Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Drops Aging Encryption Schemes

Posted by Zonk on Friday September 16, 2005 @12:35AM from the updating-their-friends-list dept.

christchurch wrote to mention an Eweek column about Microsoft's decision to stop using DES, MD4, and MD5 for encryption in Vista. From the article: "All three algorithms show signs of 'extreme weakness' and have been banned, Howard said. Microsoft is recommending using the Secure Hash Algorithm (SHA)256 encryption algorithm and AES (Advanced Encryption Standard) cipher instead, he said. The change is part of a semi-yearly update to Microsoft's Secure Development Lifecycle policies by engineers within Microsoft's Security Business & Technology Unit."

4 of 199 comments (clear)

Min score:

Reason:

Sort:

Allowed by US Gov? by guruevi · 2005-09-16 00:42 · Score: 4, Interesting

Is that even allowed by US Gov. to export that to other countries? I thought that there was a limit of encryption and everything above ...bits was banned from exporting (remembering 56-bits encryption Windows NT).

--
Custom electronics and digital signage for your business: www.evcircuits.com
I'm not sure but.... by amodm · 2005-09-16 00:46 · Score: 5, Interesting

wasn't NTLM slightly based on/uses DES ? If thats the case, then does it mean that they are changing the algo used in SAM too ?
Re:ROT13 by Anonymous Coward · 2005-09-16 01:04 · Score: 5, Interesting

It wasn't banned for XP. Check out HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Explorer\UserAssist to see for yourself.
HTTP Digest by hey · 2005-09-16 01:41 · Score: 4, Interesting

MD5 is used in the HTTP digest authenticattion.
I hope they'll still support that!