PGP general flow (X send to Y):
At X side sending, sign with X private key, Encrypt with Y public key.
At Y side receiving, verify with X public key, Decrypt with Y private key.
Below show an example usage of Seeburger PGP module to sign and encrypt payload:
The payload go through MessageTranformBean to convert from XML to CSV format, then pass to module chain Seeburger PGP to to sign and encrypt.
seeburger_pgp_1

mode = sign and encrypt
signDocType = binary, tested for this sign and encrypted, it only work using binary.
signHashAlg, encryptDocSymAlg and encryptSymAlg can follow partner recommended setting.
signMode = twopass, traditional way to do PGP sign.
encryptKey0 = Partner PGP public key to encrypt
signKey = Own PGP private key to sign
cryptedpasswordSignKeyPass = masked key phrase for Own PGP private key. Alternate parameter is signKeyPass but password is viewable, not masked.
seeburger_pgp_2

pgpsourceDestMainDocument
pgpasciiArmorTRUE
pgpcompressFALSE
pgpcryptedpasswordSignKeyPass*****
pgpencryptDocSymAlgAES-256
pgpencryptKey0TRUSTED/SEEPGP/XXXXXXXXXXXXXXXXXXXXX
pgpencryptSymAlgAES-256
pgpmodesign-encrypt
pgpsignDocTypebinary
pgpsignHashAlgSHA-1
pgpsignKeyTRUSTED/SEEPGP/XXXXXXXXXXXXXX
pgpsignModetwopass

Keep on learning 🙂

Seeburger PGP Module to Sign and Encrypt Payload
Tagged on:                             

Leave a Reply

Your email address will not be published.