Back

Microsoft Beefs Up Azure Security With Cryptography

If you’ve been worried about the Heartbreak virus, here’s some new good news from Microsoft regarding their Azure Web Sites.  Microsoft continuously upgrades their security measures to stay in line with regulatory compliance standards...

2 min read
Published on Jun 26, 2014
microsoft-beefs-up-azure-security-with-cryptography

If you’ve been worried about the Heartbreak virus, here’s some new good news from Microsoft regarding their Azure Web Sites.  Microsoft continuously upgrades their security measures to stay in line with regulatory compliance standards, such as HIPA, FINRA and FISMA.  Agile IT is proud to be a Microsoft Partner and be able to tell our clients in complete sincerity that their information is safe in the Microsoft Cloud.

Microsoft Beefs Up Azure Security With Cryptography

This article excerpt, by Chris Talbot, originally appeared here: https://bit.ly/1itt6Pr

Security may not be as big of a concern when it comes to cloud as it was a few years ago, but it still comes up as an important concern when CIOs are polled. So Microsoft’s (MSFT) latest security upgrade to its Azure Web Sites cloud service makes a lot of sense.

Following security issues surrounding the NSA and the Heartbleed vulnerability, Microsoft has employed elliptic curve cryptography (ECC) to make it more difficult for nogoodniks to break into customers’ offerings on its platform-as-a-service (PaaS).

“Securing your site with SSL has never been more important, but even though encryption isn’t new, cryptographers keep looking for ways to be more secure, and we in Azure Web Sites are always looking for ways to support the latest and greatest,” wrote Erez Benari, program manager for Azure Web Sites, in a blog post.

Benari goes fairly deep into the mathematics of ECC, but in the end, he noted the ECC encryption is harder by a factor of 10 than classic private/public key generation. Not insignificant, by any means, and Azure customers and partners are likely to be the beneficiaries of such cryptography on the Azure Web Sites service.

“What all this means in the real world is that instead of buying a regular SSL certificate to secure your site, you can choose to purchase an ECC certificate instead, thus having better security. ECC certificates are relatively new to the market, and so not many certificate providers offer them. One such provider is Symantec, and another is Entrust, and other providers will soon jump on the wagon as well,” Benari wrote.

This post has matured and its content may no longer be relevant beyond historical reference. To see the most current information on a given topic, click on the associated category or tag.

Related Posts

Risks of not using a CMMC RPO

The Risks of Not Using a CMMC RPO for Compliance and Certification Readiness

A CMMC RPO helps organizations prepare for certification and avoid compliance failures. Learn why working with an RPO is essential for achieving CMMC compliance.

Mar 20, 2025
8 min read
CMMC 2.0 Require GCC High for Compliance

Does CMMC 2.0 Require GCC High for Compliance?

Does CMMC 2.0 require GCC High? Learn the cloud options for compliance, data security, and protecting CUI under NIST 800-171 and DFARS.

Mar 17, 2025
10 min read
Office 365 License Comparison: Business Plans Vs. E5, E3 and E1

CMMC RPO vs a C3PAO: Understanding Their Roles in Compliance

Understanding the difference between an RPO and a C3PAO is crucial for CMMC compliance. Learn why they should be separate and how an RPO helps prepare for certification.

Mar 15, 2025
6 min read
Can You Meet CMMC with Google Workspace?

Can You Meet CMMC with Google Workspace?

Is Google Workspace CMMC compliant? Learn about its DFARS, NIST 800-171, and ITAR limitations and how migrating to GCC High ensures full compliance.

Mar 4, 2025
7 min read
Is Maintaining a GCC High Tenant Worth It for Non-Government

Evaluating the Need for a GCC High Tenant in Non-Government Organizations

Explore whether maintaining a GCC High tenant is necessary for organizations not involved in government work. Understand the pros and cons, costs, and compliance considerations.

Feb 25, 2025
7 min read
Top 10 Reasons to Partner with an MSP for Security and Compliance

Top 10 Reasons to Partner with an MSP for Security and Compliance

Discover why partnering with an MSP for security and compliance is critical for organizations navigating FAR CUI and CMMC requirements.

Feb 21, 2025
8 min read

Ready to Secure and Defend Your Data
So Your Business Can Thrive?

Fill out the form to see how we can protect your data and help your business grow.

Loading...
Secure. Defend. Thrive.

Let's start a conversation

Discover more about Agile IT's range of services by reaching out.

Don't want to wait for us to get back to you?

Schedule a Free Consultation

Location

Agile IT Headquarters
4660 La Jolla Village Drive #100
San Diego, CA 92122

Secure. Defend. Thrive.

Don't want to wait for us to get back to you?

Discover more about Agile IT's range of services by reaching out

Schedule a Free Consultation