October 15, 2020|
![hourglass Overcoming the Challenge of Shorter PKI X.509 Certificate Lifespans](https://b2249149.smushcdn.com/2249149/wp-content/uploads/2020/10/hourglass.jpg?lossy=1&strip=1&webp=1)
In August 2019, Google introduced CA/Browser (CA/B) Forum Ballot SC22 to reduce Transport Layer Security (TLS) certificate validity periods to one year. After much discussion and thousands of comments — mostly in opposition — the ballot failed and certificate maximum lifetimes remained at two years. Or so we thought. Even though shorter certificates enhance ecosystem security – and the lifespans are steadily getting shorter — the overall consensus at the time was that shorter certificates would put too much burden on overworked IT teams.
Read the full post on Dark Reading