cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Encryption algorithm compatibility

%3CLINGO-SUB%20id%3D%22lingo-sub-2158542%22%20slang%3D%22en-US%22%3EEncryption%20algorithm%20compatibility%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2158542%22%20slang%3D%22en-US%22%3E%3CP%3EHi%2C%26nbsp%3B%3C%2FP%3E%3CP%3EIn%20VS%20when%20I%20%22Create%20App%20Packages%22%20one%20of%20the%20options%20is%20%22Encryption%20algorithm%22.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAll%20documentation%20I've%20seen%20uses%20SHA256.%20Presumably%20the%20other%20options%20(SHA512%20and%20SHA384)%20have%20less%20compatibility%20with%20older%20versions%20of%20Windows%3F%20Or%20a%20speed%20difference%3F%20I%20could%20not%20find%20any%20documentation%20on%20which%20to%20use.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ESo%2C%20why%20should%20or%20shouldn't%20I%20use%20SHA512%3F%20SHA512%20is%20generally%20more%20secure%20than%20the%20others%2C%20right%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EMarvin%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E(On%20a%20side%20note%2C%20in%20case%20someone%20agrees%3A%20One%20of%20the%20'simple'%20things%20MS%20could%20do%20to%20ease%20developer%20signing%20of%20msix%20would%20be%20default%20to%20a%20MS%20hosted%20timestamp%20server.)%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2186837%22%20slang%3D%22en-US%22%3ERe%3A%20Encryption%20algorithm%20compatibility%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2186837%22%20slang%3D%22en-US%22%3EBoth%20appx%20framework%20and%20signing%20support%20sha384%20and%20sha512%20also.%20But%20sha256%20is%20the%20default%20in%20a%20lot%20of%20tools%20starting%20from%20Windows%208.%20You%20could%20use%20any%20of%20these%20algorithms.%3C%2FLINGO-BODY%3E
marvin_r
Occasional Contributor

‎Feb 23 2021 01:49 AM - edited ‎Feb 24 2021 04:52 AM

‎Feb 23 2021 01:49 AM - edited ‎Feb 24 2021 04:52 AM

Encryption algorithm compatibility

Hi, 

In VS when I "Create App Packages" one of the options is "Encryption algorithm". 

 

All documentation I've seen uses SHA256. Presumably the other options (SHA512 and SHA384) have less compatibility with older versions of Windows? Or a speed difference? I could not find any documentation on which to use.

 

So, why should or shouldn't I use SHA512? SHA512 is generally more secure than the others, right?

 

Thanks

 

Marvin

 

(On a side note, in case someone agrees: One of the 'simple' things MS could do to ease developer signing of msix would be default to a MS hosted timestamp server.)

 

206 Views
1 Like
2 Replies
Reply
2 Replies
SahibiMiranshah

‎Mar 04 2021 07:09 PM

‎Mar 04 2021 07:09 PM

Re: Encryption algorithm compatibility

Both appx framework and signing support sha384 and sha512 also. But sha256 is the default in a lot of tools starting from Windows 8. You could use any of these algorithms.
0 Likes
Reply
marvin_r

‎Mar 05 2021 04:45 AM - edited ‎Mar 05 2021 04:46 AM

‎Mar 05 2021 04:45 AM - edited ‎Mar 05 2021 04:46 AM

Re: Encryption algorithm compatibility

Hmm, ok. Thank you for the reply. But if there is no reason to change this from the default SHA-256, may I then suggest that you remove that option from the VS publish dialog?

0 Likes
Reply