Versions Compared
Key
- This line was added.
- This line was removed.
- Formatting was changed.
To avoid showing for example passwords or PINs as plain readable text, such sensitive data in PRIME configuration files can be scrambled.
Scrambling means that the data is merely obfuscated, since true encryption would require someone typing a password on every system startup. The data is encrypted with AES-256, with a key stored in a java class.
Scrambling can be used for example in database.properties, system.properties and engineSignEncryptConfig.xml.
Prerequisites
Expand | ||
---|---|---|
| ||
The following prerequisites apply:
|
Step-by-step instruction
Expand | ||
---|---|---|
| ||
To scramble sensitive information in a .properties file or in engineSignEncryptConfig.xml:
|
Examples
Expand | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|
| ||||||||||
Example: Encrypt the database username and password in database.properties:
Example result:
|
Expand | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|
| ||||||||||
Example: Encrypt the certificate PIN in engineSignEncryptConfig.xml:
Example result:
|
Expand | ||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|
| ||||||||||||
Example: If you use the truststore in system.properties, encrypt the truststore password:
Example result:
|