“Apple Announces New SSL Certificate Validity Requirements for Safari Browser” Explanation

Recently, Apple announced at the 49th CA/Browser Forum: In order to improve network security, any new website certificate with a validity period of more than 398 days will not be trusted by Safari browser. However, certificates issued before the deadline (September 1, 2020) are not affected by this rule.

In simple terms, an SSL certificate will not be trusted by Safari if it meets both of the following conditions:

1. Issued after September 1, 2020

2. Validity period exceeding 398 days

Certificates issued before September 1, 2020 are not affected. The purpose of this move is to improve the security of websites by ensuring that developers use certificates with the latest encryption standards, and to reduce the number of neglected old certificates, which may be stolen and used for phishing and drive-by malware attacks.

To ensure the availability of your services, the UCloud Global Security Center recommends that you assess the degree of impact, make good use of current certificate rules, and plan the valid lifetime of certificate applications.

Advantages of UCloud Global SSL certificates:

1. UCloud Global supports a variety of year-long and two-year certificates provided by trusted CA certification authorities, such as Symantec, GlobalSign, Geotrust, TrustAsia, CFCA, and more.

2. Supports unified management of multi-platform certificates

3. Supports alerts for expiring certificates to prevent business risks caused by expired certificates

4. Supports one-click distribution of cloud-based certificate related products.