I can see an option of #PGP has been given in #SymmetricKeyEncryptionDecryption assertion; however there is no guide to describe the details. Please let me know how I can use this feature in gateway ?
Hello SIDDHARTHJAISWAL ,
This a tactical assertion, the support team should provide the document along with the assertion.
In case you don't have it, I will attach it.
It would be great help if you can share the document.
As per my knowledge of PGP, it does symmetric encryption of data using session key, which in turn encrypted using public key. However, in the assertion input boxes, I don't get any way to input public key or certificate, which will in turn take care of Asymmetric Encryption part of PGP. How it is handled in the assertion. Please help on this.
Dear SIDDHARTHJAISWAL ,
The document had already attached, please check the ATTACHMENTS of my last comment.
I am following up with support team with couple of questions on PGP encryption/decryption and yet to get a satisfactory answer. Hope that stalwarts here can help me. Below are the queries regarding PGP encryption /decryption :
1 : While encryption, since we don't have "Key" option enabled to provide explicit PGP Public Key for encryption, I assume that the private is also encrypted inside the final encrypted output. How the other party, who is going to decrypt, will get to know and retrieve the private key required for decryption.
2 : In cases, where other party shares their PGP Public Key with us, how we will be able to use that in given assertion for encryption in PGP mode.
It is an urgent issue and halting one of our important APIs to move to production and causing business loss. Any help will be highly appreciated !
I am using Policy Manager version 9.1 and I dont see these assertion/options as mentioned in the document.
Where exactly can I access this assertion. Please suggest.
Dear Megha Joshi ,
It's not a OOTB assertion, it's a tactical assertion.
Please open a support ticket to ask for this assertion.
The tactical assertion to ask for in the support case you raise is : SymmetricKeyEncryptionDecryptionAssertion
It does support PGP encrypt/decrypt but does have some limitations. Here was recent request to add some features to the PGP ability :
Enhance PGP TacticalAssertion to support CAST5 and Signing
Cheers - Mark
Retrieving data ...