Engrav.net Root Certificate Installation

Why would you want to do this? A fair question.

The short answer is that when you connect to Engrav.net you may get a slightly cryptic and scary message that looks something like this ...

You can just click on Yes and proceed, but if you find this disrupting and annoying, you can install our root certificate and never see this message again.

The long answer is as follows.

Some parts of Engrav.net can only be accessed through a secure connection. You'll know when you have a secure connection because the URL in your browser's address bar will begin with https:// rather than just http://. In most browsers you'll also see a little padlock icon appear, something like this...

When your browser opens a secure connection with a site it first obtains a certificate from the site. The certificate is a little packet of useful pieces of information. Most importantly it contains instructions for how your computer should encode and decode information exchanged with the site. It also contains what amounts to a promise that the site isn't an imposter of some sort.

Trusting promises made by strange computers on the internet is rarely a good idea. So the certificate also contains information your computer can use to verify the promise, essentially the names of other sites willing to vouch for the authenticity of the one you're connecting to. This in turn puts you in the position of having to trust a promise made by those sites. So the whole process may repeat a couple of times until finally you reach a certification authority you have previously decided to trust.

Installing the Engrav.net Root Certificate amounts to deciding to trust this site when it vouches for a certificate.

If anyone knows of a cost-effective way for me to get Engrav.net certified by an existing authority so that folk won't have to bother with all of this, I'd love to hear about it.