Microsoft has strengthened the encryption functionality to protect data transmitted by Microsoft Azure guest operating systems.
The encryption improvements, which apply to Microsoft Azure cipher solution for hosted guest virtual machines, provide customers with enhanced protection when connecting and transmitting data. Enhancements to the default Transport Layer Security/Secure Socket Layer cipher suites help to ensure that connections are better encrypted during transmission.
In addition, Microsoft has enabled Perfect Forward Secrecy functionality to ensure that a different encryption key is used for every connection, which makes it more difficult for attackers to decrypt connections. This will prevent attackers who may have a compromised key from being able to reuse it when trying to decrypt traffic going to and from a guest virtual machine.
“As technology advances and attackers continue to adjust their tactics, it’s essential that cloud providers evolve their security protections to keep pace with the changing landscape,” said Mike Reavey, Microsoft’s general manager of trustworthy computing, in a blog post. “The latest advancements implemented by Microsoft Azure is an important step in the ongoing chain of evolution in our security commitment, and helps provide customers with additional layers of protection that reduce the risk of an attacker being able to successfully decrypt a connection.”
Share this story