We note Let's Encrypt issues free HTTPS certificates that expire after 90 days, and provides tools to automate renewals, so those will be just fine – and they are used all over the web now. El Reg's cert is a year-long affair so we'll be OK.
We need a plugin for AwareIM that will harness Lets Encrypt 90 day free certificates offering. This service can only be viable if it's automated by a plugin using the Lets Encrypt tools to silently update the certificates in the background. Once done it will be a godsend