CertiSur
Control Panel
Security October 15, 2025

In 2026 SSL/TLS digital certificates will be renewed every 200 days

The shortening of SSL/TLS certificate validity, effective from March 2026, presents a new challenge for security and IT teams. Efficient management of the certificate lifecycle will be key to preventing interruptions and vulnerabilities that compromise digital trust.

En 2026 los certificados digitales SSL/TLS se renovarán cada 200 días
Until not long ago, the impact of digital certificate expirations on organizations was minimal, but both the emergence of advanced technologies such as quantum computing and AI, coupled with new regulatory measures, accelerated the pace of automation. The news is that there is a date marked in red on the calendar and on the agenda of all cybersecurity leaders: March 15, 2026, the validity period of SSL/TLS digital certificates will change from one year to just 200 days, following the decision adopted by the CA/Browser Forum, the entity that regulates global digital trust standards. 'The reduction in certificate validity means that any error in management can result in expirations, service interruptions, or critical vulnerabilities. In environments where administration is still done manually—with templates, scattered reminders, or decentralized processes—the risk of failures is increasingly higher. This change, which will impact all organizations worldwide, presents an operational and strategic challenge for CISOs and IT teams, who will need to double the frequency at which they issue and renew certificates', notes Néstor Markowicz , CCO of CertiSur . In this context, Discovery & Automation solutions become an indispensable requirement. These tools enable:
  • Detect all certificates in use within the organization.
  • Identify risks and critical expiration dates.
  • Automate renewals and deployments.
  • Prevent interruptions and system outages.

The countdown has already begun

'We are supporting our clients to prepare not only for 2026, but also for what comes next: in 2027 the validity period will be reduced to 100 days and in 2029 it will drop to just 47 days. The future of PKI management is, inevitably, with automation,' he added Markowicz. With less than a year for the measure to take effect, the expected impact will be significant: it will double the workload of IT teams and put to the test the maturity of digital security processes in companies. The question is no longer whether this change will occur, but how organizations are preparing to face it. 'From CertiSur , we work to offer services that allow our clients to discover the certificates they have on their platform and automate their management,' the company stated.Furthermore, the COO emphasizes that 'organizations need to become more agile in crypto-agility'. This involves using tools that allow them to quickly manage their certificates because as new technologies advance, the algorithms used in encryption become more vulnerable. 'It is impossible to sustain manual management in this new scenario. An IT analyst and an Excel spreadsheet are not enough. The only viable alternative is automation', warns Néstor Markowicz.
← Back to news