Forcepoint Appliances server storage
Appliance user account credentials
Default and custom account user names and passwords are encrypted using the SHA-512 hash algorithm from FIPS 140-2 certified cryptographic libraries.
Note: This does not include the password reset functionality. For more information, see this Knowledge Base article.
Configuration summaries
Files containing sensitive data that are generated as part of a back-up or configuration summary are encrypted using FIPS 140-2 certified cryptographic libraries.
- ECDHE-RSA-AES256-GCM-SHA384
- ECDHE-RSA-AES256-SHA384
- ECDHE-RSA-AES256-SHA
- DHE-RSA-AES256-GCM-SHA384
- DHE-RSA-AES256-SHA256
- DHE-RSA-AES256-SHA
- AES256-GCM-SHA384
- AES256-SHA256
- AES256-SHA
- ECDHE-RSA-AES128-GCM-SHA256
- ECDHE-RSA-AES128-SHA256
- ECDHE-RSA-AES128-SHA
- DHE-RSA-AES128-GCM-SHA256
- DHE-RSA-AES128-SHA256
- DHE-RSA-AES128-SHA
- AES128-GCM-SHA256
- AES128-SHA256
- AES128-SHA
Note: By default, these files are stored locally and exported using FTP, TFTP, and Samba. We recommend using a secure transfer method for external storage and for sharing sensitive data outside the
appliance.