Dynamic key exchange- Postilion connecting to JPos
48 views
Skip to first unread message
Rosario
Apr 3, 2020, 6:57:34 PM4/3/20
to jPOS Users
Hi all. I tried searching some ideas on how to implement the above, couldn’t find much resources. The discussion I saw was a bit old. I understand logon manager can be used to dynamic key exchange when jpos gw connects to thirdparty system lets say Postilion. How do I implement the reverse. Is there any development around this. Any sample code.
Basically when Postilion requests for a key exchange message. I will have to share a KEK that is encrypted using lmk and maintain the kek in session, use the sms same to deal with pin blocks.
Thanks in advance
Basically when Postilion requests for a key exchange message. I will have to share a KEK that is encrypted using lmk and maintain the kek in session, use the sms same to deal with pin blocks.
Thanks in advance
chhil
Apr 3, 2020, 11:37:43 PM4/3/20
to jpos-...@googlegroups.com
Irrespective of you requesting keys or someone requesting them from you,
you need to write something that talks to the HSM (hardware security module) like any other endpoint in the Jpos system.
Use the channels, mux and message packagers (for Thales hsms you can write fsd msg schemas) and do request responses with the hsm to get keys , translate pinblocks, or perform any secure crypto functions supported by your HSM.
-chhil
--
--
jPOS is licensed under AGPL - free for community usage for your open-source project. Licenses are also available for commercial usage. Please support jPOS, contact: sa...@jpos.org
---
You received this message because you are subscribed to the Google Groups "jPOS Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to jpos-users+...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/jpos-users/4ef763fa-cdf4-46db-89e9-0e2b9e698314%40googlegroups.com.
Reply all
Reply to author
Forward
0 new messages