The CA/Browser Forum has officially voted to amend the TLS Baseline Requirements to set a schedule for shortening both the lifetime of TLS certificates.

The maximum certificate lifetime is going down:

- As of March 15, 2026, the maximum lifetime for a TLS certificate will be 200 days.
- As of March 15, 2027, the maximum lifetime for a TLS certificate will be 100 days.
- As of March 15, 2029, the maximum lifetime for a TLS certificate will be 47 days.

www.digicert.comTLS Certificate Lifetimes Will Officially Reduce to 47 DaysThe CA/Browser Forum has officially voted to amend the TLS Baseline Requirements to set a schedule for shortening both the lifetime of TLS certificates.

#TLS #SSL

**Quixoticgeek** @quixoticgeek@v.st · 5g

Quixoticgeek @quixoticgeek@v.st

Does anyone know how this new SSL cert expiry date thing is going to affect things like user authentication with SSL certs, i.e. for openvpn.

If we're running our own CA, can I get safari, chrome et al to accept longer cert expiry?

#Linux #SSL #OpenVPN

**Mozilla** @Mozilla@activitypub.awakari.com · 5g

Mozilla @Mozilla@activitypub.awakari.com

CA/B Approved 47-Day SSL/TLS Validity by 2029: How to Prepare? The Shrinking Lifespan of TLS Cert...

https://certera.com/blog/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare/

#SSL #Certificate #47 #days #SSL #47-day #Certificate #Lifecycle #Shorter #Lifespan #of

Event Attributes

#47day

**Fern** @fern@mindly.social · 6g

Fern @fern@mindly.social

I've developed a new unofficial metric for #burnout: what percentage of the images you've downloaded or created recently would qualify as shitposting.

Here are some of mine from the last month:

A visibly shook Matthew McConaughey smoking a ciggie, his face photoshopped over what looks like White Jesus' head

A slightly smiling face with one eye twitching

Donald Trump's duckface photoshopped onto the "No Ragrets" tattoo guy's body

A farmer standing in the field of security certs that his family has tended to for generations

#ShookJesus #TwitchySmiley #DonaldTrump

**Pyrzout** @jos1264@social.skynetcloud.site · 6g

Pyrzout @jos1264@social.skynetcloud.site

La vida útil de los certificados SSL/TLS se reducirá a 47 días para 2029 https://blog.elhacker.net/2025/04/vida-util--certificados-https-tls-47-dias-2029.html #certificado #ssl #tls

Blog elhacker.NETLa vida útil de los certificados SSL/TLS se reducirá a 47 días para 2029Blog sobre informática, tecnología y seguridad con manuales, tutoriales y documentación sobre herramientas y programas

Discussione continua

**Cassander** @drsbaitso@infosec.exchange · 15 apr *

15 apr *

Cassander @drsbaitso@infosec.exchange

Specific schedule:

March 15, 2026 - Cert validity (and Domain Control Validation) limited to 200 days.
March 15, 2027 - Cert validity (and Domain Control Validation) limited to 100 days.
March 15, 2029 - Cert validity limited to 47 days and Domain Control Validation limited to 10 days.

There's gonna be a lot of complaints about this in change control meetings over the next ~~year~~200 days.

#Certificate #Certificate_Management #CABForum

**Cassander** @drsbaitso@infosec.exchange · 15 apr *

15 apr *

Cassander @drsbaitso@infosec.exchange

Buckle up, kids. Automate your certificate rotations or die trying. WebPKI certificate validity period will be 47 days by 2029. https://www.bleepingcomputer.com/news/security/ssl-tls-certificate-lifespans-reduced-to-47-days-by-2029/

#Certificate #Certificate_Management #CABForum

**The New Oil** @thenewoil@mastodon.thenewoil.org · 15 apr

15 apr

The New Oil @thenewoil@mastodon.thenewoil.org

#SSL/#TLS certificate lifespans reduced to 47 days by 2029

https://www.bleepingcomputer.com/news/security/ssl-tls-certificate-lifespans-reduced-to-47-days-by-2029/

#cybersecurity

**Pyrzout** @jos1264@social.skynetcloud.site · 15 apr

15 apr

Pyrzout @jos1264@social.skynetcloud.site

Why shorter SSL/TLS certificate lifespans matter https://www.helpnetsecurity.com/2025/04/15/certificate-shorter-lifespans/ #Expertanalysis #cybersecurity #Expertcorner #certificates #Don'tmiss #Hotstuff #opinion #Sectigo #SSL/TLS #News

Help Net Security · 15 aprWhy shorter SSL/TLS certificate lifespans matter - Help Net SecurityShorter certificate lifespans reduce attack windows, boost agility, and push organizations to reassess their cybersecurity operations.

**Mozilla** @Mozilla@activitypub.awakari.com · 14 apr

14 apr

Mozilla @Mozilla@activitypub.awakari.com

SSL/TLS Certificates Validity To Be Reduced From 398 Days to 47 Days CA/Browser Forum has approve...

https://cybersecuritynews.com/ssl-tls-certificates-validity-to-be-reduced/

#Cyber #Security #Cyber #Security #News #SSL #cyber #security #cyber #security #news

Event Attributes

**LavX News** @lavxnews@mastodon.cloud · 14 apr

14 apr

LavX News @lavxnews@mastodon.cloud

SSL/TLS Certificate Lifespans Slashed to 47 Days: A New Era of Security Management

The CA/Browser Forum's decision to reduce SSL/TLS certificate lifespans to just 47 days by 2029 marks a pivotal shift in cybersecurity practices. This change aims to enhance security by minimizing ris...

https://news.lavx.hu/article/ssl-tls-certificate-lifespans-slashed-to-47-days-a-new-era-of-security-management

#news #tech #SSL

**Daniel** @Amiga_News@fosstodon.org · 14 apr

14 apr

Daniel @Amiga_News@fosstodon.org

Version 5.20 of the open source encryption protocol AmiSSL has been released for AmigaOS 3 and 4, which is now based on the latest version 3.5.0 (8.4.2025) of OpenSSL.

https://www.amiga-news.de/en/news/AN-2025-04-00056-EN.html

www.amiga-news.deamiga-news.de - Encryption protocol: AmiSSL 5.20 (AmigaOS 3/4)

#Amiga #ssl #openssl

**Gea-Suan Lin** @gslin@abpe.org · 13 apr

13 apr

Gea-Suan Lin @gslin@abpe.org

縮短 TLS certificate 的最長效期的投票 SC-081

在 Lobsters 上看到縮短 TLS certificate 最長效期的投票消息：「Mandatory short duration TLS certificates are probably coming soon」。文章裡面有提到 mailing list 上的投票：「Voting Period Begins: SC-081v3: Introduce Schedule of Reducing Validity and Data Reuse Periods」，投票期間已經結束了，所以剛好可以算一下票數。 Certificate Consumers 端： YES (4)：Google、Apple、Mozilla、Microsoft Certificate Issuer 端： YES…

https://blog.gslin.org/archives/2025/04/14/12347/%e7%b8%ae%e7%9f%ad-tls-certificate-%e7%9a%84%e6%9c%80%e9%95%b7%e6%95%88%e6%9c%9f%e7%9a%84%e6%8a%95%e7%a5%a8-sc-081/

Gea-Suan Lin's BLOG · 13 apr縮短 TLS certificate 的最長效期的投票 SC-081在 Lobsters 上看到縮短 TLS certificate 最長效期的投票消息：「Mandatory short duration TLS certificates are probably coming soon」。文章裡面有提到 mailing list 上的投票：「Voting Period Begins: SC-081v3: Introduce Schedule of Reducing Validity and Data Reuse Periods」，投票期間已經結束了，所以剛好可以算一下票數。 Certificate Consumers 端： YES (4)：Google、Apple、Mozilla、Microsoft Cer...

#authority #ballot #ca