Hi,
There is a requirement to encrypt a string which I receive as a value of a named query parameter and pass it to another system (along with many other fields). This encryption is to be done by a public key provided to us so that receiving system will decrypt the string with their private key. What I have is a public key and not a certificate (which could have been imported into the trust store).
Is there a way I can get the public key to be imported into the trust store? Or is there a way I can fulfil the requirements on API Gateway without having to go back to them with alternatives.
Many thanks!
Regards,
Trinath
Trinath,
We have several options available to meet the requirements that you outlined:
1) Existing assertions to provide encrypted credentials - JWT, JWE, or JWS, and for encrypted message bodies - JWE. Additional information can be found in our online documentation under the section "Encode JSON Web Token Assertion".
2) A tactical assertion called Asymmetric Key Encryption/Decryption Assertion, which will take a string provided and use a public key loaded into the Manage Certificate to encrypted. Need to request this assertion through CA Support.
Sincerely,
Stephen Hughes
Director, CA Support