16.10 - Using SSL and TLS Protection for DIGEST-MD5 Binding - Teradata Database

Teradata Database Security Administration

prodname
Teradata Database
vrm_release
16.10
created_date
June 2017
category
Administration
Security
featnum
B035-1100-161K

Although Teradata provides SSL/TLS protection options mainly for systems that use simple binding, protection is also be beneficial for systems that use the default DIGEST-MD5 binding, and have an SASL SSF setting of 0. On these systems, SSL/TLS protects user credentials against man-in-the-middle attacks by obfuscating user credentials instead of transmitting them across the network in plain text.

SSL and TLS do not protect stored passwords, which systems that use DIGEST-MD5 binding store in plain text.