The derby.authentication.builtin.algorithm property specifies the message digest algorithm to use to protect the passwords that are stored in the database when using NATIVE authentication.
The value is the name of a message digest algorithm available from one of the Java Cryptography Extension (JCE) providers registered in the JVM. Some examples of valid values are MD5, SHA-256, and SHA-512.
The specified algorithm will be applied on the concatenation of the user name and the password before it is stored in the database.
derby.authentication.builtin.algorithm=algorithm
If the value of algorithm is NULL or an empty string, SHA-1 will be used on the password only.
For a newly created database, the default value is SHA-256, if that algorithm is available. If SHA-256 is not available, the default is SHA-1.
-- system-wide property derby.authentication.builtin.algorithm=SHA-512 -- database-level property CALL SYSCS_UTIL.SYSCS_SET_DATABASE_PROPERTY( 'derby.authentication.builtin.algorithm', 'SHA-512');
Dynamic; the change takes effect immediately. For information about dynamic changes to properties, see Dynamic and static properties.