SHA-1 Certificates Vulnerability

SHA-1 certificates have been identified as vulnerable for some time and most browsers have stipulated that these certificates won’t be rejected until January 1, 2017. However, based on recent research, there is a significant increase of risk in using SHA-1 certificates and it is strongly recommended to replace them with SHA-2 certificates as soon as possible.

UBC IT has contacted site owners who have SHA-1 certificates purchased through UBC IT about this advisory.

Recommendation:

Links

http://arstechnica.co.uk/security/2015/10/sha1-crypto-algorithm-securing-internet-could-break-by-years-end/
https://sites.google.com/site/itstheshappening/

Questions

Please contact security@ubc.ca if you have any questions.