Microsoft Edge and IE11 won’t support websites with SHA-1 certification

2 minute read

Home » News » Microsoft Edge and IE11 won’t support websites with SHA-1 certification

Microsoft has recently announced their plans to abandon support for TLS certificates signed by the SHA -1 hashing algorithm starting February of 2017. Microsoft further acknowledged that numerous websites, users, and third-party applications will be severely affected once the company deplores SHA-1 signed certificates.

Starting on February 14th, 2017, Microsoft Edge and Internet Explorer 11 will prevent sites that are protected with a SHA-1 certificate from loading and will display an invalid certificate warning. Though we strongly discourage it, users will have the option to ignore the error and continue to the website, said Microsoft in is blog post.

The revelation is not exactly news: the company hinted as much back in November.

The SHA-1 hashing algorithm, used for internet security in conjunction with with the HTTPS protocol and certificates used to protect Web sites, has been declared unsafe and vulnerable to attacks from well-funded adversaries back since 2005 but was largely utilized before until the SHA-2 and SHA-3 algorithms that were tested to be more secure alternatives for hashing functionalities came along. The initiative is not a new one and the function has previously been denounced and rejected by Google and Mozilla for being more prone to cryptographic collisions than estimated.

Microsoft has detailed that their browsers, Edge and the Internet Explorer, will now prevent sites using SHA-1 signed certificates from loading and will display an “invalid certificate” warning in order to restore security back to the services. Although users won’t be compelled to skip the sites, they will have the option to bypass the threat and access the potentially vulnerable website despite the warning, just without the “bar lock” trust icon that users see in the address bar of their browsers.

Third-party Windows applications running the Windows SHA-1 cryptographic API set or former versions of Internet Explorer will not be affected by these changes.

RELATED STORIES YOU NEED TO CHECK OUT:

Discussions

Next up

Power BI visual errors? Fix them with our best solutions

Alexandru Voiculescu By: Alexandru Voiculescu
3 minute read

Visualization is crucial in Power BI. Therefore, this feature should run smoothly. But this is not always the case. Many users reported various visual errors […]

Continue Reading

My computer doesn’t recognize Ledger Nano S

Vladimir Popescu avatar. By: Vladimir Popescu
2 minute read

Some users have noticed that their computer doesn’t recognize the Ledger Nano S hardware wallet. This issue can become extremely annoying in the case that you […]

Continue Reading

My laptop brightness is stuck on high: 3 steps to fix it for good

Tashreef Shareef avatar. By: Tashreef Shareef
2 minute read

All the Windows laptops come with the hotkeys to increase and decrease the display brightness. If that does not work, you can use the brightness […]

Continue Reading