Skip to Main Content

SQL Developer

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Is password encryption used in connections.json secure?

Marian_May 24 2022

We are using CMU with AD athentification method, but I received question if SQL Developer password encryption is secure enough because in connections.json is stored encrypted AD password. As you can see here https://github.com/maaaaz/sqldeveloperpassworddecryptor decrypting is not very difficult task.
My question to oracle guys (Jeff S. ?). Is planned any more secure encryption method?
I know best way is implement SSO method, but it is not so easy from client view as using AD username/password.

Thanks.

Marian

Comments

Processing

Post Details

Added on May 24 2022
3 comments
2,323 views