AI DevwWrld CyberDSA Chatbot Summit Cyber Revolution Summit CYSEC Global Cyber Security & Cloud Expo World Series Digital Identity & Authentication Summit Asian Integrated Resort Expo Middle East Low Code No Code Summit TimeAI Summit

Microsoft cybersecurity initiative

Towards a more secure digital future: Microsoft leads the transition to longer RSA keys

Microsoft will increase security in Windows by no longer supporting 1024-bit RSA keys in favor of 2048-bit or higher ones, to improve the authenticity of TLS servers. This change will affect some existing infrastructure.

This pill is also available in Italian language

Microsoft, a renowned company in the technology sector, has decided to increase the level of security for Windows users by implementing a significant measure. The company plans to deprecate the use of 1024-bit RSA keys, which are used for server authenticity certification in the Transport Layer Security (TLS) protocol. The RSA algorithm, conceived by Rivest, Shamir and Adleman, is based on an asymmetric key cryptography mechanism, where the security offered depends on the length of the key used.

The vulnerability of 1024-bit keys

The 1024-bit RSA keys, equivalent to a cryptographic strength of around 80 bits, have been deemed unsafe by industry specialists, compared to the 2048-bit keys which are rated secure until 2030 due to their 112-bit strength. Microsoft's initiative to move towards more robust keys is supported by the directives of international standards and regulatory bodies, which since 2013 have prohibited the use of less secure 1024-bit keys, directing towards keys of at least 2048 bits.

Potential impacts on existing infrastructure

This transition, strongly desired by the Redmond company, could generate problems for organizations that still rely on devices and software that use the old cryptography, such as some network printers. Without proper updated RSA certification, the aforementioned devices risk losing the ability to authenticate with Windows servers once the deprecation is implemented on newer versions of the operating system.

Microsoft's efforts for a smooth transition

At this time, the company has not disclosed the exact timeline for implementing this policy, but expects reasonable time to be allowed for users to identify and resolve potential incompatibilities. Microsoft plans to limit the effects of the deprecation by excluding TLS certificates issued for business or testing purposes. In any case, the recommendation is to move to 2048 bit or higher RSA security keys as soon as possible, aligning with the most advanced data protection regulations.

Follow us on Facebook for more pills like this

03/19/2024 22:38

Editorial AI

Last pills

Cyber attack on TeamViewer: immediate response and investigations underwayStrengthened security measures and international collaborations to counter the cyber threat

Polyfill JS supply chain attack: what happenedA detailed analysis of the cyber attack that compromised a library essential for JavaScript compatibility in browsers

Security alert: supposed LockBit intrusion into the Federal Reserve systemPossible consequences and responses of the authorities to the alleged cyber breach of the Federal Reserve

Serious digital security incident in Indonesia puts sensitive national data at riskRecent vulnerabilities and the national response to cyberattacks