Windows 10 News and info | Forum
May 19, 2019, Loading... *
Welcome, Guest. Please login or register.

Login with username, password and session length
News: This is a clean Ad-free Forum and protected by StopForumSpam, Project Honeypot, Botscout and AbuseIPDB | This forum does not use audio ads, popups, or other annoyances. New member registration currently disabled.
  Website   Home   Windows 8 Website GDPR Help Login Register  
By continuing to use the site or forum, you agree to the use of cookies, find out more by reading our GDPR policy.
Pages: [1]
Share this topic on Del.icio.usShare this topic on DiggShare this topic on FacebookShare this topic on GoogleShare this topic on MySpaceShare this topic on RedditShare this topic on StumbleUponShare this topic on TechnoratiShare this topic on TwitterShare this topic on YahooShare this topic on Google buzz
Author Topic: Windows 7 and Server 2008 Updates to Require SHA-2 Support Starting July  (Read 24 times)
Hero Member
Online Online

Gender: Male
United States United States

Posts: 30026

I Do Windows

WWW Email
« on: March 13, 2019, 01:22:07 AM »

Microsoft announced on its support website that future Windows 7 and Windows Server 2008 updates will require SHA-2 code signing support to be installed starting with July 16, 2019.

SHA-2 code signing support will be added to Windows 7 SP1 and Windows Server 2008 R2 SP1 on March 12 and April 9 respectively, as part of dedicated standalone security updates.

While Windows updates are currently using both the SHA-1 and SHA-2 hash algorithms for codesigning purposes, migration to the SHA-2 is necessary because of the SHA-1 algorithm becoming impacted by a number of weaknesses that made it less secure over the years.

According to Microsoft's support article:

To protect your security, Windows operating system updates are dual-signed using both the SHA-1 and SHA-2 hash algorithms to authenticate that updates come directly from Microsoft and were not tampered with during delivery. Due to weaknesses in the SHA-1 algorithm and to align to industry standards Microsoft will only sign Windows updates using the more secure SHA-2 algorithm exclusively.

Microsoft also advises customers who use Windows Server Update Services (WSUS) 3.0 SP2 to update their servers with the SHA2 updates for WSUS 3.0 SP2 until June 18 to make sure that they can deliver future SHA2-signed updates to their enterprise environment.

Windows Server Update Services (which was previously known as Software Update Services) is a program designed to allow Windows administrators to manage update and hotfix distribution to stations in a corporate environment.

The full schedule for the SHA-2 code signing support migration process can be found in the table below, however, the dates are subjects to change according to Microsoft:


Pages: [1]
Jump to:  

Powered by SMF 1.1.21 | SMF © 2017, Simple Machines

Google visited last this page March 14, 2019, 04:55:52 AM