-
Title
Which encryption cipher is used by Active Roles and its components? -
Description
This article details which cipher is used by Active Roles and its components.
-
Resolution
Below you'll find a detailed description of the cypher being used by Active Roles and its components:
Version 7.x1) Database: Advanced Encryption Standard (AES) is used while establishing a secure connection between the ARS service and the SQL server database.
2) Web Interface (WI): Advanced Encryption Standard (AES), specified in the machineKey tag in the web.config file is used for encryption and decryption of form authentication tickets in the WI.
3) MMC console: To store user account passwords and managed domain credentials, for example in the user account creation dialog and other password stores, Advanced Encryption Standard (AES) is used.
4) Management Shell: The secure string (password) used while connecting to Admin Service internally uses Microsoft DPAPI, which in turn uses the Triple DES (3DES) algorithm for encryption and decryption. It replicates the native Microsoft PowerShell behaviour and is governed by the Microsoft API. -
Additional Information
Triple DES (3DES): is an encipherment algorithm that is used by SSL/TLS for securing communication.
The Advanced Encryption Standard (AES): is a symmetric block cipher used by the U.S. government to protect classified information and is implemented in software and hardware throughout the world to encrypt sensitive data.