paxcleaning.blogg.se - Remove desktop manager 360 total security

The best practice is to use a Certificate, once installed in the Windows Certificate store, it’s harder to retrieve the key and the key is not bound to a passphrase, which may be reused somewhere or simply be weak.

Certificate : Encrypts the data using the private key of a certificate installed on each workstation.

Shared passphrase : Encrypts the data using a password stored on each Remote Desktop Manager instances.

This way, an attacker need to compromise the database and the security provider in order to compromise the data.

Security Providers exist to encrypt the data at rest (the information stored on the database) using a key shared on every Remote Desktop Manager instance.