Microsoft to remove SHA-1 Windows content from the Microsoft Download Center

Microsoft Windows 10

SHA-1 is a cryptographic hash that is no longer secure. If SHA-1 hashing algorithm is used in digital certificates, an attacker can perform phishing attacks or man-in-the-middle attacks. To keep its users protected, Microsoft yesterday announced that it will retire content that is Windows-signed for SHA-1 from the Microsoft Download Center on August 3, 2020. Microsoft recommends customers to move to SHA-2 algorithm for secure connections.

Beginning in August 2019, devices without SHA-2 support have not received Windows updates. If you are still reliant upon SHA-1, we recommend that you move to a currently supported version of Windows and to stronger alternatives, such as SHA-2.

Customers with legacy OS versions (Windows 7 SP1, Windows Server 2008 R2 SP1 and Windows Server 2008 SP2) should have SHA-2 code signing support installed on their devices to receive updates from Microsoft. You can learn more about it here.

Source: Microsoft

Some links in the article may not be viewable as you are using an AdBlocker. Please add us to your whitelist to enable the website to function properly.

Related
Comments