New Impetus for Automation in Certificate Management
Shorter Certificate Lifetimes: New Impetus for Automation in Certificate Management
The certification authority Let’s Encrypt has announced that, in addition to the well-known 90-day certificates, certificates with a validity of just six days as well as IP address certificates are now generally available. The aim is to further improve security on the internet and to promote the use of automated processes throughout the certificate lifecycle. (Source: heise.de)
This development is part of a fundamental shift in the use of TLS certificates. From March of this year, the maximum certificate lifetime will initially be reduced to 200 days. By March 2029, a further gradual reduction to just 47 days is planned.
Impact on Organizations
Shorter lifetimes help reduce security risks and enable cryptographic changes to be implemented more quickly, supporting cryptographic agility in modern IT environments. While this makes sense from a security perspective, it also creates new operational challenges for organizations. Certificates must be renewed more frequently, monitored more closely, and integrated into existing systems. This can become particularly challenging in distributed, hybrid, or highly dynamic IT environments.
The clear trend toward ever shorter certificate lifetimes shows that organizations should now take a structured approach to automation in certificate management, in order to avoid being caught off guard by upcoming changes.
Why Automation in Certificate Management Is Gaining Importance
Modern certificate management solutions help organizations centrally manage certificates throughout their entire lifecycle—from issuance and renewal to continuous monitoring. Solutions such as essendi xc support organizations in standardizing processes, increasing transparency, and ensuring stable and secure operations even with shorter certificate lifetimes.
Would you like to learn more about automation in certificate management? Schedule a Live-Demo.