Overview of the PGP activities
WebSphere® Cast Iron® Studio supports PGP encryption and decryption. You can import, store, and retrieve keys and certificates that are used for PGP activities.
PGP has its own keystore for managing keys. The keystore location depends on the tool used. The public and the secret key ring of PGP is for cryptography. Cryptoservice uses the PGP keys to encrypt and decrypt content.
Cryptoservice comes with a utility to extract the PGP keys and store the same in the PKCS12 keystore.
For Cast Iron Studio, you must use the command line utility to import the extracted PKCS12 to the Studio keystore.
For the On-Premise Appliance, you must import the extracted PKCS12 to the Appliance keystore from the Web Management Console.
After completing the procedures mentioned above, you can encrypt
and decrypt content.
- To encrypt content, you must encode the human readable content to base64, and then pass the base64 content to PGP Encrypt activity. Then, configure the inputs and provide the public key to the activity, which in turn would return the encrypted data.
- To decrypt the content you must pass the encrypted data to the PGP Decrypt activity, and configure the input with the private keys and password. The output is base64. You must decode the base64 data to get the original content.