TLS/SSL Certificate Lifespans to Reduce to 47 Days by 2029
Blog post from SSOJet
The CA/Browser Forum has announced a plan to reduce the maximum validity period for SSL/TLS certificates from 398 days to 47 days by March 15, 2029, in a phased approach proposed by Apple to enhance internet security and encourage automation in certificate management. The transition will occur in stages, with the certificate lifespan decreasing to 200 days in 2026, 100 days in 2027, and 47 days by 2029, aiming to mitigate risks like private key compromise and misissuance. This decision is supported by major industry players, including Google, Mozilla, and Sectigo, and will require organizations to automate their certificate management processes to handle more frequent renewals and reduce the risk of human error. Automated solutions like SSOJet will be crucial for companies managing large volumes of certificates, as manual renewal processes will become impractical, and organizations must prepare their systems to comply with the new standards by upgrading infrastructure and integrating automation tools.
No tracked trend matches for this post yet.