1.1 PII Configuration - Encrypt Request Data or Decrypt Callback Data Dialog
Use to encrypt fields of a message to protect sensitive data or decrypt fields of a callback message to protect sensitive data.
The PII Configuration dialog is arranged in the following sections:
Encrypt Request Dialog
The Encrypt Request dialog enables you to encrypt fields of a message to protect sensitive data (known as personally identifiable information (PII)) flowing in web services and JCA adapters in Oracle SOA Suite and Oracle Service Bus.
The message fields are encrypted when entering the SOA composite application and decrypted when exiting the SOA composite application.
Encryption obfuscates selected fields (for example, SSNs) to prevent this data from appearing in administration consoles in clear text.
| Element | Description |
|---|---|
|
Personally Identifiable Information |
Displays the oracle/pii_security_policy. This policy secures the PII using encryption. The PII is identified through the XPath expression configuration or annotations in the schema. The key used for encryption and decryption is based on the password obtained from the configured Credential Store Framework (CSF) key. This policy is applied only on Oracle SOA Suite and Oracle Service Bus. |
|
Show Details icon |
Click to display details about the oracle/pii_security_policy. |
|
Add MTOM Policy icon |
Click to add the oracle/pii_security_policy. This icon is only enabled if the default policy has been removed. |
|
Edit PII Properties icon |
Click to select the fields of the request message to encrypt. |
|
Remove Selected Policy icon |
Click to remove the oracle/pii_security_policy. |
|
Enable Selected Policies icon |
Click to enable the oracle/pii_security_policy. |
|
Disable Selected Policies icon |
Click to disable the oracle/pii_security_policy. |
Decrypt Callback Dialog
The Decrypt Callback dialog enables you to decrypt fields of a callback message to protect sensitive data (known as personally identifiable information (PII)) flowing in web services and JCA adapters in Oracle SOA Suite and Oracle Service Bus.
The message fields are encrypted when entering the SOA composite application in a service binding component and decrypted when exiting the SOA composite application in a reference binding component. Messages outside the composite can be protected with other message protection policies (WS-Security/SSL).
This feature provides for the obfuscation of certain fields (for example, SSNs) to prevent this data from appearing in administration consoles in clear text.
| Element | Description |
|---|---|
|
Personally Identifiable Information |
Displays the oracle/pii_security_policy. This policy secures the PII using encryption. The PII is identified through the XPath expression configuration or annotations in the schema. The key used for encryption and decryption is based on the password obtained from the configured Credential Store Framework (CSF) key. This policy is applied only on Oracle SOA Suite and Oracle Service Bus. |
|
Show Details icon |
Click to display details about the oracle/pii_security_policy. |
|
Add MTOM Policy icon |
Click to add the oracle/pii_security_policy. This icon is only enabled if the default policy has been removed. |
|
Edit PII Properties icon |
Click to select the fields of the request message to encrypt. |
|
Remove Selected Policy icon |
Click to remove the oracle/pii_security_policy. |
|
Enable Selected Policies icon |
Click to enable the oracle/pii_security_policy. |
|
Disable Selected Policies icon |
Click to disable the oracle/pii_security_policy. |
Related Topics
Encrypting and Decrypting Specific Fields of Messages in Developing SOA Applications with Oracle SOA Suite