在企业网络安全领域，微软Active Directory（AD）作为核心身份验证系统，已陪伴无数用户走过25年。然而，其长期依赖的RC4加密算法，却因严重安全漏洞而饱受诟病。 RC4（Rivest Cipher 4）由数学家Ron Rivest于1987年开发，自1994年算法泄露以来，便被视为不安全。

Microsoft released optional security updates Tuesday for various versions of the .NET Framework that prevent the RC4 encryption algorithm from being used in TLS (Transport Layer Security) connections.

Want smarter insights in your inbox? Sign up for our weekly newsletters to get only what matters to enterprise AI, data, and security leaders. Subscribe Now Google, Microsoft, and Mozilla all made the ...

Microsoft released optional security updates Tuesday for various versions of the .NET Framework that prevent the RC4 encryption algorithm from being used in TLS (Transport Layer Security) connections.

Microsoft has finally decided to discontinue the RC4 encryption method that has been supported by default in Windows for 26 years. By eliminating this old technology, which has been the target of ...

RC4’s long, messy reign over Windows authentication At the center of this shift is RC4, short for Rivest Cipher 4, a stream cipher that once powered much of the internet’s “secure” traffic and is now ...

There’s an old saying in the security community: Attacks always get better. The latest case where that holds true is for the aging RC4 cipher that’s still widely used to encrypt communications on the ...

Microsoft patched serious vulnerabilities Tuesday in Windows, Internet Explorer and Office, but also urged customers to stop using the aging RC4 cipher and SHA-1 hashing function in their systems and ...

There’s an old saying in the security community: Attacks always get better. The latest case where that holds true is for the aging RC4 cipher that’s still widely used to encrypt communications on the ...

What's your solution to hardening IIS against the BEAST? Prioritizing non-CBC ciphers (i.e. putting TLS_RSA_WITH_RC4_128_SHA and TLS_RSA_WITH_RC4_128_MD5 at the top of the list) does 'mitigate' the ...