Table of Contents

Search

  1. Preface
  2. Introduction to MDM Hub Security
  3. Resources
  4. Roles
  5. Users and User Groups
  6. Security Providers
  7. Application Level Security
  8. Certificate-Based Authentication
  9. Password Hashing
  10. Glossary

Password Hashing Options

Password Hashing Options

During the installation of the Hub Server, you configure the following password hashing options:
  • Whether to create a custom hash key as part of the hashing algorithm
  • Whether to use the default SHA3 hashing algorithm or create a custom hashing algorithm
  • Whether to use the default certificate provider or use a custom certificate provider
Both SHA3 and custom hashing algorithms ensure that passwords of MDM Hub users are irreversibly encrypted and never stored in clear text form in a database. Regardless of which hashing algorithm you use, the algorithm has the following components:
  • A hash function
  • A salt value
  • An optional pepper value or hash key, which is set during the MDM Hub installation. It is the responsibility of the MDM Hub administrator to generate this key and store it securely.
If you create a pepper value, Informatica recommends to use a key that contains a sequence of up to 32 hexadecimal characters with no delimiters.
Protect the secrecy of the hash key to avoid the risk of data breach. If the hash key is stolen, you must reset all passwords.
The password hashing algorithm and the underlying implementation for the algorithm are stored in the Hub Server properties. For more information about Hub Server properties, see the
Multidomain MDM Configuration Guide
.

0 COMMENTS

We’d like to hear from you!