90-day maximum TLS validity may not be official yet, but the proposal is being actively discussed...
When browsers enforce it—whether with CA/B Forum approval or without—the changeover will impact all public-facing TLS certificates. With this change, manual approaches to TLS certificate management will become even more unsustainable than they already are.
To help you prepare, Venafi partnered with Ryan Hurst, a former Microsoft and Google Security leader, to create this guide. Through firsthand insights gleaned from Ryan’s illustrious three-decade career, you’ll learn:
- Why the transition to 90-day TLS certificates is happening
- A timeline of decreasing TLS certificate lifespans—and when we can expect 90-day TLS validity to go into effect
- Specific reasons why browsers can enforce this change (even without CA/B Forum approval)
- 4 steps to prepare for the shorter TLS certificate standard