According to Venafi chief innovation officer Kevin Bocek, the shift towards shorter life cycles of certificates is crucial in reducing risks in cybersecurity. However, he acknowledges that this change means companies will now have to renew their certificates five times more frequently than before, which requires a significant increase in effort.
The challenges brought about by switching TLS certificates are becoming increasingly apparent, as revealed by a recent survey conducted among security leaders. One of the main issues highlighted is the delayed provision of certificates, with only 8% of security professionals fully automating all aspects of TLS certificate management. A large portion (29%) still rely on manual processes using software and spreadsheets, resulting in an average wait time of two to three working days for certificate provision.
Another major challenge identified is the TLS certificate conversion process. The survey shows that the volume of TLS certificates used by companies has been steadily increasing due to the growing adoption of the technology. In fact, 95% of security leaders report that digital transformation initiatives have led to a 36% increase in their organization’s use of SSL/TLS in 2023. This trend is expected to continue, with the average company now managing 3,730 TLS certificates, a number projected to rise by 39% to over 5,000 by 2026.
To address these challenges, certificate lifecycle management solutions are being recommended as a way for companies to efficiently manage TLS certificates. Some well-known providers in this area include Venafi, digitcert, TrackSSL, appviewx, Keystash, and Keyfactor.
Overall, the transition to shorter life cycles of TLS certificates presents both benefits and challenges for companies. While it enhances cybersecurity by reducing risks, it also increases the burden on organizations to manage certificates more frequently. As the use of TLS certificates continues to grow, it is becoming increasingly important for companies to adopt automated solutions for certificate management to streamline processes and ensure security compliance.