Microsoft Ends SQL Server 2019 Support and Phases Out DES Encryption: What You Need to Know

Microsoft Ends SQL Server 2019 Support and Phases Out DES Encryption: What You Need to Know

Overview

Microsoft has recently announced two significant changes affecting its software ecosystem: the conclusion of mainstream support for SQL Server 2019 and the removal of the Data Encryption Standard (DES) from its Windows operating systems. These developments have substantial implications for organizations relying on these technologies.

End of Mainstream Support for SQL Server 2019

• Mainstream Support End Date: February 28, 2025
• Extended Support End Date: January 8, 2030

With the end of mainstream support, SQL Server 2019 will no longer receive regular updates, including non-security patches and feature enhancements. However, critical security updates will continue during the extended support phase until January 2030. Organizations should plan accordingly to ensure continued support and compliance. Source

• Security: While security updates will continue during extended support, the lack of feature updates may expose systems to emerging threats.
• Compliance: Regulatory requirements may necessitate using supported software versions.
• Performance: Without performance improvements, systems may become less efficient over time.

• Upgrade Path: Consider migrating to SQL Server 2022, which offers improved performance and security features. Source
• Cloud Migration: Explore options like Azure SQL Managed Instance for a fully managed platform-as-a-service (PaaS) solution.
• Planning: Develop a migration strategy to transition to supported versions before the end of extended support.

Phasing Out of DES Encryption

The Data Encryption Standard (DES) is a symmetric-key algorithm developed in the 1970s. Due to its 56-bit key length, DES is now considered insecure against modern cryptographic attacks. Source

Microsoft has announced the removal of DES support in Kerberos for Windows Server 2025 and Windows 11, version 24H2. This change will be implemented in updates released on or after September 9, 2025. Source

• Security Enhancement: Eliminating DES reduces vulnerabilities associated with weak encryption.
• Compatibility: Legacy systems relying on DES will need to transition to stronger encryption methods.

• Audit Systems: Identify any applications or systems using DES.
• Transition to AES: Migrate to the Advanced Encryption Standard (AES), which offers stronger encryption and is supported by Microsoft. Source
• Testing: Ensure that all systems and applications function correctly with AES before the removal of DES support.

Conclusion

The end of mainstream support for SQL Server 2019 and the phasing out of DES encryption are part of Microsoft's ongoing efforts to enhance security and performance. Organizations should proactively plan for these changes to maintain secure and efficient IT environments.

1. Review Current Systems: Assess the use of SQL Server 2019 and DES encryption within your organization.
2. Develop Migration Plans: Create strategies for upgrading to supported software versions and transitioning to stronger encryption methods.
3. Implement Changes: Execute migration plans and test systems to ensure compatibility and performance.
4. Stay Informed: Monitor Microsoft's announcements for updates and best practices.

By addressing these changes promptly, organizations can mitigate risks and leverage improved technologies for their operations.