Spotfire Analyst, Spotfire Web Player, and Spotfire Automation Services

The applications in the Spotfire environment use the following encryptions.


Purpose	Encryption/Hashing algorithm	Comment / References
Digital signatures and encryption of sensitive data and credentials	Strength and algorithm dependent on Windows version and Windows configuration	The Microsoft `ProtectedData` API (DPAPI) Protected Data. Protect Method Windows Data Protection Data Protection API (Wikipedia)
Hash calculation (not for security purposes)	SHA-1 (160 bit)	Microsoft's `SHA1CryptoServiceProvider` SHA1Crypto Service Provider Class
Script trust hashes	SHA-1 and SHA-512	JavaScript, custom queries, TERR, Python, and IronPython scripts, and other data functions are trusted based on hash value.
Hash calculation (for security purposes)	SHA-256	The Microsoft `SHA256CryptoServiceProvider` SHA256Crypto Service Provider Class
Hash calculation (for security purposes)	SHA-512	The Microsoft `SHA512CryptoServiceProvider` SHA512Crypto Service Provider Class
Encryption of data that crosses computer boundaries	AES-256	The Microsoft `EncryptedXml.Encrypt` API Encrypt(XmlElement, X509Certificate2)