Skip to end of metadata
Go to start of metadata

You are viewing an old version of this content. View the current version.

Compare with Current View Version History

Version 1 Current »

Unable to render {include} The included page could not be found.

Question

I need to determine how user credentials are stored with your products, this includes usage of cryptography. The description should include protocols, algorithms and key lengths, and where they are used.

Answer

How are Credentials stored?

  • All passwords are first encoded, then a passphrase is added from Cognillo programmatically, and a salt value is then added for extra security, then this value is encrypted using AES (also known as Rijndael) encryption with 256 bits key length.
  • Encryption mode used is CBC (Cyber Block Chaining).
  • The encrypted value is finally then converted to a Base 64 encoded string to be stored.
  • If encryption fails or any part of the encryption process, the password is not stored.

Where are Credentials stored?


NOTE: This excludes any information that your organization shares voluntarily/at your discretion for purposes of procurement, payment or troubleshooting (such as screen sharing, technical logs, reports, screenshots) with our agents or support team.

If you require further information or have any concerns, please contact Cognillo Support.


Can't find what are looking for? Create a Support Ticket or Chat Live (click 'Chat with a Representative')

NOTE: Our User Guides (MS Word) provide help that may not be found in the Knowledge Center articles.

  • No labels