SAP Knowledge Base Article - Preview

3612369 - About Nonce values in Java SDK

Symptom

  • Concern after an analysis on Java SDK.
  • The issue is related to the file GSRequest.java located at the path: com/gigya/socialize/GSRequest.java.
  • The concern is that standard random number generators do not provide a sufficient amount of entropy when used for security purposes, which could potentially allow attackers to brute force the output of pseudorandom number generators such as rand().


Read more...

Environment

  • SAP Customer Data Cloud
  • System (Network, Performance, SMTP, Rate Limits, Latency)

Product

SAP Customer Data Cloud all versions

Keywords

Java SDK, Security, Nonce Values, Random Number Generators, Entropy, CDC SDKs, Asymmetric Keys, Authorization Parameters, CDC, gigya , KBA , CEC-PRO-SYS , System (Network, Performance, SMTP, Rate Limits, Latency) , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.