For the past couple of days I’ve been working with Let's Encrypt, a non-profit group that gives out free SSL certificates for use on websites. We’ve used a self-signed certificate March of 2003 and I generate a new certificate every year for the site. It requires the browser confirm that the site’s certificate is not trusted (i.e. not verified by a 3rd party). The Let's Encrypt people have setup a system that verifies you actually have control over the website you are trying to make a certificate for, and provides a root authority signed certificate. Now any mainstream web browser can verify that the DrQue.net is who we say we are and browsers can peruse the site without any warnings.