What type of encryption SMP supports?

book

Article ID: 184139

calendar_today

Updated On:

Products

Management Platform (Formerly known as Notification Server)

Issue/Introduction

Question:

Is Altiris encryption capable of using the secure SHA algorithm 256?

Resolution

Answer:

We are using SHA-256 in newer code, such as hashing the internal credential passwords.  Older features, such as hierarchy and policy cache, use older algorithms like SHA-1 and MD5.  All of this is predicated on the Customers OS, as we can only support certificates for SSL that use a SHA-256 hash on Windows Server 2008 R2 and Windows 7. This is a Windows limitation, not an NS limitation.

We are also in the process of FIPS 140-2 validation. The SMP and SMP Agent Cryptographic Modules are officially listed on the FIPS 140 In-Process list: http://csrc.nist.gov/groups/STM/cmvp/inprocess.html

Click the PDF link and scroll to page 10.