Exactly five years ago, I made this Git commit to discontinue multi-year certificates at @SSLMate. Today the CA/Browser Forum finished voting on a ballot to limit all publicly-trusted certificates to 1 year. (1/7)pic.twitter.com/oTyWwGqbJ3
You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
1 year certs are more honest, because serious security incidents mean a long-lived cert might not remain valid for its entire term. Every 5 year cert issued through @SSLMate before Sep 2014 had to be replaced twice: for the SHA-1 deprecation, and for the Symantec distrust. (5/7)
1 year certs are better for @SSLMate, since they allow us to iterate more quickly without having to deal with legacy baggage. I deleted 20k lines of code in April. I couldn't have deleted all that code if the system still had to manage certificates issued in 2014. (6/7)
I can't wait to see certificates limited to 1 year everywhere, and I'm proud I was ahead of the curve on this. https://sslmate.com/blog/post/one_year_certs … (7/7)
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.