Decreasing Certificate Lifetimes to 45 Days
9 days ago
- #SSL Certificates
- #Web Security
- #Cybersecurity
- Let’s Encrypt will reduce certificate validity from 90 to 45 days by 2028.
- Authorization reuse period will decrease from 30 days to 7 hours by 2028.
- Changes align with CA/Browser Forum Baseline Requirements for improved security.
- ACME Profiles will allow users to control when changes take effect.
- ACME Renewal Information (ARI) is recommended for timely renewals.
- DNS-PERSIST-01, a new validation method, will simplify renewals starting in 2026.
- Users should ensure their automation is compatible with shorter validity periods.
- Monitoring systems should alert if certificates aren’t renewed as expected.
- Updates and reminders will be shared via the technical updates mailing list.