As of 1/1/14 - 1024-Bit RSA Certificateswill no longer be supported
I have a 2003 SBS server with a self signed certificate that is 1024 RSA. I use the server for RWW and OWA (Smart Phones). How will I be effected?
Also, I use Internet Explorer. How will it be effected?
Thanks
Also, I use Internet Explorer. How will it be effected?
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
This would be useful with more screen captures. In order to be NIST compliant 1024 bit security should not be used after the end of 2013. This does not mean that all CAs and browsers will stop accepting 1024 bit certificates at the end of 2013. You should definitely plan on updating your applications to support 2048 bit RSA certificates or ECC certificates, but nothing is going to suddenly stop working at the end of this year.
http://blogs.technet.com/b/pki/archive/2012/06/12/rsa-keys-under-1024-bits-are-blocked.aspx
http://blogs.technet.com/b/pki/archive/2012/06/12/rsa-keys-under-1024-bits-are-blocked.aspx
http://support.microsoft.com/kb/2661254
Internet Explorer will not allow access to a website that is secured by using an RSA certificate that has a key length of less than 1024 bits.
Outlook 2010 cannot connect to a Microsoft Exchange server that is using an RSA certificate that has a key length of less than 1024 bits for SSL/TLS. The following error is displayed: "Information you exchange with this site cannot be viewed or changed by others. However, there is a problem with the site's security certificate. The security certificate is not valid. The site should not be trusted."
There are resolution which is to use more than 1024 buts certificate and interim of enabling shorter keys..