iCover! , , : Gmail, Google, Facebook, Microsoft Twitter. , SHA-1, - , . – SHA-2. .
, 1 2016 SSL - SHA-1 , SHA-2.
:
SHA-1 (Secure Hash Algorithm Version 1 — , 1) 1995 . SHA-1 2005 . ( 2 ) 160- - ( ).
SHA-2 (Secure Hash Algorithm Version 2 — , 2) — — -, SHA-224, SHA-256, SHA-384, SHA-512, SHA-512/256 SHA-512/224, (). 2002 .
SHA-2 – SHA-1 160- , . , , Netcraft
One million SSL certificates still using “insecure” SHA-1 algorithm, SHA-1. , SHA-1 , 10%.
SHA-1 vs SHA-2 (source: Netcraft SSL Survey October 2015) SHA-2 SHA-1 2015 , 24%, SHA-1, Chrome Firefox, , , - SHA-1, SHA-2 ., (Ivan Ristic), SSL Labs Qualys: “… , 75% SHA 2, , , 2016 ”, , ” …Windows XP SP2 , Android 2.2 SHA-2 ”.SHA-1
IT- , - SHA-1 ( — - ). : SHA-1 SLL . , SHA-1
Freestart collision for full SHA-1.
, SHA-1 IT- 2017 . , , - SHA 1 10 (!) 64 . , , ”… “” - SHA-1 $75 . $100 . , , CPU” – .
SHA-1 , (. Freestart collision for full SHA-1 ). , SHA-2 . , Symantec 12 Entrust, Microsoft Trend Micro SHA-1 2016 .
: “… 2016 ”. .
- SHA-1
, SHA-2, , :
- , .
- , , . ( CPU).
- .
, SSL- SHA-1.
Nist (U. S. National Institute of Standards and Technology), SHA 2, SHA-3. - SHA-3, , SHA-2, - , , . SHA-2 (99.99%) – Netcraft, SHA-256 , DigiCert, SHA-384 SHA-512.
1 2016 - SHA-1 , SHA-2. 2017 Firefox Chrome , . SHA-1 , 2016 Mozilla. , SSL- - SHA-1 2017 , , 1 2017 , . “” (Deloitte) SHA-1, 2020 Google Chrome ( netcraft.com).
, SHA-1 SHA-2, , , , , SHA-2 . , , , , .
, SHA-2 . , Mozilla. (Chris More), Firefox, - SSL - SHA-2 ”… ”. , , - .
***
, iCover! , . , ,
— !