Microsoft ending support for RC4 cipher in early 2016

Posted by with Tags
Vamien McKalin possesses the awesome power of walking on water like a boss. He's also a person who enjoys writing about technology, comics, video games, and anything related to the geek world.

One Comment

  1. Dan

    It’s a good step that one of the most-used browsers won’t support RC4, and hopefully IE/Edge will go further and not support less than TLS 1.2…secure sites need such industry impetus to upgrade. The other year many USA banks went back to RC4 in reaction to BEAST attacks re 256 AES at the time; one my wife uses has been found to have now gone from RC4 to RSA 2048 bit (extended)…which doesn’t support TLS 1.2 or forward secrecy, leaving it open to more attacks than just BEAST, and supports weak D-H parameters so a hacker can downgrade banking encryption. BTW, IE to me appears to also be the only browser reliably not supporting weak D-H (sometimes FF, Opera do but depending on version). Cheers!

Leave a Reply

Your email address will not be published. Required fields are marked *

9 + 9 =