Microsoft has quietly shipped two companion Release Preview builds — Build 26100.6718 (24H2) and Build 26200.6718 (25H2) — as part of the small cumulative package KB5065789, addressing a set of high‑impact regressions (notably the persistent 0x80070002 update failure and DRM playback breakage...
0x80070002
24h2
25h2
blu-ray playback
certificateauthorities
click to do table detection
crl partitioning
drm playback
enablement package
kb5065789
pki
release preview
windows 11
windows update
The landscape of enterprise security is continually shaped by the challenge of maintaining trust in a rapidly evolving certificate ecosystem. As Windows environments become even more integral to critical business operations, Microsoft’s Application Control for Business—previously known as...
application control
ca lifecycle
ca transition
certificateauthorities
code signing
digital certificates
endpoint security
enterprise security
microsoft ca
pki
policy management
security automation
security best practices
security compliance
security policy
trust inference
trust management
windows defender
windows security
windows updates
Microsoft's Application Control for Business (ACfB), formerly known as Windows Defender Application Control (WDAC), has introduced a significant enhancement in its certificate authority (CA) handling logic. This update aims to bolster security by refining how digital certificates are managed...
acfb
application control
business security
ca trust management
certificateauthorities
code integrity
credential validation
cybersecurity
digital certificates
it security management
malware prevention
microsoft
security enhancement
security policies
security policy customization
system administration
threat mitigation
trusted cas
windows defender
windows security
Revision Note: V2.0 (May 18, 2016): Advisory updated to provide links to the current information regarding the use of the SHA1 hashing algorithm for the purposes of SSL and code signing. For more information, see Windows Enforcement of Authenticode Code Signing and Timestamping.
Summary...
Revision Note: V1.0 (January 12, 2016): Advisory published.
Summary: Microsoft is announcing a policy change to the Microsoft Root Certificate Program. The new policy no longer allows root certificate authorities to issue X.509 certificates using the SHA-1 hashing algorithm for the purposes of...
Revision Note: V1.0 (January 12, 2016): Advisory published.
Summary: Microsoft is announcing a policy change to the Microsoft Root Certificate Program. The new policy no longer allows root certificate authorities to issue X.509 certificates using the SHA-1 hashing algorithm for the purposes of...
Revision Note: V1.0 (July 10, 2014): Advisory published.
Summary: Microsoft is aware of improperly issued SSL certificates that could be used in attempts to spoof content, perform phishing attacks, or perform man-in-the-middle attacks. The SSL certificates were improperly issued by the National...
Revision Note: V1.2 (September 5, 2012): Corrected the common name for the "CN=Microsoft Online Svcs BPOS APAC CA4" certificate issued by Microsoft Services PCA.
Summary: Microsoft is aware of Microsoft certificate authorities that are outside our recommended secure storage practices. Upon a...
http://arstechnica.com/security/news/2009/12/how-to-get-set-with-a-secure-sertificate-for-free.ars
Anyone operating a server on any scale should want a digital certificate to encrypt data between clients and services, whether for personal, office, or public use. Ars tells you how to obtain and...