Microsoft cybersecurity initiative

Microsoft, a renowned company in the technology sector, has decided to increase the level of security for Windows users by implementing a significant measure. The company plans to deprecate the use of 1024-bit RSA keys, which are used for server authenticity certification in the Transport Layer Security (TLS) protocol. The RSA algorithm, conceived by Rivest, Shamir and Adleman, is based on an asymmetric key cryptography mechanism, where the security offered depends on the length of the key used.

The vulnerability of 1024-bit keys

The 1024-bit RSA keys, equivalent to a cryptographic strength of around 80 bits, have been deemed unsafe by industry specialists, compared to the 2048-bit keys which are rated secure until 2030 due to their 112-bit strength. Microsoft's initiative to move towards more robust keys is supported by the directives of international standards and regulatory bodies, which since 2013 have prohibited the use of less secure 1024-bit keys, directing towards keys of at least 2048 bits.

Potential impacts on existing infrastructure

This transition, strongly desired by the Redmond company, could generate problems for organizations that still rely on devices and software that use the old cryptography, such as some network printers. Without proper updated RSA certification, the aforementioned devices risk losing the ability to authenticate with Windows servers once the deprecation is implemented on newer versions of the operating system.

Microsoft's efforts for a smooth transition

At this time, the company has not disclosed the exact timeline for implementing this policy, but expects reasonable time to be allowed for users to identify and resolve potential incompatibilities. Microsoft plans to limit the effects of the deprecation by excluding TLS certificates issued for business or testing purposes. In any case, the recommendation is to move to 2048 bit or higher RSA security keys as soon as possible, aligning with the most advanced data protection regulations.