Guidewire Cloud文件传输解密

huangapple go评论82阅读模式
英文:

Guidewire Cloud file transfer decryption

问题

我们正在准备接收PGP加密文件,并需要在它们到达指定的S3存储桶后对其进行解密。我一直无法确定云基础架构是否支持这个操作。有太多相互冲突的安全标准和文件,有些说明如何执行此操作,而有些明确禁止在GW Cloud中执行此操作(例如iEncryption)。

我非常想知道是否可以构建并实施这个操作?我本打算使用PBEEncryptionPlugin作为框架,但事情已经停滞不前,因为没有人确切知道是否允许这样做。

或者,如果在S3存储桶中文件到达后有其他解密和导入文件的方法。由于业务限制,我们无法在文件传输过程中执行加密/解密操作。但是,如果我们可以将PBEEncryptionPlugin用于构建经过云批准的SFTP流程,那么我非常愿意继续开发我的插件。

非常感谢任何帮助或澄清。

英文:

We are preparing to receive PGP encrypted files and need to have them decypted after they arrive in the prescribed S3 bucket. I have been unable to determine if this is something the Cloud infrastructure supports or not. There are too many conflicting Security Standards and documents out there that either show how to go about doing this, or say in no uncertain terms, it is prohibited in GW Cloud (e.g. iEncryption)

I'd very much like to know if this is something we can build an implement? I was in the process of using PBEEncryptionPlugin as a framework, but things have ground to a halt, as no one is quite sure if this is allowed or not.

Or if there is another way we can go about decrypting and ingesting this file once it arrives in the S3 bucket. We are unable to perform the encryption/decryption as part of the file transfer process due to business constraints. However, if we can use PBEEncryptionPlugin as part of building an SFTP process that is Cloud-approved, then I am very, very happy to continue working on my plugin build.

Any help or clarification is greatly appreciated.

答案1

得分: 4

云标准可能会发生变化,因此以下答案涉及到此答案编写时存在的云标准。

解决此问题的最佳方式是使用Integration Gateway应用程序。虽然Guidewire不允许在InsuranceSuite中直接进行解密,但Guidewire允许IG应用程序从S3存储桶中读取数据,进行解密,然后通过REST API发送到XCenter,或者可能将未加密的数据推送到另一个S3存储桶,以供XCenter获取。

如果您尝试进行SFTP集成,IG再次是最佳实现方式。虽然您无法在XCenter内创建自定义集成来与SFTP服务器进行文件的发送或接收,但可以构建一个IG应用程序,通过REST从Xcenter调用,然后与SFTP服务器进行交互。

您是正确的,应该停止使用PBEEncryptionPlugin,正如您所述。Guidewire不再允许在InsuranceSuite中直接进行加密或解密计算。

请记住,始终建议查看当前的云标准,您可以在文档链接中找到,标题为“欢迎来到Guidewire云标准”部分。

英文:

Cloud standards are subject to change, so the following answer regards the cloud standards existing when this answer was written.

The best way to solve this problem would be an Integration Gateway app. While Guidewire doesn't allow for the decryption to happen in InsuranceSuite directly, Guidewire does allow for an IG app to read from an S3 bucket, decrypt, and then send to XCenter via rest api, or perhaps push to another S3 bucket unencrypted for XCenter to pick up.

If you are trying to do an SFTP integration, IG is again the best way to implement this. While you cannot create a custom integration within XCenter to send or receive files from an SFTP server, you can build an IG app which is called via REST from Xcenter and then interacts with an SFTP server.

You are correct that you should cease using the PBEEncryptionPlugin, as you've stated. Guidewire no longer allows encryption or decryption compute to be done directly in InsuranceSuite.

Keep in mind it's always advisable to check the current cloud standards which can be found in your docs link in a section entitled "Welcome To Guidewire Cloud Standards".

huangapple
  • 本文由 发表于 2023年7月14日 01:53:24
  • 转载请务必保留本文链接:https://go.coder-hub.com/76682078.html
匿名

发表评论

匿名网友

:?: :razz: :sad: :evil: :!: :smile: :oops: :grin: :eek: :shock: :???: :cool: :lol: :mad: :twisted: :roll: :wink: :idea: :arrow: :neutral: :cry: :mrgreen:

确定