The Latest in IT Security

Facebook tells developers to use SHA-2 certificate signatures for digital verification of apps

03
Jun
2015

Encryption_key_thumb800

The SHA-2 certificate signatures will replace those signed with SHA-1 and apps that use SHA-1 after October won’t work on #facebook anymore, Adam Gross, a production engineer at the company, stated a blog post.

“We recommend that developers check their applications, SDKs, or devices that connect to Facebook to ensure they support the SHA-2 standard,” Gross wrote. SHA-1 has been considered weak for about a decade. Researchers have shown it is possible to create a forged digital certificate that carries the same SHA-1 hash as legitimate one.

Related posts:
  1. Mozilla Creates $10K Bug Bounty Program for New Certificate Verification Library
  2. How to Secure Digital Signatures
  3. Transitive trust and SSL certificate verification
  4. Cybercriminals Sign ZeuS Banking Trojan with Valid Digital Certificate
  5. Spyware Hides Behind Stolen Opera Digital Certificate

Read More

Tags:  
Written by Techworld
0 Comments

Leave a reply


Categories

FRIDAY, APRIL 26, 2024
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments