Skip to main content


         This documentation site is for previous versions. Visit our new documentation site for current releases.      
 

Encryption settings for Pega Robotic Automation

Updated on October 13, 2021

Windows Data Protection API (DPAPI) is a cryptographic application programming interface that is available as a built-in component in Microsoft Windows. The Pega Robotic Automation credential store uses DPAPI to securely store assisted sign-on credentials on the desktop.

DPAPI encrypts data by using a key derived from the logged-in Windows user's credentials. The use of this key ensures that the assisted sign-on credentials cannot be decrypted by anyone other than the user who initially entered them. DPAPI uses industry-standard encryption algorithms.

The Pega Robotic Automation team has tested DPAPI on the following configurations to determine the algorithms and settings used by the following versions of 64-bit Windows.

  • Windows 7 Enterprise Service Pack 1
  • Windows 8.1 Enterprise
  • Windows 10 Enterprise
  • Windows Server 2008 R2 Datacenter Service Pack 1
  • Windows Server 2012 R2 Datacenter
  • Windows Server 2016
Windows version78.110Server 2008Server 2012Server 2016
EncryptionAES-256AES-256AES 256AES-256AES-256AES-256
HashingSHA-512SHA-512SHA-512SHA-512SHA-512SHA-512
Iteration17400800080001740080008000

Customer security teams can use this information when evaluating the security of the credential store component.

Have a question? Get answers now.

Visit the Support Center to ask questions, engage in discussions, share ideas, and help others.

Did you find this content helpful?

Want to help us improve this content?

We'd prefer it if you saw us at our best.

Pega.com is not optimized for Internet Explorer. For the optimal experience, please use:

Close Deprecation Notice
Contact us