cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
BookmarkSubscribeRSS Feed
siddhu1
Obsidian | Level 7 siddhu1
Obsidian | Level 7

More secure using {SAS003} or {SAS005}

Posted 05-08-2023 09:02 AM (177 views)
Hello Team, In our project, generally we use {SAS003} which uses 16-bit in encrypting the password. Can we use the {SAS005} which is the 64-bit for the same in terms of more secure. Want to know which one is more secure in encrypting the password. Is it {SAS003} or {SAS005}. Thanks in Advance, Siddhu1
0 Likes
Reply
2 REPLIES 2
doug_sas
SAS Employee doug_sas
SAS Employee

Re: More secure using {SAS003} or {SAS005}

Posted 05-08-2023 10:32 AM (149 views)  |   In reply to siddhu1

SAS005 uses a fixed key, a 64bit random salt, the SHA256 hash, and 10000 iterations to generate an encryption key for AES.

SAS003 uses a fixed key, a 16bit random salt, the SHA1 hash, and 1200 iterations to generate an encryption key for AES.

Due to the use of a longer salt, better hash algorithm, and is hashed for more iterations, SAS005 is more secure.

0 Likes
Reply
SASKiwi
Opal | Level 21 SASKiwi
Opal | Level 21

Re: More secure using {SAS003} or {SAS005}

Posted 05-08-2023 06:17 PM (133 views)  |   In reply to siddhu1

If you store the encrypted passwords in open code, these are easily open to reuse by other SAS users regardless of the encryption method.  

Reply

suga badge.PNGThe SAS Users Group for Administrators (SUGA) is open to all SAS administrators and architects who install, update, manage or maintain a SAS deployment. 

Join SUGA 

CLI in SAS Viya

Learn how to install the SAS Viya CLI and a few commands you may find useful in this video by SAS’ Darrell Barton.

Watch CLI in SAS Viya on YouTube

Find more tutorials on the SAS Users YouTube channel.

Discussion stats
  • 2 replies
  • ‎05-08-2023 09:02 AM
  • 178 views
  • 1 like
  • 3 in conversation