Skip to main content

This content is closed to future replies and is no longer being maintained or updated.
Links may no longer function. If you have a similar request, please write a new post.

Question

 Abhinay Uge (Krishna_Das)
Virtusa
Abhinay Uge
Virtusa
US
Krishna_Das Member since 2016 17 posts
Virtusa
Posted: Feb 1, 2022
Last activity: Feb 25, 2022
Posted: 1 Feb 2022 11:56 EST
Last activity: 25 Feb 2022 11:57 EST
Closed

Platform cipher for Application data encryption - Key management

As per documentation Platform cipher refer the customer key stored in the “Key Store” and apply default cryptographic algorithm that is used by Pega Platform. (ref: https://docs-previous.pega.com/security/85/configuring-platform-cipher )

Could you please suggest for below regarding how exactly the process works:

  1. Is Pega Platform maintain any “internal key”/reference for mapping between Encrypted data and actual key ( along with IV ) sourced from Keystore instance ? so that it can identify the original key for decryption in case of key modified in source.
  2. Is this “internal key”/reference accessed and maintained during each transaction (encryption/decryption) ?
  3. Is this “internal key”/reference maintained in the server cache as well, if yes then what is maximum duration? Also is there any impact of the server reboot on performance w.r.t cached “internal key”/reference ?
  4. Is there any specific expiry of “internal key”/reference?

Thanks in advanced.

To see attachments, please log in.
Pega Platform 8.4.1
Security
Insurance
Lead System Architect

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice