Security News > 2024 > March > Microsoft announces deprecation of 1024-bit RSA keys in Windows

Microsoft announces deprecation of 1024-bit RSA keys in Windows
2024-03-18 19:51

Microsoft has announced that RSA keys shorter than 2048 bits will soon be deprecated in Windows Transport Layer Security to provide increased security.

1024-bit RSA keys have approximately 80 bits of strength, while the 2048-bit key has approximately 112 bits, making the latter four billion times longer to factor.

RSA keys are used in Windows for several purposes, including server authentication, data encryption, and ensuring the integrity of communications.

"Support for certificates using RSA keys with key lengths shorter than 2048 bits will be deprecated," reads the new entry in Microsoft's list of deprecations.

"Internet standards and regulatory bodies disallowed the use of 1024-bit keys in 2013, recommending specifically that RSA keys should have a key length of 2048 bits or longer."

While Microsoft has not specified precisely when the deprecation will begin, it will likely involve a formal announcement followed by a grace period, as we saw with the deprecation of keys under 1024 bits in 2012.


News URL

https://www.bleepingcomputer.com/news/microsoft/microsoft-announces-deprecation-of-1024-bit-rsa-keys-in-windows/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Microsoft 480 75 2308 5127 264 7774
RSA 12 0 46 18 3 67