Microsoft cybersecurity initiative
Towards a more secure digital future: Microsoft leads the transition to longer RSA keys
Microsoft will increase security in Windows by no longer supporting 1024-bit RSA keys in favor of 2048-bit or higher ones, to improve the authenticity of TLS servers. This change will affect some existing infrastructure.
Microsoft, a renowned company in the technology sector, has decided to increase the level of security for Windows users by implementing a significant measure. The company plans to deprecate the use of 1024-bit RSA keys, which are used for server authenticity certification in the Transport Layer Security (TLS) protocol. The RSA algorithm, conceived by Rivest, Shamir and Adleman, is based on an asymmetric key cryptography mechanism, where the security offered depends on the length of the key used.
The vulnerability of 1024-bit keys
The 1024-bit RSA keys, equivalent to a cryptographic strength of around 80 bits, have been deemed unsafe by industry specialists, compared to the 2048-bit keys which are rated secure until 2030 due to their 112-bit strength. Microsoft's initiative to move towards more robust keys is supported by the directives of international standards and regulatory bodies, which since 2013 have prohibited the use of less secure 1024-bit keys, directing towards keys of at least 2048 bits.
Potential impacts on existing infrastructure
This transition, strongly desired by the Redmond company, could generate problems for organizations that still rely on devices and software that use the old cryptography, such as some network printers. Without proper updated RSA certification, the aforementioned devices risk losing the ability to authenticate with Windows servers once the deprecation is implemented on newer versions of the operating system.
Microsoft's efforts for a smooth transition
At this time, the company has not disclosed the exact timeline for implementing this policy, but expects reasonable time to be allowed for users to identify and resolve potential incompatibilities. Microsoft plans to limit the effects of the deprecation by excluding TLS certificates issued for business or testing purposes. In any case, the recommendation is to move to 2048 bit or higher RSA security keys as soon as possible, aligning with the most advanced data protection regulations.
Follow us on Google News for more pills like this03/19/2024 22:38
Marco Verro