SSL certificate can be bought for 1-5 years but the issuance validity of the certificate is for only 1 year. Due to security reasons, it should be re-activated after 1 year because the connection should be secured by a private key. The private key is encoded information with a 2048 bit password, however, this key can be decoded.
Why it is happening?
The Certificate Authority/Browser (CA/B) Forum is the standards-setting body that collaborates on aspects of website security. Due to CA/B forum conditions, major web browsers such as Safari, Chrome, and Firefox permitted the certificate issuance to 1 year of validity to minimize the security risk.
As certificate lifecycles grow shorter, managing renewal dates can become inconvenient. But one-year certificate lives (or even shorter lives) are beneficial to our security. A shorter certificate life means critical security changes can be made more quickly. And those certificate keys are also more secure the more frequently they’re changed. Issuing a new certificate more frequently means more frequent key changes. The other consideration is identity. After all, that’s the purpose of an SSL/TLS certificate—to verify the identity of the site/site owner.
If you have any question then feel free to write back: helpdesk at xperts.net.pk
