Skip to main content
  1. Home
  2. Computing
  3. News

Here’s how all the major web browsers are tightening up web security

By
Add as a preferred source on Google

The most popular web browsers are calling time on SHA-1, the hashing algorithm for securing data, and will soon begin blocking sites that use it.

In a blog post, Microsoft stated that the algorithm was no longer secure and allowed attackers to carry out spoofs, phishing attacks, or man-in-the-middle attacks. From February 14, Microsoft Edge and Internet Explorer 11 will no longer automatically load up a site that uses SHA-1; instead they will display a warning message to the user about this invalid certificate before they go any further.

Recommended Videos

“Microsoft, in collaboration with other members of the industry, is working to phase out SHA-1,” Microsoft said. Website owners have been urged to update their certificates ASAP.

The news comes just a couple of days after Google made a similar announcement, explaining that Chrome 56 will not support the outdated hashing algorithm. Chrome 56 is tipped for release in late January but Google had previously outlined these plans almost a year ago.

Similarly, Mozilla’s Firefox will start winding down support for SHA-1 early next year as well, so expect all the major browsers to have left SHA-1 behind by spring 2017.

“Digital signatures incorporating the SHA-1 algorithm may soon be forgeable by sufficiently motivated and resourceful entities,” said Mozilla’s J.C. Jones last month when explaining the reason for making the move.

Hashing algorithms generally become outdated after some time when mathematical and computer processing grows in strength.

Once upon a time, the algorithm MD5 was the go-to hashing algorithm until it was replaced by SHA-1 as the standard. But as Google noted in its announcement last week, SHA-1 “first showed signs of weakness over eleven years ago,” so the industry shift away from the algorithm has been a long time coming.

“Enterprises are encouraged to make every effort to stop using SHA-1 certificates as soon as possible and to consult with their security team before enabling the policy,” said Andrew Whalley of Google Chrome’s security team.

A couple of recent hacks and data breaches have showed how some companies are still securing data with SHA-1 and in some cases even MD5, like the Last.fm breach.

Jonathan Keane
Jonathan Keane
Former Contributor
Jonathan is a freelance technology journalist living in Dublin, Ireland. He's previously written for publications and sites…
Topics
Apple’s next Mac Studio could get a new M5 Ultra chip and a cooler upgrade
The desktop workstation is tipped to receive an M5 Ultra this year, an M7 Ultra later, and a redesigned heat sink.
Apple Mac Studio Featured

Apple's Mac Studio may not be getting a fresh new look anytime soon, but it could be getting a meaningful upgrade where it matters most. According to Mark Gurman in the latest edition of his Power On newsletter, Apple is preparing an M5 Ultra-powered Mac Studio as early as this year, while an even more powerful M7 Ultra version is already on the company's roadmap for 2028. Interestingly, the report also claims Apple is redesigning one component most users will never see: the heat sink.

More power is coming, and Apple wants to keep it cool

Read more
Apple’s historically high tax for RAM upgrades on Macs has now become absurd
Mac RAM upgrade prices have doubled amid the global memory crunch
MacBook Pro.

Apple’s Mac RAM upgrades were already expensive enough to raise eyebrows. After the company’s latest round of price hikes, some of them now look ridiculous.

Apple recently raised prices across its Mac and iPad lineup, along with other products, citing rising memory and storage costs. The supply crunch is real, but Mac buyers were paying steep premiums for RAM and SSD upgrades long before this jump. Recent MacBook Pro configuration screenshots shared by 9to5Mac show how much worse the upgrade path has become.

Read more
Windows 11 is getting a new Screen Tint mode, and your eyes might thank Microsoft
Users can apply custom color overlays to reduce screen intensity and visual fatigue.
Windows 11 on a laptop

Microsoft is testing a new accessibility feature for Windows 11 called Screen Tint, and it could be one of those small additions that make a surprisingly big difference. Instead of changing your display's color temperature like Night Light, Screen Tint applies a customizable color overlay across the entire screen, making bright displays easier on the eyes during long work or gaming sessions.

A softer screen for tired eyes

Read more