“Switching to shorter certification life cycles greatly reduces these risks and is a necessary step.” Venafi CEO Kevin Bocek said. However, he admits that “the introduction of 90-day certificates means that companies must renew their certificates five times more than before.” This is a fivefold increase in effort.”
Challenges caused by changing TLS certificates
The survey shows that the short life span of TLS certificates gives companies the following problems:
- Delayed delivery: Only 8% of security leaders automate all aspects of TLS certificate management across their company. Almost a third (29%) still use their software and spreadsheets to solve the problem. As a result, it takes an average of two to three working days to provide the certificate.
- TLS conversion: The volume of TLS certificates used by companies has grown steadily in recent years due to increased adoption of the technology. Almost all security leaders (95%) say digital transformation initiatives will increase their organization’s use of SSL/TLS by an average of 36% by 2023. As a result, the average company now holds 3,730 TLS certificates – a number expected to grow 39% to over 5,000 by 2026.
Certificate lifecycle management can help companies catch issues with TLS certificate changes. Well-known solution providers include Venafi, digitcert, TrackSSL, appviewx, Keystash, Keyfactor.
Source link