KrakenKey is in early access — available now for testing and feedback as we continue to develop and refine the platform.

Free to get started

Automated TLS certificate issuance at no cost. Paid plans are coming soon.

Available Now

Free

Everything you need to issue certificates

$0
  • ACME automation via Let's Encrypt
  • In-browser CSR generator (private key stays client-side)
  • Automated DNS-01 challenge via Cloudflare
  • REST API for programmatic certificate issuance
  • Web dashboard with certificate management
  • Domain verification
Get Started

No credit card required

Paid plans coming soon

We're building managed certificate lifecycle management with endpoint monitoring, expiry alerts, automated renewal and deployment, team access with RBAC, and more. Stay tuned.

Frequently asked questions

What does KrakenKey do?

KrakenKey automates TLS certificate issuance via Let's Encrypt using the ACME protocol. You submit a Certificate Signing Request through our dashboard or REST API, and KrakenKey handles DNS-01 domain validation automatically. Your certificate is issued in approximately 4 minutes.

Why are certificate lifetimes getting shorter?

The CA/Browser Forum approved Ballot SC-081v3, which phases TLS certificate maximum lifetimes from 398 days down to 47 days by March 2029. Shorter lifetimes reduce the window of exposure if a key is compromised. This makes automation essential.

How does client-side CSR generation work?

KrakenKey uses the WebCrypto API built into modern browsers to generate your Certificate Signing Request entirely client-side. Your private key is generated in your browser and never leaves your device. Only the CSR (which contains your public key) is sent to our servers.

What DNS providers do you support?

Currently, KrakenKey supports Cloudflare for automated DNS-01 challenge resolution. Support for additional DNS providers is on our roadmap.

Is there a REST API?

Yes. Every action available in the dashboard is also available via REST API. You can submit CSRs, check certificate status, and download issued certificates programmatically.

Will there be paid plans?

Yes. We're building paid plans that will include certificate monitoring, expiry alerts, automated renewal, team access with RBAC, and more. For now, all current features are free.

Ready to automate your certificates?

KrakenKey automates certificate management so you don't have to.

Get Started Free

Free to use. No credit card required.