Enterprise Security has been enhanced to provide more secure storage of user passwords. Enterprise Security now allows password verification while at the same time removing vulnerability to decryption and discovery of user passwords in the event that the system’s encryption key is compromised.
Salted passwords provide increased protection against precalculated dictionary attacks. Salting a password means adding a random (or pseudo-random) string of binary data to password data before it is encoded into the strings that are stored in the Access Control Database (ACDB).
| Copyright © 2005. Sybase Inc. All rights reserved. |
|
|
