BrikoX@lemmy.zipM to Technology@lemmy.zipEnglish · 1 month agoSSL/TLS certificates will last 47 days max by 2029www.theregister.comexternal-linkmessage-square14linkfedilinkarrow-up139arrow-down11file-textcross-posted to: tech
arrow-up138arrow-down1external-linkSSL/TLS certificates will last 47 days max by 2029www.theregister.comBrikoX@lemmy.zipM to Technology@lemmy.zipEnglish · 1 month agomessage-square14linkfedilinkfile-textcross-posted to: tech
minus-squareAdmiral Patrick@dubvee.orglinkfedilinkEnglisharrow-up15·1 month agoAre compromised private keys that big of a problem to cause all this headache? Geez.
minus-squareP03 Locke@lemmy.dbzer0.comlinkfedilinkEnglisharrow-up11·1 month agoThis will keep getting shorter until it turns into a calculus problem. You won’t even get a certificate, just a token from some SSL token warehouse. Why should I trust it? Because some random company says so!
minus-squareAdmiral Patrick@dubvee.orglinkfedilinkEnglisharrow-up1·1 month agoLol, wouldn’t put it past them. Like TLS session keys we have now, but every session key has to be requested from the SSL token warehouse.
minus-squarePossibly linux@lemmy.ziplinkfedilinkEnglisharrow-up9·edit-21 month agoThere are lots of companies and vendors that don’t automate cert renewal. They are all going to be forced into automation with this change. The concern is that a compromised device could leak a cert that is then used for attacks.
Are compromised private keys that big of a problem to cause all this headache?
Geez.
This will keep getting shorter until it turns into a calculus problem.
You won’t even get a certificate, just a token from some SSL token warehouse. Why should I trust it? Because some random company says so!
Lol, wouldn’t put it past them. Like TLS session keys we have now, but every session key has to be requested from the SSL token warehouse.
There are lots of companies and vendors that don’t automate cert renewal. They are all going to be forced into automation with this change.
The concern is that a compromised device could leak a cert that is then used for attacks.