SSL 인증서 도움말

Why do you require a 2048-bit key for my CSR?

Due to the increasing computing power available to decrypt SSL certificates, the Certificate Authority Browser (CAB) Forum (the entity that establishes SSL industry standards) requires that all SSL certificates issued after Jan. 1, 2014, use at least 2048-bit keys. SSL certificates that use 1024-bit keys are no longer secure.

How does my CSR's bit length affect my SSL certificate?

When you generate a certificate signing request (CSR) on your SSL certificate's Web server, you also create a public/private key pair for encrypting and decrypting secure transactions.

The bit length you select when generating the CSR determines the security level of your SSL certificate. The higher the bit length of your key pair, the higher the security level. For example, a 2048-bit key is much stronger and harder for a hacker to crack than a 1024-bit key.

To avoid putting the Internet and e-commerce users at risk, the CAB Forum published new baseline requirements for SSL certificates in 2011. We are a member of this organization, and we have supported this change by requiring 2048-bit length for all new and renewing SSL certificates issued since Jan. 1, 2011.

My SSL certificate uses a 1024-bit key. What do I need to do?

Like all Certificate Authorities (CAs), we are urging certificate holders to increase encryption levels to 2048 bits or higher.

If your SSL certificate uses a 1024-bit key, you should increase its bit length to 2048 or higher before Jan. 1, 2014.

Windows Home Server v1
Microsoft has information about what you need to do here.

All other server types
Generate a new CSR, and then re-key your certificate. There is no cost for this process.

If your SSL certificate renews before Jan. 1, 2014, you can create a 2048-bit key when you generate the CSR for your renewal.

이 글이 도움되었나요?
피드백을 보내주셔서 감사합니다. 고객 서비스 담당자에게 문의하시려면 지원 전화 번호 또는 위의 채팅 옵션을 이용하시기 바랍니다.
도와드릴 수 있어 기쁩니다! 더 도와 드릴 것이 있나요?
그것 유감스럽습니다. 혼동이 되었던 사항 또는 솔루션이 고객님의 문제를 해결하지 못했던 원인을 알려주세요.