Uncategorized
A smart home should make life easier, safer, and more connected, but achieving that takes devices that work together seamlessly. That’s where our partnership with Level comes in. By combining SmartThings’ automations with Level’s thoughtfully designed smart locks, homeowners can enjoy convenience and security without visual clutter.
The post Partner Spotlight: SmartThings and Level Unlock Seamless Smart Home Experiences appeared first on SmartThings Blog.
Uncategorized
Change is coming to SSL/TLS certificate management, and it’s arriving faster than most organizations realize. The CA/B Forum’s version of “March Madness” will start rolling out within months and culminate in a rigorous 47-day maximum certificate validity requirement by 2029. The 47-day mandate will force a new approach to outdated manual CLM approaches for several reasons:
- Shorter validity periods mean stronger security posture – Less time for compromised certificates to cause damage, faster revocation cycles, and reduced exposure windows
- Forced automation eliminates human error – Manual certificate management becomes impossible at scale, driving the necessary shift to automated systems
- Competitive differentiation through operational excellence – While competitors struggle with compliance, you’re delivering seamless, uninterrupted services
- Foundation for crypto-agility – The infrastructure you build for 47-day compliance becomes your platform for post-quantum cryptography readiness and future algorithm transitions
Skip the Scramble: Start Scanning Today
Organizations that embrace this change now will emerge with certificate management capabilities that their competitors won’t match for years.
Ready to assess your 47-day readiness? Run a free SSL/TLS certificate discovery scan →
The Scramble vs. The Strategic Advantage
We’re already seeing two distinct paths emerge in the market. Some organizations are waiting it out, hoping the mandate will be delayed or diluted. Others are seizing the moment, using this transition as their catalyst for CLM modernization.
When compliance deadlines loom, scrambling organizations typically rush to implement band-aid solutions that barely meet requirements and suffer the resulting outages and service disruptions.
Forward-thinking IT security experts will lead their organizations using a different approach:
- Building comprehensive discovery capabilities that reveal their complete SSL/TLS certificate landscape. This is not just the publicly visible certificates, but the hidden infrastructure certificates that pose the real operational risk.
- Implementing automated lifecycle management that handles certificate provisioning, renewal, and revocation seamlessly across all environments—from public cloud to private networks to edge devices.
- Creating crypto-agile architectures that can adapt to algorithm changes, post-quantum cryptography, and future security requirements without massive infrastructure overhauls.
- Establishing governance frameworks that enforce consistent security policies while supporting business agility and compliance requirements.
Most organizations have no clear picture of how many SSL/TLS certificates they actually have or where those certificates live. The reality is that they are spread across:
- Internal network infrastructure – Servers, databases, APIs, and applications that never appear in public scans.
- Cloud-native environments – Container orchestration platforms, microservices, and serverless functions, each with unique certificate requirements
- Development and staging systems – Non-production environments that still need valid certificates for testing and integration
- IoT and edge devices – Connected devices and edge computing platforms with embedded certificates
- Legacy applications – Older systems still running with forgotten certificates
The bottom line: You can’t manage what you can’t see, and you can’t secure what you don’t know exists.
Start by discovering your public SSL/TLS certificate inventory with a free comprehensive scan →
The Crypto-Agile Advantage: Future-Proofing for the 47-Day Mandate and More
The 47-day mandate is just the beginning. Post-quantum cryptography is coming. New algorithms will emerge. Security standards will evolve. The infrastructure you build to handle shorter certificate lifespans becomes your foundation for adapting to all of these changes.
Crypto-agility means:
- Seamless algorithm transitions when new cryptographic standards emerge
- Rapid response capabilities for security vulnerabilities or algorithm compromises
- Standardized processes that can accommodate and work seamlessly across multiple certificate authorities and environments
- Automated policy enforcement that adapts to changing compliance requirements
- Zero-downtime updates that maintain service availability during security transitions
Organizations building crypto-agile certificate management now will handle future changes with confidence while their competitors struggle through each new requirement.
Building Your 47-Day TLS Advantage: The Practical Steps
So how do forward-thinking organizations actually make this transition? It starts with understanding where you are, then building toward where you need to be.
Step 1: Complete Discovery and Assessment
- Get the full picture of your SSL/TLS certificate landscape—not just the public certificates, but every certificate across every environment. Most organizations discover they have 10-100 times more certificates than they realized.
- Assess your current processes for certificate lifecycle management, crypto-agility readiness, and 47-day compliance gaps. A clear baseline is essential for planning your modernization journey.
Step 2: Design Your Modernization Strategy
- Develop a roadmap that addresses immediate 47-day TLS compliance needs while building long-term crypto-agility capabilities. The best strategies solve today’s problems while positioning for tomorrow’s requirements.
- Plan your automation architecture to handle certificate lifecycle management at enterprise scale across all environments and certificate authorities.
Step 3: Implement and Optimize
- Deploy automated certificate lifecycle management that can handle the operational requirements of 47-day TLS certificates while supporting your broader security and compliance goals.
- Establish governance policies that ensure consistent security standards while supporting business agility and growth.
- Build monitoring and alerting systems that provide visibility into certificate health and proactive management of potential issues.
Schedule a consultation to discuss your specific modernization strategy →
The Time to Act Is Now
PacificSource recently modernized its certificate lifecycle management program, automating and ensuring crypto-agility for IT security. What they knew that others don’t is that the organizations that will thrive in the 47-day TLS era are the ones taking action today. While competitors debate and delay, they’re building the certificate management capabilities that will serve as competitive advantages for years to come.
The window for strategic positioning is closing. Organizations that wait until compliance deadlines are imminent will be forced into reactive, sub-optimal solutions. Those that act now can build comprehensive, crypto-agile certificate management programs that position them as industry leaders.
Your next move matters. Will you be among the organizations that use this transition to leapfrog competitors, or will you be scrambling to catch up while they pull ahead?
The choice is yours, but the time to choose is now.
Ready to Build Your 47-Day TLS Advantage?
Don’t wait for the scramble. Start building your competitive advantage today with a comprehensive understanding of your SSL/TLS certificate landscape and a strategic plan for modernization.
Your next steps:
🔍 Run a Free SSL/TLS Certificate Discovery Scan to see your complete certificate inventory
🚀 Book a Platform Demo to see how automated certificate lifecycle management works in practice
📞 Speak with a Certificate Lifecycle Expert to discuss your specific requirements and challenges
Uncategorized
Small, thoughtful automations that make school-day mornings smoother, afternoons calmer, and bedtimes easier, without adding more screens.
The post Make School Nights Easier with a Kid-Friendly Smart Home appeared first on SmartThings Blog.
Uncategorized
In healthcare, every second counts. From electronic health records (EHR) to patient portals and claims processing systems, secure digital communication is the backbone of delivering care and protecting sensitive patient information. That security relies on SSL/TLS certificates—and the rules governing them are about to change in a big way.
The CA/Browser Forum has approved a timeline to shorten SSL/TLS certificate validity to just 47 days by 2029, with the first reduction to 200 days starting in March 2026. For healthcare providers already struggling with certificate sprawl, outages, and manual renewals, this shift could multiply today’s problems sevenfold.
PacificSource, a not-for-profit health insurance provider in the Pacific Northwest of the United States, faced exactly these challenges—and their journey shows why preparing now is critical.
The Challenges of Manual Certificate Management
PacificSource’s IT team was stuck in a manual cycle:
- No centralized visibility into certificates across the environment
- Expirations tracked in personal calendars, leading to 3–4 outages a month
- No standardized issuance process, creating orphaned and undocumented certificates
- Certificate deployments that consumed entire workdays
In healthcare, outages are more than just an inconvenience—they disrupt patient access and create compliance risks. PacificSource realized that manual, ad-hoc certificate management was no longer sustainable.
Transforming Certificate Lifecycle Management with Automation
To move from firefighting to future-proofing, PacificSource adopted AppViewX AVX ONE CLM, an automated certificate lifecycle management platform. With end-to-end automation, centralized inventory, and policy enforcement, AVX ONE CLM transformed certificate management from a reactive burden into a proactive strength.
Since using AVX ONE CLM, the PacificSource team has already reported:
- Complete visibility into all certificates across their infrastructure
- End-to-end automation of renewals, issuance, and deployments
- Zero certificate-related outages (down from multiple to zero per month)
- Certificate deployment time cut from a full day to just 15 minutes
- 97% reduction in effort spent on certificate management
- Full audit readiness and compliance reporting
As certificate lifespans shrink, AVX ONE CLM ensures that renewals happen automatically, at scale, eliminating the risk of missed expirations and downtime.
How PacificSource Transformed Certificate Management with AppViewX
Why This Matters As 47-Day Mandates Loom Large
If yearly certificate renewals were a struggle, imagine doing it every 47 days. For an organization with 1,500 public and private trust certificates, that means going from 1,500 renewals per year to nearly 18,000 under the 47-day TLS mandate.
Manual processes won’t scale. Spreadsheets won’t cut it. Calendar reminders won’t prevent outages.
PacificSource’s decision to automate with AppViewX AVX ONE CLM didn’t just solve their immediate problems—it positioned them to thrive as certificate lifespans shrink. With policy-driven automation and centralized visibility, the IT team can handle short-lived certificates at scale without disruption, downtime, or compliance risk.
Future-Proofing Digital Trust in Healthcare
The move to 47-day TLS certificates is inevitable. The only question for all organizations across all industries is whether they will be ready. PacificSource’s journey demonstrates the value of acting early— replacing manual work with automation, eliminating outages, and building resilience into their security operations.
Download the full PacificSource case study to see how they transformed certificate management and prepared for the future of short-lived certificates with AppViewX AVX ONE CLM.
Uncategorized
New role-based features, global availability, real-time alerts, and deeper health integrations designed for modern caregiving
The post SmartThings Family Care: Supporting the Ones Who Support Us appeared first on SmartThings Blog.
Uncategorized
Today’s IT infrastructures are overrun with machine or non-human identities. They are everywhere—from on-prem data centres and cloud platforms to DevOps pipelines, IoT devices, and APIs. These identities rely on digital certificates to establish trust and secure communications.
But there’s a catch: If you don’t know where your digital certificates are, you can’t manage them. And if you can’t manage them, you’re risking service outages, security breaches, and compliance failures.
That’s why certificate discovery is the critical first step in any effective certificate lifecycle management (CLM) strategy.
Why Automated Certificate Discovery Matters
For PKI admins, maintaining visibility into every certificate across the organisation is both a priority and a persistent challenge. As IT environments grow more hybrid and distributed, manually tracking thousands of certificates through spreadsheets or siloed CA tools becomes impractical.
Automated certificate discovery helps PKI teams:
- Gain complete visibility by identifying all certificates, regardless of issuing CA or deployment location
- Detect rogue or shadow certificates that bypass standard issuance workflows and mitigate security risks
- Track certificate expiration timelines to proactively prevent outages
- Ensure compliance by continuously mapping certificates to policies and security standards
In short, automated certificate discovery ensures every certificate, regardless of where it lives, is accounted for, assessed, and ready for proactive management.
Automating Certificate Discovery with AppViewX AVX ONE CLM
AVX ONE CLM is a certificate lifecycle management solution that gives PKI teams the visibility, automation, and policy control needed to manage certificates across complex hybrid multi-cloud environments. It is designed to simplify PKI and certificate lifecycle management, ensuring trust for machines, workloads, applications, cloud services, containers, APIs, and more.
At the heart of AVX ONE CLM are certificate discovery and inventory capabilities.
Certificate Lifecycle Management with Visibility, Control and Insights – All in One Place
How AppViewX Connectors Automate Certificate Discovery on Network Devices:
AppViewX provides built-in certificate discovery connectors for a wide range of commonly used systems and platforms, including renowned brands such as F5, Linux, and Tomcat, among others. These connectors are designed to scan and fetch certificate data directly from devices, helping you eliminate blind spots with minimal configuration.
However, in the case of legacy devices—especially those that are end-of-life (EOL), end-of-support (EOS), or highly customised—certificate discovery can be challenging due to limited documentation or lack of accessible lab infrastructure. To address this, AppViewX provides a flexible solution through its AppViewX Connectors feature.
This powerful feature empowers users to perform customised certificate discovery, tailored to their specific requirements. All it requires is access to the target devices and their certificates, either through API or CLI. With this minimal requirement, discovery can be quickly and seamlessly executed. In addition to the pre-built connectors AppViewX provides, you can easily create your custom connectors to support unique or unsupported systems.
This offers greater flexibility to support any legacy or new line of network devices that may not be readily accessible.
Additional Certificate Discovery and Post-Discovery Features:
AppViewX further streamlines the discovery process with advanced capabilities:
- Targeted discovery: During certificate discovery, you can choose to discover only the certificates in a particular location or exclude certain certificates as needed.
- Global inclusion/exclusion rules: Connectors in AppViewX allow for global inclusion/exclusion of file locations based on user requirements. You can apply file path rules across multiple devices simultaneously.
- Device-level controls: You can add inclusion/exclusion file paths at the device level.
- Filtering: After discovery, if further filtering is required, you can filter certificates based on specific certificate parameters.
- Group management: Post-discovery, you can automatically group certificates into desired certificate groups in a single operation.
- Workflow automation: If any specific actions need to be performed after discovery, you can utilise the workflow feature (an inbuilt automation framework in AppViewX) to carry out the desired actions.
- End-to-end lifecycle management:. Once the certificates are discovered, the native features of AVX ONE CLM take over, automating certificate renewals and deployment, ensuring they’re always valid, compliant, and correctly installed on target devices.
For PKI administrators, certificate discovery is a foundational requirement for operational resilience and security. Without it, automation falls apart. With it, you gain the visibility and control needed to manage and scale trust across your organisation.
AppViewX AVX ONE CLM makes certificate discovery seamless with a rich library of native connectors and the flexibility to build your own. Whether you’re managing modern workloads or navigating legacy infrastructure, AppViewX helps you discover, manage, and control every certificate, ensuring authenticity and security of your machine identities.
While discovery is the first step, it’s only one part of the broader certificate management process. AVX ONE CLM goes well beyond discovery—offering centralized visibility, end-to-end lifecycle automation, policy-driven control, and crypto-agility to manage machine and non-human identities securely and at scale.
Download the Smart Discovery Solution Brief to learn more about automated certificate discovery from AppViewX.
Talk to one of our experts today for a live demo.
