I have been identifying SHA-1 as oblselete in audit/vulnerability reports for a while now, with some occasional push-back from clients. While SHA-1 is better than nothing, the article below highlights another reason to upgrade.
http://infoworld.com/t/data-security/amazon-ec2-enables-brute-force-attacks-the-cheap-447
No comments:
Post a Comment