SSL Certificates

Your 1024-bit SSL certificate will no longer work after the 1st of October 2013. What to do?

As of January 1st, 2014, the Certificate Authorities (CAs) will no longer support SSL Certificates and Code Signing certificates with a 1024-bit encryption. This decision has been made public by the CAs several years ago, but the closing date is now rapidly approaching.

There are, however, several Certificate Authorities who want to stop earlier, on the 1st of October. The following only concerns active SSL certificates. As of the 1st of October, all newly requested SSL certificates will be encrypted with a 2048-bit encryption. Of the brands being sold by Networking4all, this is only applicable to Symantec, Thawte, GeoTrust, GlobalSign and Networking4all.

From the 1st of October 2013, your SSL certificate with a 1024-bit encryption will be invalidated by the Certificate Authority. The only solution for this, is to request a new SSL certificate. For any help in this process, please contact our sales department on +31 (0)20 788 1030.

Order a SSL certificate with a 2048 bit encryption
View and compare prices on the order page.

While the current 1024-bit encryption is still safe, experts have expressed their concerns that the growing calculative power of computers make it possible for the 1024-bit encryption to be hacked before the end of this decade. A 2048-bit key will significantly slow this process down.

The CA/Browser Forum, a consortium of Certificate Authorities and other major players in the industry, have therefore designed new regulations that will only allow CAs to support 2048-bit encryptions as of the 1st of January, 2014. After the 1st of October 2013, all 1024-bit encrypted certificates will have already been invalidated.

How do I know if I still own 1024-bit SSL certificates?

  1. Use our Site Check to check if your SSL Certificate is encrypted with a 1024-bit encryption.

  2. If you have not upgraded your certificate to a 2048-bit encryption before the 1st of October 2013, your SSL certificate will no longer work and will show errors in your browser. You will no longer be protected.

How have the CA and Networking4all informed me?

Networking4all and the CA have informed you in several ways since the initial announcement of this new regulation 5 years ago and have given additional attention to the upcoming change in regulation during the past few months.

  1. The CA s have contacted the administrative and/or technical contact assigned to the 1024-bit certificate via email.

  2. Networking4all has actively tried to contact as many of our customers as possible in the past few months via our website, our newsletters, via email and by phone about the upcoming change in regulation. Unfortunately, we were unable to contact a small part (+/- 5%) of our customers by phone due to out-of-date personal information in customer accounts or because the contact was absent.

I have one or more 1024-bit certificates that no longer work and I haven't upgraded before the 1st of October 2013. What do I do?
If you have not upgraded and/or extended your 1024-bit certificate to a 2048-bit certificate BEFORE the 1st of October 2013, unfortunately this means that your current certificate has been invalidated and can no longer be activated. You will have to order a new SSL certificate with a 2048-bit encryption through our portal or website. Click here to make your order.

Does this change also apply to 1024-bit SSL certificates that have an expiration date after the 1st of October 2013?
These would be SSL certificates with an expiration date of 2014 or later. Yes, SSL Certificates that remain valid after the 1st of October 2013 AND have a 1024-bit encryption AND have not been upgraded to a 2048-bit encryption before the 1st of October 2013 will also have been invalidated on the 1st of October 2013. This does NOT apply to SSL Certificates that have an expiration date after the 1st of October 2013 and were 2048-bit encrypted at the time of purchase, or that have been upgraded to a 2048-bit encryption before the 1st of October 2013.

What happens if I request a certificate with a 1024-bit encryption after the 1st of October 2013?
You will receive a message during the order process that 1024-bit encryption can no longer be issued and will subsequently be asked to supply a CSR with a 2048-bit key.

If you have any more questions or if you need help replacing your 1024-bit certificate, please contact our sales team via +31(0)20 788 1030.

Monday 30 September 2013
Follow Networking4all on Twitter
Twitter Hyves Facebook Google Buzz MySpace LinkedIn Bookmark and Share

SSL Certificates

Tools

Resellers

Networking4all

PO Box 15320
1001 MH Amsterdam
The Netherlands

T: +31 (0)20-7881030
F: +31 (0)20-7881040
E: info@networking4all.com


rss twitter facebook linkedin