Canvas comes with simple and secure Encryption and Decryption to protect and safeguard the data shared between Server and Client.
| Note |
|---|
When you enable encryption, Canvas will encrypt all requests coming to your application including log out. |
Features:
- It encrypts and decrypts every requests and responses in both the Server and the Client side.
- AES ciphers and Bouncy Castle security provider for Server side encryption and decryption
- It provides General Public Key and Secret Key for Client It provides with a secret key established between the client and the server using Diffie-Hellman key exchange mechanism, post which, the actual encryption takes place with this secret key using AES-GCM encryption algorithm.
- It provides a secret key for the Client and the server side encryption and decryption.
- It provides the ability to persist the Secret key for a session.
- It provides the ability to exchange the Secret keys at every page reload in the browsers those do not support session-storageenable and disable the encryption and decryption.
- It provides AES - GCM security measures in order to enhance the safety features during encryption.
- It provides the ability to enable and disable the encryption and decryptionprevent from Man-in-the-middle attack.