UC Berkeley is a member of the [InCommon](http://www.incommonfederation.org/cert/) federation. One benefit of our membership is unlimited free SSL certificates for berkeley.edu hosts.

IRIS staff have been delegated the ability to create InCommon-Comodo SSL certificates for the subdomains used on the IRIS networks.

If you are the registered system administrator of a device on the IRIS network, please use [this webform](https://iris.eecs.berkeley.edu/forms/cert-request.html) to submit CSRs to IRIS staff instead of contacting calnet-pki@lists.b.e.

---

UPDATE

[2011-01-03 13:20:59 | Robert McNicholas]

Beginning Dec 20, 2010, Comodo began requiring at least 2048- bit keys for all SSL certificates. Please be sure to use a 2048-bit or larger key when requesting SSL certificates through IRIS.