The 47-Day Certificate Ultimatum: How Browsers Broke the Ca Cartel
Posted3 months agoActive3 months ago
certkit.ioTechstory
calmpositive
Debate
10/100
Certificate AuthorityBrowser SecurityHTTPS
Key topics
Certificate Authority
Browser Security
HTTPS
The article discusses how browsers changed the certificate authority landscape by introducing a 47-day certificate validity limit, breaking the CA cartel and improving security; the HN discussion highlights the significance of this change.
Snapshot generated from the HN discussion
Discussion Activity
Light discussionFirst comment
N/A
Peak period
1
0-2h
Avg / period
1
Key moments
- 01Story posted
Oct 6, 2025 at 11:05 AM EDT
3 months ago
Step 01 - 02First comment
Oct 6, 2025 at 11:05 AM EDT
0s after posting
Step 02 - 03Peak activity
1 comments in 0-2h
Hottest window of the conversation
Step 03 - 04Latest activity
Oct 7, 2025 at 9:56 AM EDT
3 months ago
Step 04
Generating AI Summary...
Analyzing up to 500 comments to identify key contributors and discussion patterns
Discussion (2 comments)
Showing 2 comments
dnisbet
3 months ago
Good write up, sharing with colleagues to get them onboard with automating certs! (a forever process...)
toddgardnerAuthor
3 months ago
For twenty years, Certificate Authorities ran the perfect protection racket. Then SHA-1 got shattered, Apple went rogue, and certificates went from lasting 3 years to 47 days. This is the story of how browsers broke the CA cartel, and why your manual certificate process is about to become your biggest problem.
View full discussion on Hacker News
ID: 45492213Type: storyLast synced: 11/20/2025, 5:27:03 PM
Want the full context?
Jump to the original sources
Read the primary article or dive into the live Hacker News thread when you're ready.