" If an SSL is so secure, why do I need to pay to get a new one generated every few years? How does it wear out? How is the new one more secure than the previous one?"
I was curious as to the answer and it seems to be because a) ownership of domains/certificates can change hands so expiring helps keep the registered ownership relationship up to date b) Technology does change so this enforces keeping up with current practices To address the cost issue, I use Let's Encrypt certificates which don't cost me anything. -- John.
