SHA 1 Critical Vulnerability Notice

On October 8, 2015, a team of international cryptography researchers warned of a significantly increased risk in using SHA-1 certificates, and recommended that administrators accelerate their migration to SHA-2 certificates. The risk is that, with enough computing power, an attacker can craft a fake certificate that in all key respects appears to be signed by a public Certification Authority (it cryptographically chains up to a Certification Authority’s root certificate). This doesn’t mean that websites is suddenly insecure, but it certainly is a wake-up call. The current policy of most browsers stipulates that they will completely reject SHA-1 TLS certificates on January 1, 2017. However, in light of these new findings, it’s highly possible the deadline will be accelerated. If your […]

Read More

Replacing SHA-1 with SHA-2 certificates

How to Replace SHA-1 with SHA-2 certificates: Depending on what Certificate Authority and how you purchased your certificate a reissue of the certificate may be available to you. This would require a New CSR to be generated typically with a reissue or replace option available in a portal that is used to manage your SSL certificate. The end result will be a new SHA2 SSL certificate issued that will then have to be reinstalled back on the server system. Identify certificates that have a SHA-1 algorithm. Knowing the Order number or Common Name of the SSL certificate issued will typically be required. If your SSL certificate was issued through Acmetek Click HERE. Note: Contact your Certificate Authority for procedures in […]

Read More