Safari soon will turn down HTTPS certificates longer than 13 months
Apple announced at CA/Browser Forum that Safari will not accept any HTTPS certificates that expire in any longer than 13 months. It’ll start later, this year.
SSL is an essential part of our secure Internet and it protects all sensitive information as it goes across the world’s computer networks.
Any certificate that was valid for more than 398 days when it was issued will automatically be denied by the browser. How it will look? When you open a website with that kind of certificate, there will be a privacy warning.
Still, all older certificates issued before September 1, will not be affected.
But sure, this news will make a headache for webmasters and website owners. Now they need to be absolutely sure that their websites are okay with this rule of the SSL security certificate policy. In the other case, it will be a disaster for their websites crashing on all the iOS and macOS devices safari browser.
This measure is made for improving the security of websites by the use of certificates with the latest cryptographic standards and reducing the number of old, abandoned certificates that could potentially be stolen by attackers and reused for malicious activities.
The new Safari policy will extend to all iOS and macOS devices, and affect billions of gadgets and computers.
Read also: How To Manage Ads On Your Website
Some websites like GitHub.com and Microsoft are currently using a two-year certificate, which would conflict with Apple’s new rules, although they were released before the deadline. However, those certificates should be renewed by June, so they still have the opportunity to solve the problem and change it to a short-term one.
Michal Špaček, a security developer, mentioned in his blog:
“Capping certificate lifetimes is generally a good idea for several reasons: the main one probably being that some browsers omit the online certificate status checks”.
Some third-party certificate companies such as Let’s Encrypt provide multi-year certificates with auto-renewal tools.
Nonetheless, many developers noted that Apple’s move increases the frequency of certificate replacement and adds additional problems for website owners and companies.
Read also SEO for Adult Sites — How to Drive Organic Traffic
Read also What Is Header Bidding and How Does It Work?
And compare all ad networks CPM rates by countries here: Top Ad Networks