...
The class edu.uconn.kuali.rice.core.service.impl.AesEncryptionServiceImpl
AES Encryption Service
security keyAesEncryptionServiceImpl handles the encryption inside the KFS application. The service is referenced solely by the OJB configuratiion. Each encrypted field contains a conversion property in the OJB configuration of the business object that contains the field. The conversion property must be set to org.kuali.rice.core.framework.persistence.ojb.conversion.OjbKualiEncryptDecryptFieldConversion. This class uses the encryption service to encrypt or decrypt data when being read or stored.
AES Encryption Service
The AesEncryptionServiceImpl class uses the Java encryption library to implement the AES encryption algorithm with cipher block chaining and a static initialization vector.
security key
Each server stores the encryption key in a secure location within the security.properties file. This key must match the key used to encrypt the data in order for KFS to function properly.
Encrypted fields
- org.kuali.kfs.pdp.businessobject.AchAccountNumber=achBankAccountNbr
- org.kuali.kfs.pdp.businessobject.PayeeACHAccount=bankAccountNumber
- org.kuali.kfs.sys.businessobject.Bank=bankAccountNumber
- edu.uconn.kuali.kfs.cr.businessobject.CheckReconciliation=bankAccountNumber
- org.kuali.kfs.module.ar.businessobject.Customer=customerTaxNbr
- org.kuali.kfs.fp.businessobject.DisbursementVoucherWireTransfer=disbVchrPayeeAccountNumber
- uconn.edu.kuali.kfs.tax.businessobject.Payee=headerTaxNumber
- edu.uconn.kuali.kfs.fp.businessobject.ProcurementCardHolder=transactionCreditCardNumber
- edu.uconn.kuali.kfs.fp.businessobject.ProcurementCardHolderDetail=creditCardNumber
- org.kuali.kfs.fp.businessobject.ProcurementCardTransaction=transactionCreditCardNumber
- org.kuali.kfs.vnd.businessobject.VendorHeader=vendorTaxNumber
- org.kuali.kfs.vnd.businessobject.VendorTaxChange=vendorPreviousTaxNumber
...