Rob_T

SHA-1 deprecation countdown

Discussion created by Rob_T on Nov 19, 2016
Latest reply on Nov 30, 2016 by j-mailor

fyr

 

 

 

MS:
https://blogs.windows.com/msedgedev/2016/11/18/countdown-to-sha-1-deprecation

Starting on February 14th, 2017, Microsoft Edge and Internet Explorer 11 will prevent sites that are protected with a SHA-1 certificate from loading and will display an invalid certificate warning.

 


Firefox:
https://blog.mozilla.org/security/2016/10/18/phasing-out-sha-1-on-the-public-web/

Once Firefox 51 is released in January, we plan to proceed the same way, starting with a subset of users and eventually disabling support for SHA-1 certificates from publicly-trusted certificate authorities in early 2017.


Chrome:
https://security.googleblog.com/2016/11/sha-1-certificates-in-chrome.html

We are planning to remove support for SHA-1 certificates in Chrome 56, which will be released to the stable channel around the end of January 2017

 

Outcomes