Password Encryption

Hi,
I can't give you all the details, but we use the Microsoft API with a salt. If you want to be 100% secure, you should not save any password there is always a risk that somebody crack the code. It's right for every application, not just RDM.




I hope this help.




David Hervieux

Devolutions inc.

Thanks for the fast reply. :)

I'm wondering, if I download the data from the SQL Server to a laptop and then go to a client or work remotely (so there is no connection with the SQL Server). The data is stored locally. How is this sensitive information stored?

EDIT - And where is this information stored?
edited by Ken on 2/16/2010

Hi,
It's stored in a file in the local settings and it's double encrypted; the data is encryted and the password in the data is encrypted. This is the offline mode by the way.

How is it encrypted? Is it twice the same protocol? What is the risk of giving away the passwords when a laptop (with RDM installed on it) is stolen or lost?

Hi,
Two different algorithms with 2 different keys and salt. It's not easy to break.

Thank you for the fast replies. You've put my mind at ease about security. Gotta say I love the functionality of your product. :)