In April 2025, the CA/Browser Forum, with support from Apple, Google, and Mozilla, approved a proposal to shorten the maximum lifespan of publicly trusted TLS certificates. Starting in March 2026, certificate validity will reduce in stages, eventually reaching just 47 days by 2029. The change is made to improve internet security, but it also has its own set of challenges for website owners and IT teams. In this blog, we break down what TLS certificates are, why this shift is happening, what changes are coming, and how teams can prepare for this major update in internet security. A Complete Breakdown of TLS Updates Effective March 2026 The CA/Browser Forum passed Ballot SC-081v3 on April 11, 2025, to make some significant changes to how long TLS certificates are valid, which was sponsored by Apple and endorsed by major players in the industry like Google, Mozilla, and Microsoft. The reason why it has been decided is to enhance online security, particularly eliminate the possibility of threats associated with stolen or expired certificates. Certificates that have expired or have been misused in any way could be misused against an organization. Phase 1 starts on March 15, 2026, and Phase 2 goes into effect […]
