How passwords for Spotfire end users and service accounts are stored in TIBCO Spotfire database

book

Article ID: KB0071789

calendar_today

Updated On:

Products	Versions
Spotfire Server	10.3.x and higher

Description

This article will explain you how the passwords for Spotfire end users and service accounts are stored in Spotfire database.

Issue/Introduction

Password security of end users in TIBCO Spotfire server.

Environment

All

Resolution

When using Spotfire database authentication, Passwords for end users that are stored in the Spotfire database are not encrypted but hashed multiple times using the PBKDF2 hash algorithm.

Passwords for service accounts stored in the database (this cover all accounts configured through the various Spotfire Configuration and Administration interfaces such as passwords for LDAP service accounts, information link data sources and action logging) are encrypted with AES-128 encryption.

Additional Information

Data At Rest, TIBCO Spotfire Server and Environment Security guide
- https://docs.tibco.com/pub/spotfire_server/12.0.2/doc/html/TIB_sfire_server_and_environment_security/servsecurity/topics/data_at_rest.html
Standards and Algorithms, TIBCO Spotfire Server and Environment Security guide
- https://docs.tibco.com/pub/spotfire_server/12.0.2/doc/html/TIB_sfire_server_and_environment_security/servsecurity/topics/standards_and_algorithms.html

Feedback

thumb_up Yes

thumb_down No

Welcome to "KB Articles"