We are delighted to share our new EIC Delivery Methodology for efficiently managing Saviynt Implementations and delivering quick time to value. CLICK HERE.

Encryption used in Saviynt Cloud for the data present in Saviynt platform

Diptansu1
Regular Contributor
Regular Contributor

For one document we need to understand which encryption algo Saviynt follows for the data saved in Saviynt cloud. 

Please let me know which encryption algo saviynt follows for the data rest in its cloud platform

8 REPLIES 8

sai_sp
Saviynt Employee
Saviynt Employee

Hi @Diptansu1 

We will check and get back on this.

sai_sp
Saviynt Employee
Saviynt Employee

@Diptansu1  Saviynt supports data encryption in transit via SSL (and VPC / VPN). Strong encryption schemes such as AES (256 / 128 bit) and 3DES are supported. Data at rest is encrypted via native DB encryption. Currently, only predefined data fields are encrypted at rest.

 

If the question is about how we are securely storing the password of a service account in a connector we are using Advanced Encryption Standard (AES) algorithm to encrypt the password. This allows us to authenticate with  AD or any target application. Additionally, if you are looking for details in terms of how we are  storing the user credentials, that Saviynt uses to authenticate users locally, we use bcrypt hashing algorithm.

Diptansu1
Regular Contributor
Regular Contributor

We have informed the above statement to the customer . One question where we need your input :

"Do Saviynt support any SHA2 hashing algorithms for encryption of user credentials" - Please respond

sai_sp
Saviynt Employee
Saviynt Employee

@Diptansu1 We can check and get back. Could we know why the customer is looking for these details?

Diptansu1
Regular Contributor
Regular Contributor

Related to the encryption method , we have passed on initially your provided information . The comment we have received is this whether saviynt supports SHA2 or not .. to answer this need your confirmation .

sai_sp
Saviynt Employee
Saviynt Employee

@Diptansu1 Saviynt also supports SHA2/SHA256 but that's driven by a config. By default user credentials are encrypted using bcrypt hashing.

Diptansu1
Regular Contributor
Regular Contributor

Hello ,

can you please share documentation link to configure SHA2/SHA256 algorithm instead of bcrypt hashing for storing user credentials.

dgandhi
All-Star
All-Star

Please find below information and reference link.

dgandhi_0-1683152904508.png

https://docs.saviyntcloud.com/bundle/SSM-Architecture-v55x/page/Content/Saviynt-Architecture.htm#Vis...

Thanks

Thanks,
Devang Gandhi
If this reply answered your question, please Accept As Solution and give Kudos to help others who may have a similar problem.