What encryption is used in the rtsz files when enabled?
J
Jon Tanke
started a topic
over 8 years ago
Can you elaborate on the encryption used for the Royal TS files? Any information/transparency would be appreciated.
Best Answer
S
Stefan Koell
said
over 8 years ago
Hi Jon,
Royal TS is using AES 256 bit encryption for passwords and documents. If no password is provided, a static key is used to encrypt the passwords to avoid them being as plain text in the document. When you provide a document password, encryption is done using the provided password. This also means that if you forget your password, there's no way to retrieve your passwords in the documents.
Royal TS is using AES 256 bit encryption for passwords and documents. If no password is provided, a static key is used to encrypt the passwords to avoid them being as plain text in the document. When you provide a document password, encryption is done using the provided password. This also means that if you forget your password, there's no way to retrieve your passwords in the documents.
Let me know if this answers your question.
Regards,
Stefan
2 people like this
J
Jon Tanke
said
over 8 years ago
Thanks Stefan, that's what I was looking for!
R
Roy Alts
said
9 months ago
Have there been any changes to the encryption method? This thread is about 7 years old.
I am thinking of storing my rtsz file on my server so I can access it from home and remote laptop.
With adequate password, would it be acceptable to store on dropbox?
Thank you.
1 person likes this
M
Marc
said
7 months ago
Hi,
I was reading the description regarding encryption but it is not 100% clear for me.
As I would like to store the .rtsz file not local but at the icloud or onedrive I am wondering if the whole file will be enypted if a password is provided OR if ONLY the password field within the .rtsz file will be encrypted?
I am coming from Devolutions RDM and RDM did a full entrysption of the data file contents.
Thank you in advance.
Stefan Koell
said
7 months ago
Hi Marc,
by default, Royal TS stores all data in plain text XML but all sensitive data (like passwords, protected custom fields, etc.) are always encrypted (even if you do not provide a custom password).
There is also an option to encrypt the complete file if you prefer to do so:
WoW, thank you very much, works like a charm, Regards, Marc
C
Couic
said
about 2 months ago
Hi Stephan,
what about the PasswordHash section (256 hex characters) ? It doesn't seem to be like a real hash as you can reverse the password within the app. But what is the algorithm to produce it ?
kind regards,
Cyril
Stefan Koell
said
about 2 months ago
The PasswordHash is a real hash and we can't recreate the password from that hash (nobody can). The only reason you see the password in the UI is that you entered it at one point and it has been checked against that hash. That password is then held in the process memory for the time being (encrypted, of course). I hope this helps.
C
Couic
said
about 2 months ago
Hi stephan, it is perfectly clear then, thank you for this explanation.
Cheers,
Cyril
Jon Tanke
Can you elaborate on the encryption used for the Royal TS files? Any information/transparency would be appreciated.
Hi Jon,
Royal TS is using AES 256 bit encryption for passwords and documents. If no password is provided, a static key is used to encrypt the passwords to avoid them being as plain text in the document. When you provide a document password, encryption is done using the provided password. This also means that if you forget your password, there's no way to retrieve your passwords in the documents.
Let me know if this answers your question.
Regards,
Stefan
- Oldest First
- Popular
- Newest First
Sorted by Oldest FirstStefan Koell
Hi Jon,
Royal TS is using AES 256 bit encryption for passwords and documents. If no password is provided, a static key is used to encrypt the passwords to avoid them being as plain text in the document. When you provide a document password, encryption is done using the provided password. This also means that if you forget your password, there's no way to retrieve your passwords in the documents.
Let me know if this answers your question.
Regards,
Stefan
2 people like this
Jon Tanke
Thanks Stefan, that's what I was looking for!
Roy Alts
Have there been any changes to the encryption method? This thread is about 7 years old.
I am thinking of storing my rtsz file on my server so I can access it from home and remote laptop.
With adequate password, would it be acceptable to store on dropbox?
Thank you.
1 person likes this
Marc
Hi,
I was reading the description regarding encryption but it is not 100% clear for me.
As I would like to store the .rtsz file not local but at the icloud or onedrive I am wondering if the whole file will be enypted if a password is provided OR if ONLY the password field within the .rtsz file will be encrypted?
I am coming from Devolutions RDM and RDM did a full entrysption of the data file contents.
Thank you in advance.
Stefan Koell
Hi Marc,
by default, Royal TS stores all data in plain text XML but all sensitive data (like passwords, protected custom fields, etc.) are always encrypted (even if you do not provide a custom password).
There is also an option to encrypt the complete file if you prefer to do so:
https://docs.royalapps.com/r2023/royalts/reference/organization/document.html#encrypt-complete-file
Regards,
Stefan
Marc
WoW, thank you very much, works like a charm, Regards, Marc
Couic
Hi Stephan,
what about the PasswordHash section (256 hex characters) ? It doesn't seem to be like a real hash as you can reverse the password within the app. But what is the algorithm to produce it ?
kind regards,
Cyril
Stefan Koell
The PasswordHash is a real hash and we can't recreate the password from that hash (nobody can). The only reason you see the password in the UI is that you entered it at one point and it has been checked against that hash. That password is then held in the process memory for the time being (encrypted, of course). I hope this helps.
Couic
Stefan Koell
You're welcome!
-
What happened to the forum?
-
About this Forum
-
Security Information
-
Supported Secure Gateway (SSH) ciphers
-
Why is no remote file browser in SCP available?
-
Royal TS V4 License File
-
How to resolve RDP resolution issues in Windows 7 with high resolution screen
-
Auto Fill in web page connection
-
How to reference custom properties in tasks and templates?
See all 285 topics