Navigate on SwissID
Go to start page
Go to main navigation
Go to content
Go to search
Direkt zum Inhalt
Access Services
Language Navigation
en
DE
FR
Open navigation
Close navigation
Open navigation
Language Navigation
en
DE
FR
Access Services
Buy SSL & S/MIME
Sign now
PKI & Certificates
Close menu
PKI & Certificates
Webshop
Managed PKI
Private PKI
Partner solutions
Become a partner
References
Certificate Lifecycle Management
Close menu
Certificate Lifecycle Management
Cloud
On-Premises
Compare
Signatures
Close menu
Signatures
Web
REST-API
On-Premises
Product Guide
Industries
References
Timestamps
Identities
Close menu
Identities
Digital onboarding
Verifiable credentials
References
Blog
Support
Main section
You are here:
SwissSign
Blog
PKI & Certificates
All
Identity
Self Sovereign Identity (SSI)
Signature
Certificates
Cyber Security
Corporate
CA/Browser Forum
Sina Steininger • 04.02.2026
Certificate Management & PKI for Enterprise and Government: Best Practices for 2026
Three crises at the same time: 47-day certificates, exploding PKI and post-quantum migration. Certificate Lifecycle Management makes your infrastructure future-proof.
Certificates
Adrian Müller • 11.11.2025
47 days, 10 days – validity period for TLS / SSL certificates and domain validation significantly shortened
Context and next steps from SwissSign. The CA/Browser Forum has decided to gradually reduce the lifespan of SSL/TLS certificates and the validity period for domain verification, with far-reaching consequences for IT teams worldwide. Here's a brief summary of the situation and how we at SwissSign will continue to support you.
Certificates
CA/Browser Forum
SwissSign AG • 24.06.2026
CA/Browser Forum Updates
The CA/B Forum continuously makes new decisions that adapt the Baseline Requirements for TLS/SSL certificates, S/MIME or Code Signing and more. These changes have a direct impact on Certificate Authorities and certificate users.
Certificates
CA/Browser Forum
Adrian Müller • 04.05.2026
Client Authentication in TLS/SSL Certificates will no longer be supported by 2027 - What you need to do now
As of 15 March 2027, the use case "Client Authentication" may no longer be included in public TLS/SSL certificates, otherwise they would no longer be considered trustworthy by Google Chrome. Check in good time whether and to what extent you are using TLS/SSL certificates in this way, and what alternatives are available for your encryption - background and recommendations from SwissSign.
Certificates
CA/Browser Forum
Pablo Cortijo Castilla, Dany Salih, Christian Kanele • 01.04.2026
TLS/SSL: Scheduled Root Transition for SwissSign Certificates in April 2026
«SwissSign Gold CA - G2» retires from Chrome and Mozilla for TLS certificates. For almost all SwissSign customers, no action is required, as SwissSign's root «SwissSign RSA TLS Root CA 2022 – 1» continues to be valid. Both browser vendors will withdraw trust for SSL/TLS for the legacy root as part of their annual clean-up of older public roots.
Certificates
CA/Browser Forum
SwissSign • 24.03.2026
How encrypting e-mails in Outlook and other programmes improves security in your organization
E-mails are relatively easy to intercept and read – or even to manipulate – if they are not encrypted. The solution: e-mail certificates (S/MIME).
Certificates
Cyber Security
1
2
3
4
Forward
To the overview
Certificate expertise
for your inbox