WebPKI Observatory — BR Readiness
Of 43 active TLS CAs measured for SC-081 readiness, 6 remain at risk of non-compliance with the March 2027 100-day validity threshold and 4 with the March 2026 200-day threshold, based on actual certificate replacement behavior showing a median of 64 days. This operational transition occurs against a regulatory surface that has grown 121-fold since 2000 to 6,664 total obligations, 76% of which are mandatory requirements spanning CA/B Forum baseline requirements, four root program policies, WebTrust and ETSI audit criteria, and IETF standards. Zero new ballots have passed since 2022 despite this complexity, suggesting regulatory accumulation without consolidation or simplification, making readiness progressively harder even as validity windows compress.