Can we encrypt an attribute value in NERM? And if so, will it affect the flow of attribute value in IDN using a webservice connector.
If you see the option of encrypting the attribute it shows a warning of it being encrypted on the DB level for Seczetta and addtionally it also mentions that the attribute will not be able to be searched and sort upon. You can expect the same from the API responses as well since you might not be able to decrypt it. It is all an assumption. I will still check it out and let you know if I got sometime.
- Encrypted Attribute values are encrypted on API writes, and decrypted on API reads. So, encrypted attribute values are available in plaintext to the ISC Web Services connector.
- Encrypted attributes cannot be acted upon otherwise within the application, including searching, sorting, or presentation in a drop-down list.
This feature was originally intended to protect sensitive data in an on-premises install when the database administrator was not able to encrypt content “at rest” on the disk. This no longer is a concern for the SaaS product NERM is today. As such, we do not encourage the use of encrypted attributes anymore and intend to deprecate that feature in a future release.
1 Like