SHA-1 Deprication Policy
Transitioning keys from 1024 bits to larger key sizes, as stipulated by NIST, is a big challenge for many in-house security teams. A great deal of testing may be required to bring crypto estates into compliance. This is especially important when upgrading SHA-1 for digital signature verification to SHA-256. Using deprecated hash functions and inadequate key sizes beyond 2013 is something companies need to address.
The implications are wide and the potential to impact production systems which depend on non-compliant PKI infrastructures is very real. We are very experienced in rebuilding, transitioning or re-keying existing PKI infrastructures.
We can rebuild your PKI infrastructure or transition it, so that it is compliant with the new NIST recommendations. We have had much success building parallel PKI infrastructures for companies and performing protracted upgrades.