Secure Hash Algorithm Update

SHA1updateThe Secure Hash Algorithm (SHA) has continued to evolve since its inception in 1993.

Most major browser developers, including Google, Microsoft and Mozilla, had originally scheduled to discontinue support of the SHA-1 algorithm in 2017. However, the industry has aggressively accelerated the schedule due to the recent POODLE SSL v3.0 vulnerability (Padding Oracle On Downgraded Legacy Encryption).

Therefore, SendThisFile has upgraded the encryption strength of its SSL certificates from SHA-1 to SHA-2 (SHA-256). It is important to understand that this mainly impacts older browser clients.  SHA-256 is supported by most modern operating systems and browsers.

The 2014 vulnerability events of Heartbleed, BASH Shellshock, and most recently POODLE SSL v3.0 have been challenging and have certainly raised the bar on data security. Our decision to increase the encryption strength of our certificates is based solely on increasing the security of our client’s data.

If for any reason you have difficulty connecting to the SendThisFile system, or have other security related questions, please contact us or call us at +1 316.942.4707.