If you are planning to purchase an SSL certificate for 3 years, you’ll need to hurry up. All Certification Authorities will no longer issue 3-year SSL certificates. After February, 20 2018 GeoTrust, RapidSSL, Symantec and Thawte SSL certificates for 3 years won’t be available for order. Starting on March 1, 2018, you will no longer be able to purchase 3-year Comodo SSL certificates.
Don’t worry, if you already have active 3-year SSL certificates. They will continue working after the 1st of March and you won’t need to change anything.
It’s not the first time when the CAB Forum places a new limit on maximum lifetime for all publicly trusted SSL certificates. Moreover, the maximum validity period for SSL-certificates will be shorten to a yearly model. Long-term SSL certificates are convenient for users, but have a number of drawbacks. For example, you need to update them regularly, as developers change hashing and encryption procedures for better security. Without renewal your website may suffer from vulnerabilities.