In other words, all Microsoft processes and services, including TLS certificates, code signing, and file hashing, would rely on SHA-2 exclusively beginning May 9, with the company to let the SHA-1 Trusted Root Certificate Authority expire.
Of course, it’s not difficult to see why this is happening. SHA-1 is no longer the most secure algorithm currently available, so making the switch to SHA-2 was just a matter of time.
In fact, the Redmond-based software giant is already using SHA-2 for several essential services, including Windows updates, which are all signed with this algorithm starting 2019. Furthermore, Windows signed SHA-1 content has already been pulled from the Microsoft Download Center.
“The SHA-1 hash algorithm has become less secure over time because of the weaknesses found in the algorithm, increased processor performance, and… (read more)
This post has been read 25 times!