CA/B Forum did not support reducing the maximum validity period of SSL certificates to one year.

The new Ballot SC22 proposal to reduce the maximum validity of SSL certificates to one year (more precisely, to 397 days) was rejected by a majority vote. Active discussions on this issue have been held at the CA/B Forum over the past few months.

Currently, the maximum validity period of an SSL certificate is 2 years (more precisely, 825 days).

As the results of Ballot SC22 showed, all the browser vendors surveyed voted in favour of shortening the validity of the certificates. They were also supported by Let's Encrypt, Sectigo, Amazon and several other companies.

Among the opponents of this ballot were Certum, Entrust Datacard, GlobalSign, GoDaddy and 15 more companies.

A total of 37% of the CA/B Forum participants voted to reduce the validity of certificates to one year.

The advantages of reducing the validity of SSL certificates to one year were the reduction of potential risks in the case of a compromised private key and a faster reaction to changes in the industry.

There are also drawbacks to this approach; for example, it will require additional costs for companies to update their established infrastructure.

Subscribe to our newsletter to stay up to date with the latest SSL news!