More
Microsoft is cancelling weak roots

Microsoft is cancelling weak roots

08-10-2012 12:37:00

A weak roots are defined as a keys long less than 1024-bits. No connections with these short encryption keys are dedicated to increase the protection of users and also moving from the Internet old and unsafe tools to a stronger encryption length.

Microsoft has been informing about changes for several months and has been promoting upgrades to minimum 2048-bits root certificates. From tomorrow (9 October 2012) weak root keys will be cancelled as an unsafe connections.

These certificates uses keys with 516-bits lengths e.g., but today the norm is 2048-bits length and it is possible to find a security with 4096-bits encryption level.

All key lengths less than 1024-bytes were designed many years ago and don't provide protection against attacks popular in the Internet nowadays. No changes for stronger encryption may meet no connection with the website (poorly protected sites may be disconnected by the browser) or no digital signs for e-mail on Outlooks.

Rejecting weak security levels shouldn't affect many sites and Internet users because all SSL certificates are issued by Certificates Authorities for specified number of years and after this time it is necessary to renew SSL certificate with obligatory valid security level.

Tomorrow's upgrade continues the plan of rejecting all weak root keys. This August Microsoft cancelled all connections with websites, applications, platforms and files which worked with old keys long less than 1024-bits issued before 1st January 2010. Microsoft is planning to cancel all 1024-bits in the end of next year.

More: InfoSecurity Magazine

Recent Posts

Comodo / Sectigo is changing its Root CAs
28-12-2018 11:23:52

Sectigo, formerly known as Comodo CA, is entering the next phase of its transition: it’s replacing Comodo CA roots with USERTrust roots on January 14, 2019. Why it happens and what it will mean to Sectigo customers?

Comodo / Sectigo is changing its Root CAs
Comodo is now Sectigo
09-11-2018 12:54:30

According to previous announcements, a year after the acquisition of Comodo Group by Francisco Partners, on November 1 Comodo CA announced that from now on it is changing its brand to Sectigo [pronounced. sec-tee-go]. The goal of rebranding is consistency in company communication and better dedication to what Comodo is doing now.

Comodo is now Sectigo
European Cyber Security Month 2018
27-09-2018 10:46:21

The European Union Agency for Network and Information Security (ENISA), which is the center of knowledge about cyber security in Europe, organizes as every year in October the European Cyber Security Month. The campaign is starting in a few days. What is its purpose and how can you participate in it?

European Cyber Security Month 2018
more posts