AnsweredAssumed Answered

Encrypting a string in API Gateway?

Question asked by mtrinath on Jan 27, 2016
Latest reply on Jul 3, 2018 by Popleys

Like • Show 0 Likes0
Comment • 5

Hi,

There is a requirement to encrypt a string which I receive as a value of a named query parameter and pass it to another system (along with many other fields). This encryption is to be done by a public key provided to us so that receiving system will decrypt the string with their private key. What I have is a public key and not a certificate (which could have been imported into the trust store).

Is there a way I can get the public key to be imported into the trust store? Or is there a way I can fulfil the requirements on API Gateway without having to go back to them with alternatives.

Many thanks!

Regards,

Trinath

Stephen_Hughes

Aug 26, 2016 5:09 AM

Correct Answer

Trinath,

We have several options available to meet the requirements that you outlined:

1) Existing assertions to provide encrypted credentials - JWT, JWE, or JWS, and for encrypted message bodies - JWE. Additional information can be found in our online documentation under the section "Encode JSON Web Token Assertion".

2) A tactical assertion called Asymmetric Key Encryption/Decryption Assertion, which will take a string provided and use a public key loaded into the Manage Certificate to encrypted. Need to request this assertion through CA Support.

Sincerely,

Stephen Hughes

Director, CA Support

See the reply in context

No one else had this question

Outcomes

Stephen_Hughes

Aug 26, 2016 5:09 AM

Trinath,

We have several options available to meet the requirements that you outlined:

Sincerely,

Stephen Hughes

Director, CA Support

4 people found this helpful

Actions

mtrinath @ Stephen_Hughes on Aug 29, 2016 3:22 AM

Hi Stephen,

It indeed appears as a correct answer. Bullet number is what I am after. I will raise a case and try to look at that assertion. Hopefully that will resolve my long standing problem.

Thanks...

Regards,

Trinath

Actions

panka03

@ mtrinath on Apr 24, 2018 3:21 PM

Hello,

Did this method work? Having a similar requirement but unable to use the asymmetric encryption assertion because the public key is not a certificate and can't be imported to the gateway's manage certificates.

Actions

ITChannels @ panka03 on Apr 27, 2018 10:21 AM

Hi,

Even we are having a similar requirement where the 3rd party have provided their public key instead of a certificate.

Not able to solve this one using CA API Gateway and we are stuck in our integration process.

Actions

Popleys @ Stephen_Hughes on Jul 3, 2018 2:29 AM

Hi Stephen,

Am using ssg9.3 after a search i could not find any occurrences of jwt besides that OTK one? Pls advice, do we need to install a JWT/JWE/JWS assertion module for it?

Actions

5 Replies

Stephen_Hughes Aug 26, 2016 5:09 AM
Unmark Correct
Correct Answer
Trinath,

We have several options available to meet the requirements that you outlined:
1) Existing assertions to provide encrypted credentials - JWT, JWE, or JWS, and for encrypted message bodies - JWE. Additional information can be found in our online documentation under the section "Encode JSON Web Token Assertion".
2) A tactical assertion called Asymmetric Key Encryption/Decryption Assertion, which will take a string provided and use a public key loaded into the Manage Certificate to encrypted. Need to request this assertion through CA Support.

Sincerely,

Stephen Hughes
Director, CA Support
4 people found this helpful
Like • Show 3 Likes3
Actions
- mtrinath @ Stephen_Hughes on Aug 29, 2016 3:22 AM
  Mark Correct
  Correct Answer
  Hi Stephen,
  It indeed appears as a correct answer. Bullet number is what I am after. I will raise a case and try to look at that assertion. Hopefully that will resolve my long standing problem.
  Thanks...
  Regards,
  Trinath
  Like • Show 0 Likes0
  Actions
  - panka03 @ mtrinath on Apr 24, 2018 3:21 PM
    Mark Correct
    Correct Answer
    Hello,
    
    Did this method work? Having a similar requirement but unable to use the asymmetric encryption assertion because the public key is not a certificate and can't be imported to the gateway's manage certificates.
    Like • Show 0 Likes0
    Actions
    - ITChannels @ panka03 on Apr 27, 2018 10:21 AM
      Mark Correct
      Correct Answer
      Hi,
      
      Even we are having a similar requirement where the 3rd party have provided their public key instead of a certificate.
      Not able to solve this one using CA API Gateway and we are stuck in our integration process.
      Like • Show 0 Likes0
      Actions
- Popleys @ Stephen_Hughes on Jul 3, 2018 2:29 AM
  Mark Correct
  Correct Answer
  Hi Stephen,
  Am using ssg9.3 after a search i could not find any occurrences of jwt besides that OTK one? Pls advice, do we need to install a JWT/JWE/JWS assertion module for it?
  Like • Show 0 Likes0
  Actions

Encrypting a string in API Gateway?

Outcomes

Related Content

Recommended Content

Incoming Links