Venafi launches solution for 90-day TLS certificate compliance
Venafi, the creator of machine identity management, has launched a new 90-Day TLS Readiness Solution to assist organisations in achieving compliance with Google's suggested 90-day TLS certificate standard. This solution enhances the overall security posture while decreasing the risk of certificate-related disruptions.
In the previous year, a Venafi report found that 83% of organisations suffered from certificate-related outages, with compromised TLS certificates causing security incidents in 57% of businesses. By minimising certificate lifespans, companies can lower the potential for compromise.
Ryan Hurst, formerly Head of Product at Google, stated: "Google's proposal in the CA/Browser Forum to reduce TLS certificate lifespans to 90 days is an important step towards improving web responses to emerging threats and technological advancements, including quantum computing. This significantly decreases risks linked with key compromises by lowering the value of a key to the attacker. Furthermore, embracing automation not only enhances security but also minimises the risk of outages, freeing resources to work on more impactful tasks while supporting a more agile and trustworthy Web PKI."
Transitioning to the 90-day TLS certificate standard isn't solely about applying technology - it also requires a complete organisational shift," Ryan Douglas, cybersecurity architect at FactSet, explained. "Venafi has been invaluable in prepping us for this shift. In addition to automating our certificate lifecycle management with TLS Protect, they've partnered with us to create a sturdy, cross-team foundation that averts outages and guarantees continuous compliance with the new standard."
In addition to technical implementation, Venafi assists companies in designing an effective certificate management process at the organisational level. The Venafi 90-Day TLS Readiness Solution, which employs Venafi's Control Plane for Machine Identities and TLS Protect, allows for proactive identification and mapping of TLS certificates into a comprehensive certificate inventory and renewal schedule. With full control and visibility of TLS certificates, alongside expert guidance on policy review, process alignment, and advanced automation workflows design, businesses can reduce the risk and time associated with automating the entire lifecycle process.
"Our solution merges cutting-edge automation technologies with strategic planning and support, helping organisations simplify and navigate an overly complex process," echoed Shivajee Samdarshi, Chief Product Officer at Venafi. "This allows them to decrease outages, strengthen their overall security position, and ensures the agility necessary for initiatives like post-quantum cryptography."
The Venafi 90-Day TLS Readiness Solution is now available. Organisations seeking to utilise the solution are encouraged to undertake a free 90-Day TLS Readiness Assessment to get started, the company shared in a statement.