Announcement

Collapse
No announcement yet.

Google Works To Sunset SHA-1 In Chrome

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • OneTimeShot
    replied
    I'd prefer DNSSEC and DANE support

    Getting the bigger number in the crypto is great, but there are some really cool new technologies coming through based on DNSSEC and DANE. With these, the SSL certificate gets linked with your ownership of the DNSSEC record keys. That is, you can configure an IP address *and* certificate hash when you register your domain, and DNSSEC handles the rest.

    Leave a comment:


  • RahulSundaram
    replied
    Originally posted by pali View Post
    And will google warn users if accessing via http? Because it is easy to proof that https with sha1 has at least same security as http.
    No because https which is insecure lures users with a false sense of insecurity

    Leave a comment:


  • pali
    replied
    And will google warn users if accessing via http? Because it is easy to proof that https with sha1 has at least same security as http.

    Leave a comment:


  • phoronix
    started a topic Google Works To Sunset SHA-1 In Chrome

    Google Works To Sunset SHA-1 In Chrome

    Phoronix: Google Works To Sunset SHA-1 In Chrome

    Google will begin warning users when accessing HTTPS sites whose certificate chains are using SHA-1, due to this cryptographic hash algorithm being weak...

    http://www.phoronix.com/vr.php?view=MTc4MTk
Working...
X