REQ.172 Encrypt connection strings
This document details the security guidelines and requirements related to the secure encryption of database connection strings. Such encryption must be performed in configuration files, which must be separated from the source code that composes the application.
The developers must encrypt the database connection strings in a configuration file. This file must be separate from the source code.