From September 1st, tech giants Apple, Google, and Mozilla will no longer allow TLS security certificates with an expiration beyond 398 days to boost online browsing security. So, prepare to see some network applications fail, websites, and link errors, as the new rule rolls out.
Businesses will have to frequently rotate their TLS certificates, which will be more costly and a task in itself, but in the big picture can prevent potential cyberattacks.
Certificates issued before September 1st, as well as user and administrator-added root certificate authorities, however, will not be affected.
The change will be especially beneficial in boosting network security. A shorter certificate validity will limit unauthorized access to both networks and devices, in turn, preventing information stored on them from possibly being compromised by cyber threats. It will also be easier to monitor access and keep the network safe for authorized users.
Network engineers will also be able to shore up endpoint security better. Ensuring end-to-end security has been a challenge over the years for network engineers because device manufacturers are constantly upgrading their devices. Also, the network user perimeter is ever-increasing due to advancements in technology. This makes it dicey to configure a completely issue-proof network. An upgrade in one device can change the way it interacts with another, potentially interrupting workflow.
Cyberattacks are also becoming more covert and more difficult to detect. Hackers are targeting end-users more and more through applications due to their multi-level access. Applications are a crucial aspect of end-to-end usage as they are used in tandem with both networks and end-user devices. An application security breach could compromise both private and business operations data. So having a system in place to restrict data exchange to legitimate users is vital to an organization's virtual health.
Shorter TLS certificate validity also spells significant changes to IT budgets for a lot of reasons. The cost of configuring and managing safe networks is already by far a network engineer's biggest headache. Budgets are already stretched thin as it is because of the need to continually upgrade systems to support increasing traffic and to ensure that devices and data are not compromised in the exchange.
The direct financial implication is that organizations will need to increase IT budgets (and almost triple allocations to TLS certificates alone) as they would need a new license each year. Whether or not a breach defense would be as relevant will depend on available finances. Businesses that do not have a large enough budget to accommodate changes will need to get creative to finance network operations going forward successfully.
Changes arising from the new rules could aid network engineers in better discharging their duties but at possibly increased costs. Still, you might be able to rest easier, knowing that browsers are taking on more responsibility and contributing to a safe online experience.
The virtual environment is a fast-paced, continually evolving one. As such, network engineers are hard-pressed to keep their network systems efficiently running and seamlessly integrated with the latest in technological developments, all the while anticipating a hacker’s next moves and outsmarting them. It can get to be too much sometimes, and the reduction in the TLS certificate lifespan could provide a welcome breather for stakeholders. With Emerge IT network security solutions, you’ll benefit from experts constantly monitoring and optimizing your systems.