In June 2016, Microsoft will stop support digital certificates using the hash algorithm SHA-1. Originally it was planned that the term of the support will last until 2017, but then it was reduced to 6 months. The reason for this lies in the shortcomings found this method of hashing. They allow you to forge a digital signature, which means a reduction in the security level .
The exact date of support withdrawal is not called, but in the summer of next year, almost all of the certificates that use the SHA-1 will no longer be considered as authentic in Windows.
It is important to note that since January 1, 2016 CAs stop issuing certificates based on the SHA-1. In addition, now there are works on the implementation of the algorithm SHA-2. Beginning January 1, the owners of web resources will be given a year in the transition to the new standard, but the timing may be revised and "pushed" by July 2017.
In general, the situation with the SHA-1 has become clear after breaking the simulation algorithm in October this year. As it turned out, a full hacking took 10 days using 64 GPUs, but experts previously thought it would be possible not earlier than in 2017. The US National Security Agency, in turn, said that the reason for the rapid increase in the speed hacking has become the modern processors and graphics cards, as well as the emergence of new technologies hacking. Related Products :
|