Dear community
I'm working on a project which is IoT, and actually I have a working prototype, but now I want to make it a little more reliable and secure. It's up and running at a few befriended families, and it communicates with my home server via HTTP and uses an unsecured MQTT broker for the commands.
But now in my firmware upgrade I'm working on, I want to change these into HTTPS and secured MQTT, and there are lots of examples online, but how do you keep these devices working with SLL, I mean the SSL expires very fast, and I just don't want to go every quarter to install new certificates.
How do larger company's do that? Like chromecasts for example... Do they just install a self signed with a very long expiriation period, or making contact with a server to download new certificates or...?
If anyone has some experience, I'd like to hear from you.
Thanks in advance