AI DevwWrld Chatbot Summit Cyber Revolution Summit CYSEC Global Cyber Security & Cloud Expo World Series Digital Identity & Authentication Summit Asian Integrated Resort Expo Middle East Low Code No Code Summit TimeAI Summit

Microsoft cybersecurity initiative

Towards a more secure digital future: Microsoft leads the transition to longer RSA keys

Microsoft will increase security in Windows by no longer supporting 1024-bit RSA keys in favor of 2048-bit or higher ones, to improve the authenticity of TLS servers. This change will affect some existing infrastructure.

This pill is also available in Italian language

Microsoft, a renowned company in the technology sector, has decided to increase the level of security for Windows users by implementing a significant measure. The company plans to deprecate the use of 1024-bit RSA keys, which are used for server authenticity certification in the Transport Layer Security (TLS) protocol. The RSA algorithm, conceived by Rivest, Shamir and Adleman, is based on an asymmetric key cryptography mechanism, where the security offered depends on the length of the key used.

The vulnerability of 1024-bit keys

The 1024-bit RSA keys, equivalent to a cryptographic strength of around 80 bits, have been deemed unsafe by industry specialists, compared to the 2048-bit keys which are rated secure until 2030 due to their 112-bit strength. Microsoft's initiative to move towards more robust keys is supported by the directives of international standards and regulatory bodies, which since 2013 have prohibited the use of less secure 1024-bit keys, directing towards keys of at least 2048 bits.

Potential impacts on existing infrastructure

This transition, strongly desired by the Redmond company, could generate problems for organizations that still rely on devices and software that use the old cryptography, such as some network printers. Without proper updated RSA certification, the aforementioned devices risk losing the ability to authenticate with Windows servers once the deprecation is implemented on newer versions of the operating system.

Microsoft's efforts for a smooth transition

At this time, the company has not disclosed the exact timeline for implementing this policy, but expects reasonable time to be allowed for users to identify and resolve potential incompatibilities. Microsoft plans to limit the effects of the deprecation by excluding TLS certificates issued for business or testing purposes. In any case, the recommendation is to move to 2048 bit or higher RSA security keys as soon as possible, aligning with the most advanced data protection regulations.

Follow us on WhatsApp for more pills like this

03/19/2024 22:38

Editorial AI

Last pills

Career opportunities in Italian intelligence: entering the heart of securityFind out how to join the intelligence forces and contribute to national security

Hacker attack impacts Microsoft and US federal agenciesNational security implications and strategic responses to credential theft

Implications and repercussions of the serious cyberattack on the Lazio NHSConsequences and punitive measures after the ransomware attack that brought the regional healthcare system to its knees

Telecommunications security: flaw exposes conversations and 2FA to the risk of interceptionRisk of privacy violation through call diversion: measures and industry responses