Post

SSL/TLS Certificate Validity Reduced to 47 Days by 2029

The CA/Browser Forum has voted to reduce the maximum lifespan of new SSL/TLS certificates to 47 days by March 15, 2029, impacting IT administrators and enhancing online security.

Posted
By Tom Grant
1 min read
SSL/TLS Certificate Validity Reduced to 47 Days by 2029

TL;DR

  • The CA/Browser Forum has voted to limit the validity of new SSL/TLS certificates to 47 days by 2029.
  • This change aims to enhance online security but will pose challenges for IT administrators.

Main Content

IT Administrators Face New Challenges

The CA/Browser Forum, a consortium of web browser developers, security certificate issuers, and related stakeholders, has approved a measure to reduce the maximum lifespan of new SSL/TLS certificates to just 47 days by March 15, 2029. This decision marks a significant shift in cybersecurity practices, aiming to bolster online security by ensuring more frequent certificate renewals. However, it also presents new challenges for IT administrators who will need to manage these certificates more frequently1.

Enhancing Online Security

The reduction in certificate validity is part of a broader effort to enhance online security. Shorter certificate lifespans can help mitigate risks associated with compromised certificates, as any breach would have a limited window of opportunity. This move aligns with ongoing initiatives to strengthen web security protocols and safeguard user data2.

Implications for IT Management

For IT administrators, this change means more frequent certificate renewals and potentially increased workload. Automating the renewal process and employing certificate management tools may become essential to handle the more frequent updates efficiently. Organizations will need to adapt their IT strategies to accommodate these changes and ensure continuous security compliance1.

Conclusion

The CA/Browser Forum’s decision to reduce the validity of SSL/TLS certificates to 47 days by 2029 underscores the importance of proactive security measures in today’s digital landscape. While this change poses operational challenges, it represents a significant step forward in enhancing online security and protecting users from potential threats2.

For further insights, check:

References

  1. The Register (2025). “SSL/TLS certificates to live no longer than 47 days by 2029”. The Register. Retrieved 2025-04-14. ↩︎ ↩︎2

  2. The Register (2025). “SSL/TLS certificates to live no longer than 47 days by 2029”. The Register. Retrieved 2025-04-14. ↩︎ ↩︎2

Cybersecurity & Data Protection
cybersecurity threat intelligence ssl/tls certificates
This post is licensed under CC BY 4.0 by the author.