With version 15.1 and later, Replication Server uses Sybase Common Security Infrastructure (CSI) to provide server or client authentication, provide key-pair generation to support extended password encryption, and provide cryptography for encryption and decryption of passwords that are transmitted in the network between Replication Servers, and between Replication Server and the primary and replicate data servers.
Extended password encryption uses asymmetric key encryption, which allows Open Client applications with connection property CS_SEC_EXTENDED_ENCRYPTION enabled to connect to the Replication Server. It also allows Replication Server to enable CS_SEC_EXTENDED_ENCRYPTION when connecting to other servers.
Asymmetric key encryption uses a public key to encrypt the password and a private key to decrypt the password. The private key is not shared across the network, and is therefore secure.
To use the extended password encryption feature, you must have a server that supports extended password encryption, such as ASE 15.0.2 ESD #2 or later.