Encrypt and decrypt rest message
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎03-13-2022 09:20 AM
I have seen KMF started supporting key management, where one can generate, renew, suspend keys.
I see it support encryption and decryption options internally, where it wraps, unwraps they text using the security key which it internally maintains and no access to secret key during this process.( which is essential for consumer side/encryption/decryption)
I see there is a option to import external keys too.
My question is: is there a way we send encrypted message and consumer has the key and algorythm information and decrypt at their side. I am missing any documentation and guidelines around it.
I see edge encryption which encrypts transactional messages. But no proper guidance in using kmf for encrypting and decrypting data at consumer end.
Any light in that direction would be helpful.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎03-13-2022 03:51 PM
Yes you can, using the KMFCryptoOperation API available. I've sadly not had much look largely due to the source systems not supporting the same encryption types as SN
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎03-14-2022 09:27 AM
Hi Anson,
Can you please throw some light, how to get the secret key for the keys generated by ServiceNow. I guess this is necessary for the source to decrypt the messages being sent by ServiceNow. the KMFCryptoOperation api doesn't have option to get this key.
