This article details the password encryption that Ektron uses in the database. For some customers it is important to know what we use to understand the level of security that is currently implemented in their projects.
As of version 9.0 Ektron password encryption has been changed to use a one way hash based on the rfc2898derivebytes library, which is a pbkdf2 implementation using a random number generator on hmacsha1.
Please sign in to leave a comment.