July 9th, 2012, 09:35 PM
Root Certificate Expiration
I'm setting up a CA in an environment that i control and will be issuing a limited number of certificates to certain devices. I thought i read somewhere that the root certificate shouldnt be set to expire in a very long time from now (like 30+ years), but cant seem to find it. What would be a good amount of time for the root certificate to be valid?
If i set it to something high (like above 30+), what are the security implications?
I read on verisign that they set their to expire every 5 to 10 years, because "as computer technology improves, older generations of encryption technology become vulnerable due to newer, more powerful computers."
July 10th, 2012, 04:23 PM
When I set up a test environment , it was 5 yrs but didnt put into production.
Not sure what the guys do now.
The world is a dangerous place to live; not because of the people who are evil, but because of the people who don't do anything about it.
By joshmobile in forum Security News
Last Post: December 15th, 2010, 03:50 PM
By nancy in forum Newbie Security Questions
Last Post: December 11th, 2008, 08:39 AM
By thehorse13 in forum *nix Security Discussions
Last Post: May 15th, 2003, 01:14 PM
By R0n1n in forum *nix Security Discussions
Last Post: November 20th, 2002, 02:20 PM
By Nitro in forum The Security Tutorials Forum
Last Post: July 3rd, 2002, 07:37 AM