SSL: Validity period reduced to 1 year!

For the last two years, SSL certificates have been the centre of attention. Chrome, the most popular browser at the moment, has contributed to this. Its 68th version made clear that encryption is a one way.

Now that this has been achieved and most websites offer encryption, the community is looking for ways to maximise user security. That’s how the SSL validity period issue came up and the market started moving towards abolishing the ones valid for 2-3 years.

Before that…

Thoughts on limiting the SSL lifespan are not new. Two years ago, Google’s Software Staff Engineer, Ryan Sleevi, suggested it and had started a poll but a majority of the CA / Browser Forum voted against it.

In early 2020, Apple took a step forward and announced that Safari, which is currently the second most popular browser, from September 1, 2020 will not trust SSL certificates with a validity period of 2 or 3 years.

Top.Host’s supplier announced that from September 1, 2020 all new SSL certificates’ validity period is reduced to 1 year in order to be compatible with all browsers.

Why does the lifespan change?

Reducing the SSL’s validity period brings the following benefits:

• Greater security. In theory, when a key is renewed more often there are less chances of it being broken by potential intruders.
• Immediate updates. When there are security updates made on certificates, they roll out into the market more quickly.

On the downside, there is extra work for webmasters. With two-year or three-year SSL certificates they had one less thing to think about. They will now have to follow the process of issuing an SSL certificate every year.

What do you have to do?

If you’ve got a 2 or 3 year certificate from Top.Host, there is no need to worry. It will be valid until its expiration date. However, when you will need to renew it, you won’t have the two-year option.

If you buy an SSL certificate from Top.Host today, you will have the option of buying one with a validity period of 1 year! All you need to do is not forget to renew it when needed. We will remind you on time via e-mail so that you can continue offering encryption and security to your website visitors.