Used to encrypt sensitive properties, such as passwords, that are sent to the Content Engine server. The encryption is done using the public key retrieved from the Domain object associated with the object containing the sensitive property. Once the property is received on the server, it is decrypted with the domain's private key, then encrypted with the Content Engine master key prior to being persisted. Thus, this mechanism is intended to encrypt values only during transmission to the server, where they are immediately decrypted.

Static methods are available for encrypting bytes, chars, and Strings. Note that the use of the method that encrypts Strings is discouraged, as Strings are immutable, so the sensitive data can remain in memory, posing a security risk, or it can be inadvertently written to disk as a result of exception handling or logging activity. Any char or byte array passed to an encrypt method is overwritten once the encryption has been performed. If the application needs to use the sensitive data after encryption, which should be an unusual case, it must make a copy prior to encryption.

chars and Strings are UTF-8 encoded prior to being encrypted.


Namespace: FileNet.Api.Util
Assembly: FileNet.Api (in filenet.api.dll)

Syntax

Visual Basic (Declaration)
Public Class Encryption
C#
public class Encryption
C++
ref class Encryption
J#
public class Encryption
JScript
public class Encryption

Inheritance Hierarchy

System.Object
   FileNet.Api.Util.Encryption

Thread Safety

Public static (Shared in Visual Basic)staticShared members of this type are safe for multithreaded operations. Instance members are not guaranteed to be thread-safe.

See Also