Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: RSA Key Blocking is Coming


21 Jul 2012   #1

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium x64 SP1
 
 
RSA Key Blocking is Coming

Quote:
In August 2012, Microsoft will issue a critical security update for Windows XP, Windows Server 2003, Windows Server 2003 R2, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2. The update will block the use of RSA cryptographic keys that are less than 1024 bits.
Source

A Guy

My System SpecsSystem Spec
.

21 Jul 2012   #2

W7x64 Pro, SuSe 12.1/** W7 x64 Pro, XP MCE
 
 

While higher bits are great for security, I just checked and the highest that Opera uses, which I imagine is still higher than other browsers, is only 256 bit. It sounds to me that MS is attempting to block all encryption.
My System SpecsSystem Spec
21 Jul 2012   #3

Windows 7 Ultimate x64 SP1
 
 

@seekermeister: IE9 also uses 256-bit.

I'll probably just skip the update, personally; the ramifications here are overbearing and potentially disruptive and I don't see any real-world benefit from forcing 1024-bit minimum, it's not like we can't use 1024-bit encryption and up without this update.
My System SpecsSystem Spec
.


21 Jul 2012   #4

W7x64 Pro, SuSe 12.1/** W7 x64 Pro, XP MCE
 
 

Yes, but skipping the update doesn't necessarily eliminate the problem, because I would bet that the servers on many websites will get it, and that would prevent them from using the lower bit rate to work with the user browsers. Opera used to have a little padlock icon to indicate when encryption was functioning, but I don't find it now.

EDIT: Found it! They now have it appear in the address field when going to a secure website.
My System SpecsSystem Spec
24 Jul 2012   #5

Windows 8.1 Professional x64
 
 

What you're looking at isn't the RSA encryption. It's the AES encryption, which comes in 128, 192 and 256 bit variants.

The RSA key is something else and is the public and private keys used. RSA is used to authenticate users. When you send an encrypted message, to say a server. The server will have the private RSA key. A client will send the encrypted message, as well as the public RSA key they hold. You need the public and private key to match up to be able to communicate. RSA keys nowadays use between 1024 bit and 4096 bit key sizes, so the update will stop smaller key sizes being used.

And I don't see it affecting much. All that needs to be changed after is new keys generated with a higher cryptography.
My System SpecsSystem Spec
24 Jul 2012   #6

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium x64 SP1
 
 

Quote   Quote: Originally Posted by Everlong View Post
What you're looking at isn't the RSA encryption. It's the AES encryption, which comes in 128, 192 and 256 bit variants.

The RSA key is something else and is the public and private keys used. RSA is used to authenticate users. When you send an encrypted message, to say a server. The server will have the private RSA key. A client will send the encrypted message, as well as the public RSA key they hold. You need the public and private key to match up to be able to communicate. RSA keys nowadays use between 1024 bit and 4096 bit key sizes, so the update will stop smaller key sizes being used.

And I don't see it affecting much. All that needs to be changed after is new keys generated with a higher cryptography.
Thanks Harry, I knew the gist of that, but every explanation I found was way to geeky

A Guy
My System SpecsSystem Spec
25 Jul 2012   #7

Windows 8.1 Professional x64
 
 

You're welcome, it can get all quite confusing lol.
My System SpecsSystem Spec
25 Jul 2012   #8

Microsoft Community Contributor Award Recipient

Win 7 Home Premium 64bit Ver 6.1.7600 Build 7601 - SP1
 
 

So...What does this mean for the average home user like me, will it be invisible or at some point down the road rear its head to bite me?

I tried the
Code:
Certutil -dstemplate | findstr "[ msPKI-Minimal-Key-Size"| findstr /v "1024 2048 4096"
CMD in an elevated CMD window, and it must of ran, because it went right back to C:\Windows\system32> with no results, and without me having to touch return.

I imagine I have no templates. Is that good or bad?
My System SpecsSystem Spec
26 Jul 2012   #9

Windows 8.1 Professional x64
 
 

Quote   Quote: Originally Posted by Anak View Post
So...What does this mean for the average home user like me, will it be invisible or at some point down the road rear its head to bite me?

I tried the
Code:
Certutil -dstemplate | findstr "[ msPKI-Minimal-Key-Size"| findstr /v "1024 2048 4096"
CMD in an elevated CMD window, and it must of ran, because it went right back to C:\Windows\system32> with no results, and without me having to touch return.

I imagine I have no templates. Is that good or bad?
Just means when using an SSL connection that no keys under 1024 bits can be used for authentication.
My System SpecsSystem Spec
Reply

 RSA Key Blocking is Coming




Thread Tools



Similar help and support threads for2: RSA Key Blocking is Coming
Thread Forum
Solved CPU Fan Blocking 2 RAM slots - Pls. help! Hardware & Devices
RSA Key Blocking is Here Security News
Please Help Firewall Blocking. Network & Sharing
I think my network is blocking an IP Network & Sharing
Solved IE9 - Blocking Ads? Browsers & Mail
Blocking a partition General Discussion

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 01:57 PM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33