Will future Windows systems support SM2 algorithm certificates?

胡雅铭 20 Reputation points
2023-12-25T04:25:39.3233333+00:00

At present, Windows systems do not seem to support digital certificates using the SM2 algorithm. Will future Windows systems support SM2 algorithm certificate validation? After I added a SM2 algorithm certificate in Windows, it showed: 'An error occurred at the system level when verifying the trust relationship.' However, there is no problem with RSA algorithm certificates.

Windows
Windows
A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.
5,808 questions
{count} votes

Accepted answer
  1. Thameur-BOURBITA 35,516 Reputation points
    2023-12-25T22:28:41.26+00:00

    Hi @胡雅铭

    SM2 algorthim is supported only by TLS 1.3. and following to microsoft documentation TLS 1.3 is supported only by Windows 2022 and Windows 11

    For more details you can read this article:

    TLS protocol version support

    ShangMi (SM) Cipher Suites for TLS 1.3


    Please don't forget to accept helpful answer


2 additional answers

Sort by: Most helpful
  1. Ian Xue 39,471 Reputation points Microsoft Vendor
    2023-12-26T06:49:14.6166667+00:00

    Hi Yaming,

    Welcome to Windows Q&A community. I totally understand your frustration in dealing with this issue. But based on my resarch, there is limit resource mentioned Windows will support SM2. Currectly the algorithms DSA, RSA, ECDSA, or Ed25519 can be specified. (Key-based authentication in OpenSSH for Windows)

    Anyway, I will help to feedback the user voice to the product team. You can also post the requirement in Microsoft UserVoice to address closely. Here is the link:

    https://support.microsoft.com/en-us/office/uservoice-pages-430e1a78-e016-472a-a10f-dc2a3df3450a

    Thanks very much for your understanding.

    Best Regards,

    Ian Xue


    If the Answer is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments No comments

  2. Deleted

    This answer has been deleted due to a violation of our Code of Conduct. The answer was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.


    Comments have been turned off. Learn more

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.