My feedback

1 result found

1. Use 4096 bits public key certificate

   188 votes

   Vote Vote Vote

   Vote

   We're glad you're here

   Please sign in to leave feedback

   Signed in as (Sign out)

   Close

   Close

   1 vote 2 votes 3 votes Remove votes

   You have left! (?) (thinking…)
   3 comments  ·  Golden Frog Ideas » VyprVPN - General  ·  Delete…  ·  Admin →
   How important is this to you?

   Not at all You must login first! Important You must login first! Critical You must login first!

   We're glad you're here

   Please sign in to leave feedback

   Signed in as (Sign out)

   Close

   Close
   Dirk Gently supported this idea  ·  Mar 3, 2016
   An error occurred while saving the comment
   Dirk Gently commented  ·  Mar 3, 2016  ·  Delete…

   Today VyprVPN uses a top level GoldenFrog certificate which is 2048 bit v3, but uses sha1 algorithm.
   This, and all certificates VypnVPN should move to sha256 due to known vulnerabilities with sha1. And as per this original request, uplifted to 4096 bit.
   Until done, this makes VypnVPN non-compliant to both PCI-DSS and NIST standards.

   Also, given the GoldenFrog code signing certificate is up for renewal (19-May-2016), it should be fixed to be properly trusted in the certificate store and also sha256.

   As GoldenFrog own the end to end of the VypnVPN service, can they confirm:-
   1. that they're working towards updating to newer TLS 1.2
   2. that VypnVPN isn't one of those services that failed the tests via https://www.htbridge.com/blog/90-percent-of-ssl-vpns-use-insecure-or-outdated-encryption.html

   I enjoy using the service, but given recent articles in the public press I want to be assured this is a secure end-to-end service.

   Save Submitting...