1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)

Firefox to Stop Supporting MD5-Based SSL

SSL technology has of course developed over the years; the current standard is 2048-bit. 1024-bit encryption is now outdated. This is because hackers have become much more sophisticated. Cyber-crime has become big business, and there is a lot of money to throw around to pay intelligent people to find exploitable loopholes in technology. Some of the older RapidSSL, still in operation, are 1024-bit. Additionally, these SSL are signed with MD5, the algorithm that determines how the certificate encrypts data. MD5 has been proven susceptible to man-in-the-middle attacks.

Firefox has decided to no longer support MD5. Firefox’s updated browser that will not recognize MD5 as legitimate SSL encryption is planned for release on June 30, 2011 (link below).

The good news is that reissuance is a simple and FREE process. If you feel you may have an MD5-signed certificate, if it was purchased through us, you should have received two Security Alert emails. If for some reason you did not, the important date is December 31, 2008. Any RapidSSL purchased prior to that date should be reissued and reinstalled. Again, reissuance is FREE. The link to reissue is at the end of this article. Below it is a special, OPTIONAL offer to upgrade and improve your mobile device compatibility instead. Either reissuance or replacement will solve the MD5 problem.

We know this is a pain, but we do think Mozilla is taking the right action to make the Internet a safer environment.

Mozilla Announcement: https://wiki.mozilla.org/CA:MD5and1024

FREE Standard/Wildcard Reissue Page: https://knowledge.geotrust.com/support/knowledge-base/index?page=content&id=AD302&actp=search&viewlocale=en_US

Mobile Device Compatibility: http://tinyurl.com/sslstorecisco

A.) OPTIONAL Standard SSL Replacement: Heavily discounted GeoTrust QuickSSL Premium.

B.) OPTIONAL Wildcard SSL Replacement: Heavily discounted GeoTrust TrueBusinessID Wildcard.