ASA5510 and password encryption

Answered Question
Nov 30th, 2009
User Badges:

Hello,


In the configuration file of a firewall ASA5510, the password are encrypted.


Do you know the kind of encryption used?


Thanks for your help.


Best regards

Correct Answer by Panos Kampanakis about 7 years 4 months ago

The configured passwords that correspond to locally configured user accounts are hashed using a proprietary hashing algorithm.  The ASA then stores these hash values in the configuration file instead of the clear text values. When you put in your password the hash is calculated again and verified againsta the stored one.


I hope it helps.


PK

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Panos Kampanakis Mon, 11/30/2009 - 15:31
User Badges:
  • Cisco Employee,

The configured passwords that correspond to locally configured user accounts are hashed using a proprietary hashing algorithm.  The ASA then stores these hash values in the configuration file instead of the clear text values. When you put in your password the hash is calculated again and verified againsta the stored one.


I hope it helps.


PK

projetlto Tue, 12/01/2009 - 08:43
User Badges:

Thanks a lot for your answer.


Do you know if this hashing algorithm is reversible or not and ?


And do you know if it has been certified by an organism of certification? If it is the case, which organism?


Thanks for your help


Best regards

Panos Kampanakis Tue, 12/01/2009 - 08:59
User Badges:
  • Cisco Employee,

It should not be reversible, it wouldn't be a hash then.


It is proprietary but based on known hash algorithms.


I don't think it is certified since it is proprietary.


PK

projetlto Tue, 12/01/2009 - 09:10
User Badges:

And do you have an idea about the known hash algorithms used?


Thanks a lot


Sébastien

Actions

This Discussion

Related Content