Beginning on Monday, January 16, 2023, all Let’s Encrypt TLS certificates issued on the WordPress VIP platform, including new certificates and automatic renewals, will be ECC certificates.
Elliptic Curve Cryptography (ECC) provides an equivalent level of encryption strength as RSA (Rivest-Shamir-Adleman) algorithm with a shorter key length. As a result, the speed and security offered by an ECC certificate are higher than an RSA certificate for Public Key Infrastructure (PKI).
We don’t anticipate any disruption to certificate requests or renewals as a result of this change. All web clients created within the last ~12 years already support ECC certificates, and minimum versions for TLSv1.2+ (required on the VIP Platform) are higher than those required for ECC certificates.
If you’d prefer to continue using RSA certificates after January 16, you’ll need to use a custom certificate, which can be uploaded and installed on the VIP Dashboard.
Please feel free to open a support ticket if you have any questions.