1. Administration and Configuration Guide
  2. Data Security and Data Privacy
  3. Key Management

Key Management

The OFSAA Configuration Schema (CONFIG) is the repository to store passwords for users and Application Database Schemas centrally. These values are AES 256 bit encrypted using an encryption key uniquely generated for each OFSAA instance during the installation process.

The OFSAA platform provides a utility (EncryptC.sh) to rotate/ generate a new encryption key if needed.

Note:

Integration with any other Key Management solution is out of scope of this release.
This section details about the EncryptC Utility, which is used to:
  • Generate keystore from AESCryptkey.ext key.
  • Retrieve AESCryptkey.ext if it is deleted using the keystore.
  • Generate new AESCryptKey.ext and update the keystore.