Click HERE to see how Saviynt Intelligence is transforming the industry. |
07/09/2024 08:32 AM
Hello,
is it possible to have answers to the following concerns about password encryption in Saviynt Database?
thank you
Solved! Go to Solution.
07/09/2024 09:31 AM - edited 07/09/2024 09:34 AM
@FabianaS below info useful
The passwords are stored in the encrypted format using the bcrypt alogorithm in database.
1. Encryption Keys for SQLite Database:
- Typically, encryption keys for data stored in a SQLite database are managed by the application itself. Saviynt's password filter would likely generate and manage these encryption keys internally. The specific details of how these keys are managed, including whether they are stored securely or not, would be outlined in Saviynt's documentation or provided by their support team.
2. Encryption of Outbound Payloads:
- It's standard practice for sensitive data, such as passwords, to be encrypted before transmission over a network. Saviynt's password filter should employ encryption mechanisms (such as TLS/SSL) to ensure that all outbound payloads containing sensitive information are encrypted before being sent to the Saviynt Cloud instance
3. Options for Encrypting Payloads:
- Within the Saviynt password filter application, there should be configuration options to enable encryption for outbound payloads. These options might include specifying the encryption protocol, key management, and other settings related to data security.
4. Encryption of Inbound Payloads:
- Similarly, inbound payloads from the Saviynt Cloud instance to application endpoints (whether in the cloud or on-premise) should also be encrypted. Saviynt likely employs encryption mechanisms to ensure the security of data in transit.
07/09/2024 09:37 PM
The password is encrypted using the AES 256 encryption.
The AES Encryption algorithm used is aes-256-cbc.
Yes we use 256 bit key to encrypt the password.
The keys are currently part of the binary.
07/10/2024 01:42 AM
07/10/2024 06:31 AM
Since this product security related question please check with csm to get correct answer