Back

Microsoft Beefs Up Azure Security With Cryptography

If you’ve been worried about the Heartbreak virus, here’s some new good news from Microsoft regarding their Azure Web Sites.  Microsoft continuously upgrades their security measures to stay in line with regulatory compliance standards...

2 min read
Published on Jun 26, 2014
microsoft-beefs-up-azure-security-with-cryptography

If you’ve been worried about the Heartbreak virus, here’s some new good news from Microsoft regarding their Azure Web Sites.  Microsoft continuously upgrades their security measures to stay in line with regulatory compliance standards, such as HIPA, FINRA and FISMA.  Agile IT is proud to be a Microsoft Partner and be able to tell our clients in complete sincerity that their information is safe in the Microsoft Cloud.

Microsoft Beefs Up Azure Security With Cryptography

This article excerpt, by Chris Talbot, originally appeared here: https://bit.ly/1itt6Pr

Security may not be as big of a concern when it comes to cloud as it was a few years ago, but it still comes up as an important concern when CIOs are polled. So Microsoft’s (MSFT) latest security upgrade to its Azure Web Sites cloud service makes a lot of sense.

Following security issues surrounding the NSA and the Heartbleed vulnerability, Microsoft has employed elliptic curve cryptography (ECC) to make it more difficult for nogoodniks to break into customers’ offerings on its platform-as-a-service (PaaS).

“Securing your site with SSL has never been more important, but even though encryption isn’t new, cryptographers keep looking for ways to be more secure, and we in Azure Web Sites are always looking for ways to support the latest and greatest,” wrote Erez Benari, program manager for Azure Web Sites, in a blog post.

Benari goes fairly deep into the mathematics of ECC, but in the end, he noted the ECC encryption is harder by a factor of 10 than classic private/public key generation. Not insignificant, by any means, and Azure customers and partners are likely to be the beneficiaries of such cryptography on the Azure Web Sites service.

“What all this means in the real world is that instead of buying a regular SSL certificate to secure your site, you can choose to purchase an ECC certificate instead, thus having better security. ECC certificates are relatively new to the market, and so not many certificate providers offer them. One such provider is Symantec, and another is Entrust, and other providers will soon jump on the wagon as well,” Benari wrote.

This post has matured and its content may no longer be relevant beyond historical reference. To see the most current information on a given topic, click on the associated category or tag.

Related Posts

What Is a POAM?

What Is a POAM?

Learn how a Plan of Action and Milestones (POAM) helps meet NIST 800-171 & DFARS compliance. Understand its role in FedRAMP, security categorization, and risk mitigation.

Apr 8, 2025
8 min read
Best Cybersecurity Practices for Achieving CMMC Compliance

Best Cybersecurity Practices for Achieving CMMC Compliance

Achieving CMMC cybersecurity compliance requires strong security controls. Learn best practices for securing your IT environment, protecting CUI, and implementing MFA.

Apr 7, 2025
6 min read
8-pranks-for-windows-11-happy-april-fools

8 Pranks for Windows 11 - Happy April Fools!

Happy April Fools Day The day of the year when some IT staff think it might be humorous to do something to generate hundreds of support tickets for ...

Apr 1, 2025
3 min read
Office 365 License Comparison: Business Plans Vs. E5, E3 and E1

GCC High Vs GCC for Protecting CUI with CMMC

Learn the key differences between GCC and GCC High for handling CUI under CMMC, DFARS, and NIST 800-171. Find out which cloud meets your compliance needs.

Mar 31, 2025
4 min read
Risks of not using a CMMC RPO

The Risks of Not Using a CMMC RPO for Compliance and Certification Readiness

A CMMC RPO helps organizations prepare for certification and avoid compliance failures. Learn why working with an RPO is essential for achieving CMMC compliance.

Mar 20, 2025
8 min read
CMMC 2.0 Require GCC High for Compliance

Does CMMC 2.0 Require GCC High for Compliance?

Does CMMC 2.0 require GCC High? Learn the cloud options for compliance, data security, and protecting CUI under NIST 800-171 and DFARS.

Mar 17, 2025
10 min read

Ready to Secure and Defend Your Data
So Your Business Can Thrive?

Fill out the form to see how we can protect your data and help your business grow.

Loading...
Secure. Defend. Thrive.

Let's start a conversation

Discover more about Agile IT's range of services by reaching out.

Don't want to wait for us to get back to you?

Schedule a Free Consultation

Location

Agile IT Headquarters
4660 La Jolla Village Drive #100
San Diego, CA 92122

Secure. Defend. Thrive.

Don't want to wait for us to get back to you?

Discover more about Agile IT's range of services by reaching out

Schedule a Free Consultation