DES (Data Encryption Standard) or 3DES should not be used

Rule description

  • The Data Encryption Standard (DES) is a symmetric key algorithm for encrypting digital data. Its short key length of 56 bits makes it insecure. It should not be used anymore.
  • Visual Expert will find all DES calls in your PowerBuilder code, so you can remove them.


Non-compliant Code Example

loo_Crypt = create oleobject
loo_Crypt.CryptAlgorithm = "des" //Can't use DES
CrypterObject lnv_CrypterObject
lnv_CrypterObject = Create CrypterObject
lblb_encrypt = lnv_CrypterObject.SymmetricEncrypt(DES!, lblb_data, lblb_key, &OperationModeCBC!, lblb_iv, PKCSPadding!) //Can't use DES
Visual Expert 2020