Create and configure an encryption key stored in a file

You can use a file as a key store. Each file holds a single encryption key.

Before you begin

You must create the encryption key separately. The files must be in the <installation directory>/conf directory.

Procedure

  1. Create a file store.
    OptionDescription
    AES 128 Place the encryption key, exactly 16 bytes, into the file.
    AES 256 Place the encryption key, exactly 32 bytes, into the file.
  2. Update the edgeencryption.properties file.
    1. Change to the <installation directory>/conf/ directory.
    2. Open the edgeencryption.properties file.
    3. Enter the properties for the file store.

      You will have this set of properties for each encryption key stored in a file. A number is appended to each property to make the properties unique. For example, edgeencryption.encrypter.type.1.

      Table 1. Properties for encryption keys stored in a file-type key store
      Property Description
      edgeencryption.encrypter.type Defines the type of key store system. This property is specified for each key. Value is file.
      edgeencryption.encrypter.file Specifies the path and file name of the key's text file on the proxy.
      edgeencryption.encrypter.key Specifies the key name. This property is specified for each key. This name is used to specify the default keys. This is the key alias included as part of the metadata included with each encrypted item, which means that it is stored on the instance.
      An example for a file system key store.
      edgeencryption.encrypter.type = file
      edgeencryption.encrypter.file = conf/mykey.txt
      edgeencryption.encrypter.key = mykey
  3. Save and close the edgeencryption.properties file.