LET'S ENCRYPT RESTRICTS CERTS IN US SANCTIONED ZONES

The updated policy, detailed in version 1.7 of Let's Encrypt's Subscriber Agreement, bars the use of its certificates in any region subject to US sanctions. This includes territories under OFAC (Office of Foreign Assets Control) restrictions. Let's Encrypt, operated by the Internet Security Research Group, must comply with US law to maintain its operations. The restriction applies to both new certificate issuance and continued use of existing certificates in sanctioned areas. The move affects websites and services operating in designated sanctioned territories. Organizations in these regions will need to source certificates through alternative providers. The policy update generated significant discussion in the developer community, with 86 comments on Hacker News reflecting concerns about internet accessibility in restricted regions and the practical implications for affected services. Let's Encrypt previously faced similar compliance requirements and has adjusted policies accordingly. The organization continues to provide free SSL/TLS certificates globally outside sanctioned zones.