What's New and Changed (10.5.1) > Part II: Versions 10.5 - 10.5.0.1 > 10.5 What's New > Security

Security

Read this section to learn what's new for domain security in version 10.5.

Encryption Strengthening

Effective in version 10.5, you can encrypt the Informatica domain passwords and secure connection parameters by using the AES 256-bit encryption algorithm.

To strengthen security encryption, the Informatica installer now generates a unique site key when you install the Informatica services. You cannot generate the site key again. Previously you could regenerate the encryption site key using a keyword and domain name in the GenerateEncryptionKey command.

After you upgrade to Informatica 10.5, migrate the site key to the new unique site key.

For a multinode domain, copy the unique site key to each node or save the unique site key at a shared location that can be accessed by each node.

You can use transformation language encoding functions, AES_ENCRYPT and AES_DECRYPT to encrypt or decrypt storage tables with 256-bit encoding. Use the new argument, keySize to enable AES 256-bit encryption.

For more information, see the Informatica 10.5 Security Guide.

SAML Functionality

Effective in version 10.5, you can use the following new SAML functionality:

•When you enable SAML authentication in the domain, you can enable one or more of the following enhanced authentication modes: request signing, encrypted assertion, and signed response. For more information, see the Informatica 10.5 Security Guide.
•You can use Oracle Access manager, Okta SSO, and Azure Active Directory identity providers to manage SAML authentication on the domain for web applications. For more information, see the H2L article about each identity provider on the Informatica Documentation Portal.