Eclipse uses PBEWithSHA1AndDES as the default algorithm for encrypting the information in the secure storage. This algorithm is considered to be vulnerable.

The secure storage is located in the user's home directory and applies to all Eclipse installations. If you have used the secure storage with Eclipse or Software AG Designer, the secure storage file is configured to use the default algorithm.

Software AG Designer is enhanced with PBEWithSHA1AndDESede as the preselected algorithm. However, this algorithm applies only to the new storage files created with PBEWithSHA1AndDESede algorithm.

To enable the PBEWithSHA1AndDESede algorithm, you must delete the old secure storage file. You can find the secure storage settings at Window >Preferences > General > Security > Secure Storage > Contents. The Contents tab displays the location of the secure storage file. Save a copy of the old secure storage file. Delete the old secure storage settings and restart Software AG Designer. The secure storage file is created when the first credentials are stored.

For more information about the secure storage, see Workbench User Guide > Reference > Secure Storage in Software AG Designer help.