Position on 1-Year Certificates

​Liftoff on TLS 2 year’s certificates 

TLS certificate validity will be limited to one year by Apple's Safari browser from 1st September'20.

At the CA/Browser (CA/B) Forum in Slovakia, Bratislava, Apple announcement states starting from September 2020, recently issued TLS certificates are no longer valid for 398 days. It happened by following a long history of the CA/B Forum Community trying to reduce the lifetime of certificates and improve security while balancing the business requirements in transitioning to shorter validity certificates.

Buy or Renew SSL Certs

​Enquire Now

Retype the CAPTCHA code from the image
Change the CAPTCHA code

​Two years validity period on TLS Certificates is no longer than 365 days

In August 2019, Google introduced CA/B Forum Ballot SC22 to truncate the validity period of TLS Certificates to one year. Later, Certificate Authorities checked this proposal with their clients and examined the remarks from their clients, which shows disinclination towards the announcement as reduced validity certificates increase work to the IT team. Hence, the ballot failed in the Forum, and once again, the certification validity period remained for Two years.

​A few years ago, the validation period of TLS certificates was three years, and it was knocked down to two years. Now again, Apple has announced that Lifetime of TLS certificate has reduced to one year.

​Why does apple announce to uphold a shorter lifetime of Certificates?

​Representatives from Apple said it was to Protect Users. As we know before Forum proposals that longer certificate lifetimes end up being trying in replacing certificates in many security incidents, certificates with fewer lifetimes will enhance the security as they reduce the window of exposure if a TLS certificate is compromised. They additionally help remediate regular operations in organizations by ensuring annual updates to identity including company names, addresses, and active domains.

​Apple has now released its official Knowledge Base article on this subject which can be found here

​What does this mean for website certificate users?

​For your website to be trusted by Safari, you will no longer be able to issue publicly trusted TLS certificates with validities longer than 398 days after Aug. 30, 2020. Customers can avail of continuing two years of validating certificates if they renew or purchase the certificates before September 2020. Certificates that are not publicly trusted can still be recognized, up to a maximum validity of 825 days.

​As certificate validity periods continue to decrease, automation will be a must for organizations’ ability to manage shorter lifetimes. Acmetek is prepared with the industry’s most advanced and reliable tools to help our customers take the necessary steps toward greater use of automation.

​Secure your website with most trusted SSL Certs by Acmetek





Standard SSL

  • ​Free secure site seal
  • ​256-Bit Encryption
  • ​Within an hour Issuance
  • ​$1,000,000 Warranty
  • ​Unlimited server licensing
  • ​Free unlimited reissues for the lifetime of the certificate
  • ​Trusted by over 99.9% of browsers.
  • ​Secures both www.example.com​ and example.com

​EV SSL

  • Free secure site seal
  • 256-Bit Encryption
  • 1-3 Days Issuance
  • $1,000,000 Warranty
  • Unlimited server licensing
  • Display the trusted green bar
  • Free unlimited reissues for the lifetime of the certificate
  • Trusted by over 99.9% of browsers
  • Secures both www.example.com and example.com

​Multi-Domain SSL

  • Free secure site seal
  • 256-Bit Encryption
  • Within an hour Days Issuance
  • $1,000,000 Warranty
  • Unlimited server licensing
  • Secures multiple domains (up to 25)
  • Free unlimited reissues for the lifetime of the certificate
  • ​Trusted by over 99.9% of browsers

​EV Multi-domain SSL

  • Free secure site seal
  • 256-Bit Encryption
  • 1-3 Days Issuance
  • $1,000,000 Warranty
  • Unlimited server licensing
  • Secures multiple domains (up to 25)
  • Display the trusted green bar
  • Free unlimited reissues for the lifetime of the certificate
  • Trusted by over 99.9% of browsers

wildcard SSL

  • Free secure site seal
  • 256-Bit Encryption
  • Within an hour Days Issuance
  • $1,000,000 Warranty
  • Unlimited server licensing
  • Secures unlimited subdomains
  • Free unlimited reissues for the lifetime of the certificate
  • Trusted by over 99.9% of browsers
  • Secures both www.example.com and example.com

Why Choose Acmetek?

DigiCert's

platinum elite partner

Basic to premium

​product portfolio

10+ years of experience in

​PKI security industry

Dedicated

​customer support

​Acmetek partners with top-grade VARs, MSPs, SIs, webhosts, consultants and technology partners. Let's grow together.

Explore Our Benefits: Special Pricing | Instant Activation | Zero Setup Fee | Control Panel | Dedicated Account Manager

USA Office
6735 Salt Cedar Way,
Building 1, Suite 379,  Frisco,
TX75034.
707 Alexander Rd,
Princeton,
New Jersey 08540

© 2020 Acmetek All Right Reserved. Legal | Terms of Use | Privacy Policy

apac Office
Ace Krishna Prime,
304, Road No.1,
Lakshmi Nagar Colony,
Kothapet, Hyderabad-500035,
India.
INC 5000
Newsletter sign up
Signup to receive cybersecurity updates
Retype the CAPTCHA code from the image
Change the CAPTCHA code