THE BEST SECURITY

To stay ahead of evolving security threats, you need to make sure you have the latest protections. That’s why we continually enhance the security of our online update services. Check Point will migrate its SHA-1-based certificates to SHA-256-based certificates during February 2016. 

To ensure connectivity of your Check Point software to Check Point online update services that use SHA-256-based certificates, a hotfix is required for R77.20 and earlier versions. Be sure to install this critical update before January 31, 2016 to maintain your service functionality. No fix is required for R77.30. Check Point recommends using the most recent software version.

WHAT IS AFFECTED

Check Point online update services are used for downloading the latest protection updates and to verify license information. For all Check Point software versions up to and including R77.20, a hotfix is required. 

Affected functionalities include: 

  • Software Blades: IPS, Threat Emulation, Threat Prevention, Application Control, URL Filtering, HTTPS Inspection, ESOD 
  • License operations and Contract updates    

This hotfix has to be installed on all Check Point products: 

  • Security Gateways 
  • Clusters 
  • VSX 
  • Security Management Servers 
  • Multi-Domain Security Management Servers 
  • Log Servers

For customers using online services in SmartDashboard (such as IPS Software Blade updates) or SmartUpdate, an improved SmartConsole package is required as well.