IE7 still lacks in encryption

For those of us that use FireFox on a regular basis, 256 bit encryption is something we don't think about. It's just there, as it should be. SSL certificate providers have been issuing 256 bit certificates for several years now, so it's a no-brainer that browsers should support this.

In defense of IE6, it came out long before 256 bit certs became the norm, and very few feature enhancements were ever incorporated. However, IE7 is a different story. FireFox has supported them for quite some time, and IE7 is brand spanking new, but it still doesn't support 256 bit encryption.

Now I'm not saying that breaking 128 bit is so common that this is a HUGE security problem. But when something to make communications over a public network more secure is available, why wouldn't a software company choose to support those features?

Well, the answer found on the MSDN blog is that the dll they use for cryptography is part of the OS, so Vista will have the fix. Of course, IE3 and IE4 used their own cryptographic dll's, so they're just being lazy in my opinion by not making IE7 support 256 bit.


Popular posts from this blog

Audition results

Build Monday: Castle

Gear Friday: Percussion Toys