MUC - TLS
First seen: 2026-03-09 19:45:51 CET
Min Alt: 10041 m AGL
Min Dist: 0.17 km
adsb planefence by kx1t - adsbexchange - planefence

PlaneAlert ICAO: 395D67
Owner: AIRBUSTRANSPORTINTERNATIONAL
Flt: BGA151H FGXLH A337 BRE-TLS
Time: 2026-03-09 16:39:05 CET
Min Alt: 32000 ft
Squawk: 1000
aircraft over heerlen - adsb planefence by kx1t - sdr-e airplanes flightaware

How to verify certificate renewal actually worked Certbot ran. The logs show success. Exit code 0. LinkedIn found out the hard way that renewed and deployed are not the same thing. The verify step is the part of certificate automation nobody builds u...

Your certificate renewed. The old one is still serving.

Certbot solves "I forgot to renew." It doesn't tell you whether the new cert actually made it to your server. LinkedIn learned this the hard way in 2019.

www.certkit.io/blog/how-to-...

#PKI #TLS

TLS Version Checker | Test Website TLS Protocols Check your website’s supported TLS versions in seconds. Use our free TLS Version Checker to detect outdated protocols, verify TLS 1.2/1.3, and improve your site’s security.

Still allowing TLS 1.0 or 1.1 on your site? This TLS version checker shows exactly which TLS and SSL versions your server supports, so you can disable weak protocols and enforce TLS 1.2/1.3: beingoptimist.in/tools/securi...
#tls #ssl #cybersecurity #serveradmin #bestpractices

PlaneAlert ICAO: 395D67
Owner: AIRBUSTRANSPORTINTERNATIONAL
Flt: BGA114H FGXLH A337 TLS-CEG
Time: 2026-03-09 09:43:13 GMT
Min Alt: 34000 ft
Squawk: 2334
adsb planefence planealert by kx1t - sdr-e adsbexchange flightaware

Planefence ICAO: 3C64AC
Flt: DLH89T LUFTHANSA MUC - TLS
First seen: 2026-03-08 19:43:59 CET
Min Alt: 9546 m AGL
Min Dist: 0.27 km
adsb planefence by kx1t - adsbexchange - planefence

Planefence ICAO: 3C65CB
Flt: DLH53U LUFTHANSA TLS - FRA
First seen: 2026-03-08 16:51:02 CET
Min Alt: 9295 m AGL
Min Dist: 2.0 km
adsb planefence by kx1t - adsbexchange - planefence

My Aldington piece in the flesh in the #TLS

🚨 Institutions #optionsvolume surge detected! Weekly Top Momentum Activity from 🔥 INSIDERFINANCE.

🚨 Institutions #optionsvolume surge detected!

Weekly Top Momentum Activity from 🔥 INSIDERFINANCE.COM 🔥
1. #SMG 200.0x
2. #ABEO 182.0x
3. #TECK 86.8x
4. #TLS 41.4x
5. #BW 11.0x

#OptionFlow #OptionsTrading #Trading

Planefence ICAO: 3C66AC
Flt: DLH37P LUFTHANSA TLS - MUC
First seen: 2026-03-08 09:51:51 CET
Min Alt: 9219 m AGL
Min Dist: 1.83 km
adsb planefence by kx1t - adsbexchange - planefence

ECH se convierte en estándar oficial: cómo mejora la seguridad de las conexiones HTTPS

🤖 IA: Es clickbait ⚠️
👥 Usuarios: Es clickbait ⚠️

#ech #cifrado #tls

Ver resumen IA completo:

Two weeks after infection, lung #TLS could be divided into inner and outer zones based on B cell proportional density. The outer zone was enriched for non-GC Tfh signatures and HIF-1α–associated pathways, such as #Hypoxia, also observed by Hypoxyprobe staining (2/10).