NNSquad - Network Neutrality Squad
[ NNSquad ] Microsoft overhauls certificate management in response to Flame PKI hack
Microsoft overhauls certificate management in response to Flame PKI hack
http://j.mp/LigPyd (ars technica)
According to a post on the Microsoft Security Response Center blog by
Microsoft Trustworthy Computing spokesperson Angela Gunn, the new
certificate update tool will rely on a "Disallowed Certificate Trust
List" maintained by Microsoft. The tool will check the list daily,
moving certificates found on the list to an "untrusted" store. In the
past, moving certificates to untrusted status required manually
updating them.
Microsoft also gave advance warning of an update to how Windows
manages certificates that will blanket invalidate certificates that
don't have adequate security. Certificates with RSA encryption keys of
less than 1024 bits will automatically be marked as invalid. "Once
this key length update is released, we will treat all of these
certificates as invalid, even if they are currently valid and signed
by a trusted certificate authority," Gunn wrote.
- - -
--Lauren--
Lauren Weinstein (lauren@vortex.com): http://www.vortex.com/lauren
Co-Founder: People For Internet Responsibility: http://www.pfir.org
Founder:
- Data Wisdom Explorers League: http://www.dwel.org
- Network Neutrality Squad: http://www.nnsquad.org
- Global Coalition for Transparent Internet Performance: http://www.gctip.org
- PRIVACY Forum: http://www.vortex.com
Member: ACM Committee on Computers and Public Policy
Lauren's Blog: http://lauren.vortex.com
Google+: http://vortex.com/g+lauren / Twitter: http://vortex.com/t-lauren
Tel: +1 (818) 225-2800 / Skype: vortex.com
_______________________________________________
nnsquad mailing list
http://lists.nnsquad.org/mailman/listinfo/nnsquad