Security News > 2024 > August > Shorter TLS certificate lifespans expected to complicate management efforts

76% of security leaders recognize the pressing need to move to shorter certificate lifespans to improve security, according to Venafi.

81% of security leaders believe Google's proposed plans to shorten TLS certificate lifespans from 398 days to 90 days will amplify existing challenges they have around managing certificates.

"Shifting to shorter certificate lifecycles significantly reduces these risks and is a necessary move. However, this can also bring more chaos for security teams - and it's a double whammy with Entrust being distrusted in Chrome. There aren't just canaries in the coal mine; there are groundhogs in every cloud, virtual machine and Kubernetes cluster. It's not just one software update vendor; it's the entire Internet as we know it," Bocek continued.

Delayed deployment - Only 8% of security leaders fully automate all aspects of TLS certificate management across their entire enterprise, with almost a third still relying on their own software and spreadsheets to manage the problem.

TLS transformation - The volume of TLS certificates in use at organizations has been steadily rising, due to the growth in technology adoption in recent years.

95% of security leaders say digital transformation initiatives have increased their organization's use of SSL/TLS in the past year by an average of 36%. As a result, the average enterprise now manages 3,730 TLS certificates - a number that is expected to increase by 39% by 2026, taking the figure up to over 5,000.

News URL

https://www.helpnetsecurity.com/2024/08/09/certificate-lifespans/