Security management
Key management
Key management lifecycle (secret keys, PGP keys)
- The key management life cycle includes creation, storage, usage, and renewal of keys.
- Key creation - Adeptia recommends that you use industry/third party tools as defined by client security policies and procedures.
- Key storage – Adeptia provides key storage capabilities for use within the product.
- Key renewal – Managed outside of the product as per client’s security policies and procedures.
SSL certificate management (CSR, CA)
- CSR for the server is generated manually using keytool utility that comes with the installation.
- CSR needs to be CA signed and imported to the product as a part of SSL configuration.
- CA Certificate renewal is managed externally as per client’s security policies and procedures.
Using secret keys
- A secret key helps you to create encryption or decryption activity that are required to encrypt outgoing data and decrypt incoming data respectively.
Help Links
Provider API security (REST, SOAP)
REST and SOAP Providers can be configured to use API Key (Basic Authorization) security.
Currently, OAuth2 is not supported for REST and SOAP providers.
Key creation - Adeptia recommends that you use industry/third party tools as defined by client security policies and procedures.
Encryption at Rest (EAR)
- Currently, encryption at rest for data files created and used in Process Flows is provided at system level.
- Encryption at rest can introduce some performance overheads due to decryptions.
Help Link
Encryption of the Data at Rest
See also