Weak-Encryption/EN: Unterschied zwischen den Versionen
(Die Seite wurde neu angelegt: „=== <span style="color:#c31622">{{:{{PAGENAME}}/Headline}}<span>=== {| class="wikitable" |'''Check'''|| {{:{{PAGENAME}}/Negative}} |- |'''Beschreibung'''…“) |
|||
| Zeile 15: | Zeile 15: | ||
[[Category:Siwecos-Scanner]] | [[Category:Siwecos-Scanner]] | ||
| − | + | {{:{{PAGENAME}}/Category}} | |
[[Category:Glossar]] | [[Category:Glossar]] | ||
Version vom 8. März 2019, 09:19 Uhr
Check of the certificate's encryption strength
| Check | Weak hash algorithm |
| Beschreibung | This message means that your server certificate has a weak hash algorithm. This can potentially cause it to be falsified and is displayed as insecure in many browsers. |
| Hintergrund | Server certificates increase security on the internet and are used to verify the identity of websites. A certificate is issued and verified by an official, trustworthy institution. A certificate cannot be forged - in case of a weak hash algorithm (encryption), it can be swapped by a third party. In everyday life, a certificate can be compared to an identity card or a notarized document. Similar to a passport, certificates are also valid for a certain period of time. Thus certificates make it possible to exchange data via secure connections and form an important basis of trust for operators of online shops. |
| Auswirkung | In the worst case, a weak hash algorithm can lead to attackers creating a fake certificate for your website and impersonating your website. This means that one server can impersonate another server. Criminals may be able to access your customers' personal information such as passwords or credit card information. |
| Lösung / Tipps | If weak hash algorithm was reported, you should install a new certificate with a secure hash function. For information on how to obtain a secure certificate, please refer to: install certificates (German only). |
