Weak-Encryption/EN

Aus Siwecos
Wechseln zu: Navigation, Suche

Check of the certificate's encryption strength

If the result is positive, there is no need for further action. If the result is negative, please read the following instructions.

Result positive Strong hash algorithm is used
Result negativ Weak hash algorithm
Description This message means that your server certificate has a weak hash algorithm. This can potentially cause it to be falsified and is displayed as insecure in many browsers.
Background Server certificates increase security on the internet and are used to verify the identity of websites. A certificate is issued and verified by an official, trustworthy institution. A certificate cannot be forged - in case of a weak hash algorithm (encryption), it can be swapped by a third party. In everyday life, a certificate can be compared to an identity card or a notarized document. Similar to a passport, certificates are also valid for a certain period of time. Thus certificates make it possible to exchange data via secure connections and form an important basis of trust for operators of online shops.
Consequence In the worst case, a weak hash algorithm can lead to attackers creating a fake certificate for your website and impersonating your website. This means that one server can impersonate another server. Criminals may be able to access your customers' personal information such as passwords or credit card information.
Solution/Tips If weak hash algorithm was reported, you should install a new certificate with a secure hash function. For information on how to obtain a secure certificate, please refer to: install certificates (German only).