Techly NewsGet the app

Get the latest tech news

Six day and IP address certificate options in 2025


This year we will continue to pursue our commitment to improving the security of the Web PKI by introducing the option to get certificates with six-day lifetimes (“short-lived certificates”). We will also add support for IP addresses in addition to domain names. Our longer-lived certificates, which currently have a lifetime of 90 days, will continue to be available alongside our six-day offering. Subscribers will be able to opt in to short-lived certificates via a certificate profile mechanism being added to our ACME API.

The primary advantage of short-lived certificates is that they greatly reduce the potential compromise window because they expire relatively quickly. This will enable secure TLS connections, with publicly trusted certificates, to services made available via IP address, without the need for a domain name. Around April we will enable short-lived certificates for a small set of early adopting subscribers.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of Day

Day

Photo of Encrypt

Encrypt

Photo of IP address certs

IP address certs

Related news:

News photo

Mystery-o-Matic: Solve a murder mystery every day

News photo

Fortinet warns of auth bypass zero-day exploited to hijack firewalls

News photo

Miscreants 'mass exploited' Fortinet firewalls, 'highly probable' zero-day used

« Get a like new Samsung Galaxy S24 Ultra and save hundreds at Woot
Diffusion training from scratch on a micro-budget »