Modifying protection policy
To modify an existing protection policy:
Open Application Data Protection.
In the left pane, click Protection Policies. The list of protection policies is displayed.
Click the protection policy that you want to update. The <Protection Policy-name> screen shows the policy details.
Modify the policy details. You can modify the following fields:
Algorithm
Key
Tweak
Tweak Algorithm
IV
Character Set
Click Save Changes. A message stating, Protection Policy updated successfully is displayed and the version of policy is incremented. The updated policy is automatically received in client's environment after heartbeat interval.
Modify policy with legacy formats
While modifying an existing protection policy, if it contains any of the following algorithms, the CipherTrust Manager will automatically map the old algorithm to the equivalent algorithm and character set.
FPE/AES/CARD10
FPE/AES/CARD26
FPE/AES/CARD62
FPE/AES/UNICODE
FPE/FF1v2/CARD10
FPE/FF1v2/CARD26
FPE/FF1v2/CARD62
FPE/FF1v2/ASCII
FPE/FF1v2/UNICODE
FPE/FF3/CARD10
FPE/FF3/CARD26
FPE/FF3/CARD62
FPE/FF3/ASCII
The following table shows the mapping of legacy formats (algorithm + character set) to their equivalent algorithm and character set.
Legacy formats (algorithm) | Equivalent algorithm | Equivalent Character set |
---|---|---|
FPE/AES/CARD10 | FPE/AES | All digits |
FPE/AES/CARD26 | FPE/AES | Lower Alphabets |
FPE/AES/CARD62 | FPE/AES | Alphanumeric |
FPE/FF1v2/CARD10 | FPE/FF1v2 | All digits |
FPE/FF1v2/CARD26 | FPE/FF1v2 | Lower Alphabets |
FPE/FF1v2/CARD62 | FPE/FF1v2 | Alphanumeric |
FPE/FF1v2/ASCII | FPE/FF1v2 | existing character set |
FPE/FF3/CARD10 | FPE/FF3 | All digits |
FPE/FF3/CARD26 | FPE/FF3 | Lower Alphabets |
FPE/FF3/CARD62 | FPE/FF3 | Alphanumeric |
FPE/FF3/ASCII | FPE/FF3 | existing character set |