30 days guarantee

SHA-1 is no longer a theoretical threat

Get in touch now

 

Another satisfied customer

More info
Register your Domain Name
  • Bulk transfer domains
  • Register 400+ domain extensions
  • Free DNS management
  • Industry leading grace and redemption periods
  • No hidden fees

SHA-1 is no longer a theoretical threat

From our ongoing communication, you may have noticed that the SHA-1 algorithm is being progressively replaced by SHA-2 – some browsers already display SHA-1 security warnings.

After a new report was released last week, security experts are strongly urging website owners to ensure their SSL certificates are using the SHA-2 algorithm, following the successful “Freestart Collision” on SHA-11.

What this means for you

While this type of collision does not lead to a full SHA-1 collision directly, it enabled security experts to better predict the possibility of a successful SHA-1 attack on the remaining 24.2% of websites still relying on SHA-1 (as of October 2015)2:

The price of a full SHA-1 collision is now estimated to cost hackers as little as $75K and requires a mere 49-78 days3 – this means attacks on websites still using SHA-1 are already feasible for criminal syndicates, two years earlier than initially estimated and a year before browsers mark SHA-1 websites unsafe4.

Check if you’re using SHA1

The report highlights what we, at SSL247® have emphasised since 2014 and falls in-line with our latest webinar, which talked about a smooth migration to SHA-2:

We urge all customers to renew or reissue their SHA-1 certificate now to avoid putting their website’s security at risk.

Upgrading to SHA-2 smoothly with SSL247®

The latest report is another reminder of why preserving your website’s security is essential. At SSL247®, we offer three ways of upgrading your SSL to SHA-2 easily with minimal effort:

  • Renew your current SSL through your dedicated account manager.
  • Competitive Replacement for new clients, switches your SSL provider to a trusted partner CA.
  • Reissuance is quick and easy to do through either your account manager, or electronically via the MySSL® portal.

Any remaining time on your current certificates will also be added onto your new certificate – so you won’t lose out.

Sources:

If you have any questions or simply want more information, contact one of our accredited specialists for a FREE no-commitment consultation now.

   076 606 0009
  sales@ssl247.ie

Share this:

Posted on Thursday 22 October 2015 by

Return to blog

Send us your comments


Your comment will not be published. If you have a question, do not forget to write your email address so that we can get back to you!

Symantec

Norton seals are viewed more than half a billion times a day on more than 100,000 websites in 170 countries and in search results on enabled browsers, as well as partner shopping sites and product review pages. When website visitors see the Norton Trust Seal, they are less likely to abandon a transaction and more likely to do business with you online.

SSL Certificates

Our Partnerships
Our Accreditations
Our Trust Seal
Sitemap | Cookies | Legal
© 2017 . All rights reserved. SSL247 SARL is registered at Registre du Commerce in Roubaix-Tourcoing - RCS 508308 079. | Tel: 076 606 0009

Cookies SSL247 uses cookies to provide you a seamless user experience. For more information please read our Terms & conditions. Continue