HTTPS support for old devices and OSes ends Dec 31st
Posted: Thu Dec 17, 2015 2:09 pm
Most websites will drop support for SHA1 at the end of the year. There are still many devices and OSes that don't support SHA2, so they will effectively be unable to connect to most sites that use HTTPS.
Less of an issue in this country, but a big impact in the developing world.
No one should still be using XP SP2 but if they are, they will go dark (SP3 is okay). A surprising number of people use Android phones with old versions of Android.
If you have any friends or family you do IT for who have old gear, here's a heads up.
Facebook estimates they will lose 20 million users, so they have a creative way of dealing with it. Their servers will only offer SHA1 if they detect a user's OS or browser does not support SHA2, and they're offering that technology for free to anyone.
There's a list here of operating systems and browsers that don't support SHA2:
https://www.digicert.com/sha-2-compatibility.htm
Less of an issue in this country, but a big impact in the developing world.
No one should still be using XP SP2 but if they are, they will go dark (SP3 is okay). A surprising number of people use Android phones with old versions of Android.
If you have any friends or family you do IT for who have old gear, here's a heads up.
Facebook estimates they will lose 20 million users, so they have a creative way of dealing with it. Their servers will only offer SHA1 if they detect a user's OS or browser does not support SHA2, and they're offering that technology for free to anyone.
There's a list here of operating systems and browsers that don't support SHA2:
https://www.digicert.com/sha-2-compatibility.htm