Password and Token Encryption
Passwords and tokens used in ABBYY FineReader Server 14 are encrypted using a 256-bit AES encryption key, offering the strongest encryption standard commercially available. By default, this key is static, meaning it does not have a limit on its lifetime. If required, you can renew the encryption key using the following command: %InstallationDir%\ConfigureOCRServer.exe /RenewKeyset.
Important! Before generating a key, you need to stop the ABBYY.Server.FineReaderServer.14.0 service.
Starting from FineReader Server 14 Release 4 onwards, you can also set up a policy that will automatically renew your key after a set period of time. This can be done by doing the following:
- Stop the ABBYY.Server.FineReaderServer.14.0 service.
- Execute the following command: %InstallationDir%\ConfigureOCRServer.exe /SetKeyLifetime=<the lifetime of the new token in days>. This command will set a lifetime for new tokens.
- Execute the following command: %InstallationDir%\ConfigureOCRServer.exe /RenewKeyset. This command will renew the key with the specified lifetime.
- Restart the ABBYY.Server.FineReaderServer.14.0 service.
Doing so will generate a new key. Once its lifetime expires, the key will automatically be renewed. You can manually check the expiration date of a key by executing the following command: %InstallationDir%\ConfigureOCRServer.exe /GetCurrentKeyExpiration.