From 17c83e7458373bad7cbad4589e24dce3b34e8b34 Mon Sep 17 00:00:00 2001 From: Volker Date: Tue, 23 Jun 2026 10:58:52 +0200 Subject: [PATCH] Update zero-knowledge-encryption.md Keylength update performed January 2026 VA's paired after that date use 4096bit RSA keys Missing: * Procedure to check keylength * Instructions to move from 2048 to 4096bits --- .../saas-connectivity/zero-knowledge-encryption.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/docs/connectivity/saas-connectivity/zero-knowledge-encryption.md b/docs/connectivity/saas-connectivity/zero-knowledge-encryption.md index 3151bd06c5381..293d918c5985a 100644 --- a/docs/connectivity/saas-connectivity/zero-knowledge-encryption.md +++ b/docs/connectivity/saas-connectivity/zero-knowledge-encryption.md @@ -24,7 +24,7 @@ Today’s enterprises use additional measures like security questions, which are ISC secures all credentials and sensitive identity data while at rest and in motion. SailPoint’s solution for securing sensitive data is built upon two tenets: 1. All sensitive data must be protected by at least two layers of encryption, and those two layers must be dissimilar so if one is compromised, the other cannot be compromised the same way. -For example, encrypt credentials using 2048-bit RSA encryption, and then use Transport Layer Security (TLS) to encrypt the encrypted credentials while in motion. +For example, encrypt credentials using 4096-bit RSA encryption (since February 2026), and then use Transport Layer Security (TLS) to encrypt the encrypted credentials while in motion. 2. SailPoint never has access to the unencrypted form of sensitive data. It is always encrypted with a key that is controlled by the user or customer and is not accessible to SailPoint. The key is always kept separate from the encrypted data. @@ -146,4 +146,4 @@ With a range of technologies including the patented *Zero Knowledge Encryption*, Identity Security Cloud builds upon decades of enterprise security best practices, and unlike other vendors, does not require customers to change their firewall or intrusion protection practices. The powerful combination of multiple encryption technologies ensures sensitive data is always protected with the most advanced technology available, securing your organization’s adoption of cloud technologies today and into the future. -© 2024 SailPoint Technologies, Inc. All rights reserved. SailPoint, the SailPoint logo and all techniques are trademarks or registered trademarks of SailPoint Technologies, Inc. in the U.S. and/or other countries. All other products or services are trademarks of their respective companies. \ No newline at end of file +© 2024 SailPoint Technologies, Inc. All rights reserved. SailPoint, the SailPoint logo and all techniques are trademarks or registered trademarks of SailPoint Technologies, Inc. in the U.S. and/or other countries. All other products or services are trademarks of their respective companies.