2025-08-16, Sat.

Top Stories       Business       Culture & Life       Science & Technology       World

Lecture

Notification

 

NEWS > Business


CSC Research Finds 40% of Enterprises Could Be at Risk of an Outage Due to SSL Expiration

Domain control validation sunsets on July 15, 2025, putting many companies that rely on WHOIS email at risk for service disruption
Date: 2025-07-23

WILMINGTON, DEL. -- New research from CSC, an enterprise-class domain security provider and world leader in domain management, SSL management, brand protection, and anti-fraud solutions, indicates that as many as 40% of enterprises are at risk of unexpected service outages caused by out-of-date secure sockets layer (SSL) certificates. This threat stems from the reliance on WHOIS-based email addresses for domain control validation (DCV) that will be officially deprecated on July 15, 2025.

CSC analyzed over 100,000 global SSL certificate records and found that many organizations still use WHOIS email as their primary method for domain control validation, despite a 2024 vote by the CA/Browser Forum that mandates the deprecation of WHOIS-based validation due to its associated security vulnerabilities. After July 15, 2025, certificate authorities (CAs) will no longer accept WHOIS email for DCV, making alternative validation methods essential for uninterrupted operations.

Compounding the issue, 17% of companies surveyed by CSC are unaware of their current DCV method, suggesting a widespread lack of visibility and preparedness within IT and security teams. To mitigate the risk, companies should immediately audit their certificate management workflows and migrate to accepted DCV alternatives such as domain name system (DNS)-based validation or file-based web token methods.

“For years, WHOIS-based email was seen as the easiest, non-technical DCV method. Organizations that have not switched to alternative DCV methods risk serious consequences—from website outages to critical service failures. But the changes don’t stop there,” cautions CSC’s senior director of Technology, Security Products and Services, Mark Flegg. “Organizations also need to bear in mind further industry-wide shifts that will take place in the coming years. Any short-term fixes need to be aligned with this long-term trajectory where automation of certificates and DCV will become unavoidable. Organizations absolutely need to start their prep work now.”

From March 15, 2026, certificate life cycles will begin to shorten drastically—from 367 days to 200, then 100, and finally just 47 days by 2029. Correspondingly, DCV re-use periods will reduce from 367 to 200, 100, and then just 10 days by 2028. That means enterprises will be facing up to eight certificate renewals per year. With DCV at 10 days, it could mean revalidation every time a certificate needs to be re-issued.

To support enterprises through these transitions, CSC offers a comprehensive suite of digital certificate solutions that can tailor to any organization’s workflow. Its newly launched Domain Control Validation as a Service (DCVaaS)—available free of charge to its clients—streamlines the validation process, reducing certificate renewal times by up to 99% and alleviating the manual workload for IT teams.

 to the Top List of News
Cargill Sets a New Global Benchmark for More Sustainable Cocoa Supply Chains
G2 Risk Solutions and EverC Combine to Cement Global Reach and Set a New Standard for AI-Powered Merchant Risk Solutions
LambdaTest Unveils the Fourth Edition of the Testµ (¡®TestMu¡¯) Conference in 2025
Visa Brings Google Pay Integration to Fleet Cards, Enabling Tokenization and Push-to-Wallet Across the Digital Wallet Ecosystem
Andersen Global Adds Member Firm in Botswana, Broadening Regional Coverage
Championing Smarter, Energy-Saving Living in the Heart of South Eastern Europe
Venture Global Calcasieu Pass Receives Uprate Approval from U.S. Department of Energy

 
IFF¡¯s 2024 Do More Good Report Highlights Progress in Sustainability ...
L&F Maintains Shipment Growth, Confident in Achieving Profit Turnaroun...
Nucleus Network Acquires Hammersmith Medicines Research
Access Advance Extends Founding Licensee Incentives for Video Distribu...
Guidewire Niseko Release Delivers Financial and Risk Insights, Bringin...
Skechers Responds to Kizik¡¯s Patent Lawsuit
Visa Expands Stablecoin Settlement Support
Telness Tech Appoints Octopus Group Chairman John Browett to Board of ...
Andersen Consulting Enhances Organizational Development Capabilities w...
LevelBlue Completes Acquisition of Aon¡¯s Cybersecurity and IP Litigat...

 

 

60, Gamasanro 27gil, Guro-gu, Seoul, Korea, e-mail: news@newsji.com

Copyright, NEWSJI NETWORK.