Insecure digital certificates - Lifespan
Description
The certificates are valid for more than two years.
Impact
Increase the chances of the certificate being susceptible to zero-day vulnerabilities.
Recommendation
Generate a certificate that complies with recommended best practices.
Threat
Anonymous attacker from an adjacent network.
Expected Remediation Time
⏱️ 15 minutes.
Requirements
088 - Request client certificates089 - Limit validity of certificates090 - Use valid certificates091 - Use internally signed certificates092 - Use externally signed certificates093 - Use consistent certificatesFixes