• State TI Thinks Resolved
  • Locked Locked
  • Replies 1 reply
  • Answers 1 answer
  • Subscribers 40 subscribers
  • Views 289 views
  • Users 0 members are here
Support feedback
Options
Options
Similar topics

This thread has been locked.

If you have a related question, please click the "Ask a related question" button in the top right corner. The newly created question will be automatically linked to this question.

CC3200: CC3200 "DST ROOT CA X3" certificate expiry issue

Alex V
Prodigy 10 points
Part Number: CC3200

Hi,

I am using CC3200 as a client connected to my server. The server's root certificate is "DST ROOT CA X3"(Let's encrypt) which will expire on 30th Sept 2021. Will it affect my "HTTPS" connection?

Recently, "Let's encrypt" cross signed their expiring "DST Root CA X3" with "ISRG Root X1" which will expire only in 2024. Does Let's encrypt's this work around will work for me? If not, how will i add "ISRG Root X1" in CC3200? "ISRG Root X1" is not mentioned in SimpleLink CC32xx Root Certificate Catalog Revision - 20200715

  • 0
    TI__Mastermind 28285 points

    Hi Alex,

    Are you using CC3220x or CC323x devices? I will assume you are since your mentioning the root catalog, and our CC3200 does not have this security feature. my suggestion is to get an updated certificate after this one expires. If you want the ability to validate the chain with our certification catalog, the root ca will need to be in the catalog - that being said, it is not required to validate against our catalog for TLS connections. You should be able to use whichever cert chain you'd like as long as you include the root CA that is self-signed.