Skip to end of banner Go to start of banner

Security

Skip to end of metadata

Created by Nitin Beri, last modified on Feb 11, 2019

Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Key Management

Key Management lifecycle (Secret Keys, PGP keys)

The key management life cycle includes creation, storage, usage and renewal of keys.
Key Creation - Adeptia recommends using industry/third party tools as defined by client security policies and procedures
Key Storage – Adeptia provides key storage capabilities for use within the product
Key Renewal – Managed outside of the product as per client’s security policies and procedures

SSL Certificate Management (CSR, CA)

CSR’s for the server is generated manually using keytool utility that comes with the installation.
CSR’s will need to be CA signed and imported into the product installation as part of SSL Configuration
CA Certificate renewal is managed externally as per client’s security policies and procedures

Using Secret Keys

A secret key helps you to create encryption or decryption activity that are required to encrypt outgoing data and decrypt incoming data respectively.

Help Links

Creating Public/Private Keys

Creating Truststore

Managing Secret Key

API Security (REST, SOAP)

REST API and WS SOAP Services can be configures to use API Key(Basic Authorization) security.

Currently OAuth2 is not supported for REST API
Key Creation - Adeptia recommends using industry/3rdparty tools as defined by client security policies and procedures

Help Link

Using 2 Way SSL in Web Service Communication

https://docs.adeptia.com/display/AS/Using+2+Way+SSL+in+Web+Service+Communication

Encryption at Rest(EAR)

Currently Encryption at rest for data files created and used in processed flows is provided at a system level.
Encryption at rest can introduce some performance overheads due to decryptions.

Help Link

Encryption of the Data at Rest

No labels