November 2025 Product Release: From 47-Day Mandates to Post Quantum Readiness

As enterprises face growing pressure to secure machine identities, the landscape is shifting rapidly. The post-quantum era is approaching, with NIST’s impending cryptography standards forcing organizations to rethink how they safeguard digital assets. At the same time, the CA/B Forum’s new 47-day certificate mandates will dramatically shorten certificate lifecycles, exposing the limits of manual management. These shifts, coupled with the general increase in digital assets and expanding attack surface, are creating significant pain points for security and IT teams.

With our November 2025 release, AppViewX delivers a major leap forward. We are helping customers prepare for the future by accelerating deployment, automating compliance, and reducing operational overhead across every part of certificate lifecycle management (CLM).

This release introduces four innovations designed to help teams work faster, smarter, and more securely:

• Manage Short-Lived Certificates at Scale: Meet the 47-day mandate by automating certificate renewal cycles and enforcing re-enrollment policies without added overhead.
• Accelerate Post-Quantum Cryptography (PQC) Readiness with Quantum Trust Hub: Assess your crypto-agility across source code, apps, certificates, databases, containers, and more with a complete Cryptographic Bill of Materials (CBOM) and remediation recommendations.
• Improve User Experience with AppViewX InfinityAI: Rapidly navigate to the data you need, generate reports with natural language queries and accelerate onboarding through AI-based navigation.
• Achieve Faster Time-to-Value with Policy Engine: Deploy CLM in days—not months—with out-of-the-box policy templates, while retaining the flexibility to customize workflows for complex environments.

Together, these features empower Security, DevOps, and IT teams to reduce manual effort, increase compliance, and get ahead of the industry’s most pressing changes.

Short-Lived Certificate Management: Automate Compliance, Eliminate Risk

The CA/B Forum’s upcoming 47-day certificate lifecycle mandate will increase renewal frequency by up to eight times by 2029, with the first phase of reduced certificate validity (200 days) starting in March 2026. The new Short-Lived Certificate Management capabilities in AVX ONE are purpose-built to automate compliance and eliminate overhead.

Capabilities include:

• Automated Onboarding and Discovery: Instantly detect and onboard endpoints (servers, network devices, IoT, etc.) for streamlined certificate provisioning.
• Automated Domain Control Validation (DCV): Meet 47-day compliance by validating domains and issuing renewals automatically—no manual effort required.
• Certificate Lifecycle and Validity Enhancements: Define new certificate validity for renewals, generate new private keys, and use templated re-enrollment policies for consistent compliance.

By automating discovery, validation, and renewal, organizations can mitigate outages, reduce human error, and maintain compliance with shorter certificate validity timelines with minimal overhead.

Key benefits:

• Continuous compliance with CA/Browser Forum mandates.
• Fewer outages, security breaches, and compliance gaps.
• Reduced operational overhead through automation and visibility.

See how to automate 47-day certificate compliance →

Quantum Trust Hub: Prepare for the Post Quantum Cryptography Era

The rise of quantum computing presents an existential challenge to today’s encryption standards. With NIST’s release of post-quantum cryptography (PQC) algorithms, security leaders are now under pressure to assess and plan their migration to quantum-safe cryptography before it’s too late.

The new Quantum Trust Hub helps organizations assess, prioritize, and plan their migration to quantum-safe encryption.

Capabilities include:

• Enterprise Assessment & Remediation: Get a comprehensive assessment of certificates, algorithms, protocols, libraries, and keys—complete with a Cryptographic Bill of Materials (CBOM) and remediation recommendations.
• Comprehensive Reporting: Generate a full-featured report that assesses your crypto-agility across source code, apps, certificates, databases, containers, and more.
• Dashboard Insights: Consolidate data and insights into one view, enabling leadership to make informed, strategic decisions on crypto posture across the organization.

With a unified view of cryptographic assets and vulnerabilities, teams can confidently plan and prioritize their path to quantum-safe encryption.

Key benefits:

• Understand your crypto-readiness instantly with clear vulnerability counts and remediation guidance.
• Adapt to new standards published by NIST, NCSC, and other regulatory agencies.
• Demonstrate security leadership and meet compliance requirements.

Learn more about assessing your PQC readiness →

InfinityAI: Reduce Operational Costs with AI-Enabled Search and Navigation

As platforms grow more powerful, they also require greater expertise to navigate. Finding data or building reports often takes time and requires help from support teams. InfinityAI changes that experience. Integrated across help, search, navigation, and reporting, it allows users to ask for what they need in plain language—whether it’s building a report, finding a configuration page, or troubleshooting an issue.

Capabilities include:

• AI-Enabled Navigation: Allows users to navigate by simply stating what they need to do, for example “rotate a certificate” or “add a new device group”.
• Natural Language Search and Reporting: Quickly search or build custom reports by using AI-enabled prompts.
• Intelligent Knowledge Base: Find answers to product-related questions using a simple, conversational
  interface.

The outcome is a more intelligent user experience that turns complex operations into effortless actions.

Key benefits:

• Context-aware guidance reduces onboarding, learning curves and improves user experience.
• Any user can now self-serve insights without relying on internal support teams, increasing overall efficiency.
• A common AI interface that extends across the AVX ONE SaaS platform.

Discover how InfinityAI transforms CLM operations →

Policy Engine: Faster Time to Value, No Complexity

Getting value from a CLM platform shouldn’t take months. Yet traditional systems often require extensive configuration and a service engagement before teams see results.

With the new Policy Engine, AVX ONE delivers an out-of-the-box onboarding experience that dramatically accelerates time to value. Customers can now use predefined policies that cover the most common CLM use cases, as well as customize policies and workflows for more complex configurations.

Capabilities include:

• Pre-defined policy templates: Leverage templates for common use cases to onboard faster while retaining the option to use visual workflows for more complex custom use cases.
• Automated device onboarding: Detect and onboard devices automatically, enabling faster discovery and provisioning of certificates.
• Admin configurable template options: Define enrollment behavior and UI for delegated access to meet increased certificate needs across teams.

This flexibility reduces deployment and configuration time from months to days.

Key benefits:

• Faster time to value through simplified, self-service deployment.
• Streamlined certificate re-enrollment minimizes friction during renewal processes.
• Flexibility to tailor policies for unique enterprise environments.

Learn more about Policy Engine →

Delivering Continuous Innovation

The AVX ONE November 2025 release delivers a major leap forward in helping customers future-proof their machine identity ecosystems while dramatically simplifying deployment, operations, and user experience. This release introduces faster implementation, intelligent automation, instant certificate discoverability, and built-in compliance enforcement—all powered by PQC-ready cryptography and guided workflows that reduce complexity and risk.

By unifying speed, security, and simplicity into a single platform experience, AppViewX is enabling customers to stay ahead of emerging threats, adapt to evolving standards, and scale trust across every machine identity.

The release is now available. Find full release notes and resources on the Product Release Hub or contact your customer success team for questions. You can also download Product datasheet to learn more.

Frequently Asked Questions

1. Does the Certificate Lifecycle Management automation support both public and private CAs?

   Yes. AVX ONE supports all major public and private CAs and can automate renewals across hybrid environments.

2. How do I get InfinityAI?

   InfinityAI can be turned on by your Admin if you are a SaaS-delivered CLM customer. Permissions to access the feature are defined by role.

3. Does InfinityAI store / send customer data outside of the AVX ONE platform?

   No. Customer specific data is not sent outside of the platform or provided as an input to external LLMs.