Facebook, CloudFlare and SHA-1 Fallback

SHA-1 certificates are increasingly insecure, so moves by CloudFlare and Facebook to maintain SHA-1 support may seem counter-intuitive. However, both companies make a case that the secure access of millions of users is at stake.

What Is SHA-1?

SHA-1 is a cryptographic hash function that can convert an arbitrarily long string of data into a digest with a fixed size of 160 bits. This digest is commonly displayed as a 40 character hexadecimal number. The SHA-1 algorithm is considered insecure, and is being deprecated » Continue Reading.

Upgrade a Certificate from SHA-1 to SHA-2

SHA-1 is a cryptographic hash function – an important component of the process that the SSL protocol uses to protect your data. Although SSL certificates using SHA-1 are currently secure, the pace of technological change means that it could be vulnerable in the near future. For » Continue Reading.

SSL.com Root Certificates

The lists below display the path of trust from the root certificate, through the required intermediate certificates (if any) to the server certificate (which is the certificate you purchased from SSL.com) for each SSL.com product we offer.

SSL.com Announces SHA-2 SSL Support

Microsoft, Google and Mozilla have all announced various plans to stop supporting SHA-1 SSL certificates after January 1, 2017. As a result, SSL.com began issuing SSL certificates using only SHA-2 (aka SHA-256) as the default hashing algorithm starting September 24, 2014. There are no special flags » Continue Reading.

Is SHA1 Considered Weak for SSL?

SHA1 SSL Certificates This is a question we get frequently, so we thought we’d put together a page that explains why some testing sites are starting to flag SHA1 as “weak.” Various SSL Labs sites are available that will give you a rundown of what you’re » Continue Reading.