Microsoft to adopt stronger encryption for Internet Explorer 7
October 25, 2005
Microsoft is planning to adopt more powerful encryption technology in the next version of its Internet Explorer 7 browser application. According to a post on Microsoft's official IE development blog, IE7 will replace the aging SSLv2 (Secure Socket Layer) protocol with the more secure TLSv1 (Transport Layer Security) technology in default HTTPS protocol settings.
With these important changes, IE7 will offer improved Internet security for ecommerce transactions.
Users of IE6 can manually configure these stronger settings but the changes will mean that more users will be directed towards using the stronger SSLv3 or TLSv1 protocols rather than SSLv2. The change should be seamless for end users but adoption of the stronger encryption protocol by a wider percentage of surfers could create some work for sys admins.
Microsoft reckons that only a "handful of sites" left on the internet require SSLv2. "Adding support for SSLv3 or TLSv1 to a website is generally a simple configuration change," said Eric Lawrence, an IE program manager.
As part of Microsoft's "secure by default" design philosophy, IE7 will block encrypted web sessions to sites with problematic (untrusted, revoked or expired) digital certificates.
Users will receive a warning when they visit potentially insecure sites, which users can choose to ignore, except where certificates are revoked. "If the user clicks through a certificate error page, the address bar will flood-fill with red to serve as a persistent notification of the problem," Lawrence explained.
The Beta 2 version of IE7 also changes the way non secure content is rendered in a secure web page. IE7 renders only the secure content by default but it offers surfers the chance to unblock the nonsecure content on a secure page using the Information Bar.
In the same posting, Microsoft also revealed that the new Windows Vista platform will offer several crypto improvements beyond what's offered by IE7.
These include support for AES (Advanced Encryption Standard), a strong algorithm recently adopted as a US government standard for electronic security, which offers support for up to 256 bits encryption.
Windows Vista will also enables certificate revocation checking by default.
Source: The Register
Become an authorized reseller of Proxy Sentinel™ and Firewall Sentinel™. Do like the rest of our authorized resellers and have your clients benefit the important security features of our products and solutions, while increasing your sales at the same time. Click here for all the details.
You can link to the
Internet Security web site as
much as you like. Read our section on how your company can participate in our
reciprocal link exchange program
and increase your rankings
in the major search engines such as
Site optimized by Pagina+™
Powered by Sun Hosting
Search engine keywords by Rank for Sales
Development platform by My Web Services
Internet Security.ca is listed in
Global Business Listing