Upgrading SSL certificates should be at the top of your year-end to-do list
The year is quickly coming to a close, and it’s that time again for IT administrators to prepare a list of tasks to complete before the new year begins. If you are one such administrator, or a webmaster managing public facing websites, here’s an important tip: if any of your websites use SHA-1 (Secure Hash Algorithm 1) SSL certificates, you should immediately migrate to SHA-2. Otherwise, your valuable customers will end up seeing bright red security errors and warnings on your website starting Jan 1, 2017!
Now before sketching out the SHA-2 migration plan, let’s spend a few moments getting (re)acquainted with Secure Socket Layer (SSL) and SHA technologies so that the migration makes sense.
SSL encryption: the gold standard for secure communication
SSL is a protocol used to transfer information securely over the internet. Websites today posses SSL certificates, a digital certificate signed by a trusted third party that both verifies the ownership and encrypts the data being transmitted, thereby providing data integrity and privacy for customers. Recently, following incidents such as the Heartbleed bug in OpenSSL, people have started second guessing SSL technology. But the real problem lies not with SSL technology itself, but with the way the encryption is handled.
Read the entire article here, Upgrading SSL certificates should be at the top of your year-end to-do list
via the fine folks at ManageEngine