Question

1
Replies
42
Views
Dev_Pattanaik Member since 2015 2 posts
Accenture Solutions Pvt.Ltd
Posted: 1 year ago
Last activity: 1 year ago
Closed

Hash algorithm upgrade in Pega 6.2 SP2

Hi Team,

Currently our application is on Pega 6.2 SP2 version and there is no pr-config setup for Hash algorithm validation.

From security perspective, our client is planning to upgrade either one of the below Hash algorithm:

1. MD5

2. SHA-1

3. SHA-2

Can any one please suggest the approach for this or any relevant article to refer the same ?

Low-Code App Development Upgrades
Close popover
Moderation Team has archived post
Posted: 1 year ago

In the 7.2.2 release, we made bcrypt - the current 'gold standard' in one way hash algorithms - the default.  This was released December 2016.


https://community.pega.com/knowledgebase/using-bcrypt-hashing-algorithm…


In 7.1.7, we made SHA-256 and SHA-512 available:


https://community.pega.com/knowledgebase/release-note/password-hashing-…


You should consider upgrading the application to take advantage of these and other security features and updates in the most recent versions.  The current version is 8.3.


 
Share this page LinkedIn
Copied!