Canvas comes with secure Encryption and Decryption of data transferred between the client and the server to protect and to safeguard the data transferred. Canvas uses PublicSymmetric-key cryptography (also known as asymmetric cryptography), a class of cryptographic algorithms that requires two separate keys, one secret (or private) key and one public key. The public key is used to encrypt plain text or to verify a digital signature; whereas the private key is used to decrypt ciphertext or to create a digital signaturein which the same key is used to encrypt and decrypt messages. The secret key is established between the client and the server using Diffie-Hellman key exchange mechanism, post which, the actual encryption takes place with this secret key using AES-GCM encryption algorithm.
Note |
---|
When you enable encryption, Canvas will encrypt all requests coming to your application including log out. |
To enable encryption, perform the following steps:
...
Code Block | ||
---|---|---|
| ||
<filter>
<filter-name>CanvasEncryptionFilter</filter-name>
<filter-class>
com.intellectdesign.canvas.servercomm.encryption.filters.CanvasEncryptionFilter
</filter-class>
</filter>
<filter-mapping>
<filter-name>CanvasEncryptionFilter</filter-name>
<url-pattern>/WidgetControllerServlet</url-pattern>
</filter-mapping>
<filter>
<filter-name>EncryptionResponseFilter</filter-name>
<filter-class>com.intellectdesign.canvas.servercomm.encryption.filters.EncryptionResponseFilter
</filter-class>
</filter>
<filter-mapping>
<filter-name>EncryptionResponseFilter</filter-name>
<url-pattern>/WidgetControllerServlet</url-pattern>
</filter-mapping> |
...