Zoho uses unsecure key strength for DKIM signing

With a check for our email infrastructure it came to my attention that Zoho uses an unsecure key strenght for signing email (RSA 1024), which has been deemed insecure by NIST since 2015. I have contacted customer support, but I got the message that they can't do anything about it right now and there is no roadmap available to the improvement to this.

With this post I hope to make more people aware of this problem and hopefully it will get higher up the roadmap, as email security is a very important to keep your users and customers safe!

The best solution would be to implement RSA with a strength of 3072 bits or higher, or if this is too long make use of EC.

Zoho Desk Resources

Desk Community Learning Series
Digest
Functions
Meetups
Kbase
Resources
Glossary
Desk Marketplace
MVP Corner
Word of the Day

Topic Participants
Ken
Nithin Ramesh

Sticky Posts
How to Add Users to your Organization in ZohoMail?
A better clarity so you can create other users to start using Zoho Mail. You can directly Add Users from the Control Panel to your Organization. You can invite users with the existing email address. If the person (user) already uses ZohoCRM, then you can import users from Zoho CRM. You can also import them using a .csv file. (if you are planning to add them in Bulk) In this topic, We will be discussing on how to Add and Invite users only. The Import options are self explanatory. ____________________________________________________________________________________________________________