beautypg.com

4 security, Password encryption, Encryption files – HP Neoview Release 2.3 Software User Manual

Page 23: The encryption utility — nvtencrsrv

background image

4 Security

Because load and extract jobs connect to databases and access password-protected resources, it
is necessary for Transporter to keep track of user IDs and passwords. This chapter addresses the
following topics:

“Password Encryption” (page 23)

“Encryption Files” (page 23)

“The Encryption Utility — nvtencrsrv” (page 23)

Password Encryption

Because Transporter accesses other systems, it transmits User IDs and passwords. Transporter
uses PKCS #5V1.5 based password security to protect resource passwords. In the interest of
protecting user IDs and passwords, you use an encryption utility called nvtencrsrv, which
stores encrypted words in a security file. Only the administrator for the Transporter client platform
can run this utility.

NOTE:

Transporter always transmits passwords in encrypted format. When control files are

saved on the Neoview platform, all plain text passwords are encrypted. You can choose to encrypt
user IDs or not. If you do not encrypt them, user IDs are stored in the ctlprops.txt file as
plain text.

Encryption Files

These files are used by the encryption utility and are stored in the $NVTHOME/conf/security
directory.

Encrypted passwords and user IDs are stored in the format:

Name = {DES} encrypted value

Name is a name you assign and that can be referenced by the Transporter Control File.

Unencrypted passwords and user IDs are stored in the format:

Name = plain text

Name is a name you assign that can be referenced by the Transporter Control File.

Table 4-1 Encryption Files

Example

File Content

Filename

neo1pass = {DES}5y9BTnIKJuw=

Encrypted words

encctlprops.txt

neo1user = root

Unencrypted words (plain
text)

ctlprops.txt

CAUTION:

The encryption files must be properly secured by the administrator of the Transporter

client platform to ensure that no unauthorized users can access these files.

The Encryption Utility — nvtencrsrv

nvtencrsrv

is a utility that adds encrypted words to the password encryption file and deletes

encrypted words when they are no longer needed. Only the administrator of the client platform
can use this utility.

Password Encryption

23

See also other documents in the category HP Software: