All you need to know about 128-bit
The 128-bit encryption level has been regulated in France for a while. You'll find here some information about the current situation and the technology condition.- Why do I need to systematically enable 128-bit?
- Do you issue 128-bit certificates?
- How to enforce 128-bit with a standard certificate?
- How to enable 128-bit with a SuperCert certificate (BXA / SGC)?
- Do I need 40- or 128-bit encryption?
It does not impact the normal operation of the installed certificates.
Technically the consequences should be limited on the secured services: indeed, current browsers give by default priority to high encrypted negociations and most of the time enable 128- or 256-bit encrypted connections. Moreover, most up-to-date servers are pre-configured to use 128-bit encryption minimum.
Which browsers behave differently?
A behavior difference between GlobalSign SGC and standard certificates can be witnessed on the rare following browsers (more than 10 years old and rarely used nowadays):
- Internet Explorer export version 5.01 (Release date, 18/12/2001)
- Netscape version export version 4.51 Ã 4.72 (Release date March 1999)
- Systems under Windows 2000 delivered prior to March 2001 and that did not download Microsoft High Encryption Pack or Service Pack 2 and using Internet Explorer
More recent browsers are natively 128- or 256-bit and behave the same way with or without a SGC certificate.
See also: