Security

Owned by Nitin Beri (Unlicensed)
Last updated: Aug 26, 2019 by Akash Kumar Jaiswal (Unlicensed)Version comment
1 min read

Key Management

Key Management lifecycle (Secret Keys, PGP keys)

  • The key management life cycle includes creation, storage, usage and renewal of keys.
  • Key Creation - Adeptia recommends using industry/third party tools as defined by client security policies and procedures
  • Key Storage – Adeptia provides key storage capabilities for use within the product
  • Key Renewal – Managed outside of the product as per client’s security policies and procedures

SSL Certificate Management (CSR, CA)

  • CSR’s for the server is generated manually using keytool utility that comes with the installation.
  • CSR’s will need to be CA signed and imported into the product installation as part of SSL Configuration
  • CA Certificate renewal is managed externally as per client’s security policies and procedures

Using Secret Keys

  • A secret key helps you to create encryption or decryption activity that are required to encrypt outgoing data and decrypt incoming data respectively.

Creating Public/Private Keys

Creating Truststore

Managing Secret Key

API Security (REST, SOAP)

REST API and WS SOAP Services can be configures to use API Key(Basic Authorization) security. 

  •  Currently OAuth2 is not supported for REST API

  •  Key Creation - Adeptia recommends using industry/3rdparty tools as defined by client security policies and procedures

Using 2 Way SSL in Web Service Communication

 

Encryption at Rest (EAR)

  •        Currently, encryption at rest for data files created and used in processed flows is provided at a system level.
  •        Encryption at rest can introduce some performance overheads due to decryptions.

Help Link

Encryption of the Data at Rest

See also

Security Management