There seems to be a lot of confusion and misinformation about the idea of short-lived certificates and keys so I thought I would pen some thoughts about the topic in the hope of providing some clarification. I have seen some argue the rationale behind short-lived certificates is to address the shortcoming in the CA and … Continue reading Why bother with short-lived certificates and keys in TLS?