arrow_back
Back to Articles
Changes to Public Certificate Authority EKU for SIP over TLS
Twilio
February 19, 2026
medium impact
Twilio Announces Changes to Certificate Authority Security Requirements for SIP over TLS Twilio is implementing a significant security certificate update affecting SIP over TLS communications. Starting May 1, 2026, public Certificate Authorities will discontinue including the Client Authentication Extended Key Usage (EKU) extension in their issued security certificates. This change will impact how organizations configure and manage their TLS-based communication security, potentially requiring updates to existing certificate configurations and authentication mechanisms for SIP connections.
Key Takeaways
- arrow_right_alt Public Certificate Authorities will remove Client Authentication EKU from TLS certificates
- arrow_right_alt The change takes effect on May 1, 2026
- arrow_right_alt Organizations using SIP over TLS will need to review and potentially update their certificate configurations