FPE_Decrypt
This API decrypts data using FPE.
URL
<http/https>://<host-name>:<Port>/protectappws/services/rest/fpe_decrypt
Input Parameters
| Parameters | Description |
|---|---|
| username | User name (optional). |
| password | Password associated with the user (optional). |
| cipherText | Encrypted data. |
| keyname | Name of the key to be used for decryption. |
| keyiv | Optional, Hex encoded 56 bytes if plaintext > 56 Numeric value. |
| tweakAlgo | Optional, default is none. |
| tweakData | If tweak algorithm is "None" or not passed in the API, the value of tweak must be HEX encoded 64-bit long string (HEX encoding will consume 16 characters). Tweak data is mandatory if Tweak Algo is given, else it is optional. |
| certAlias | Client certificate alias for making SSL connections (optional). |
| certPass | Password for the provided certificate alias (optional). |
Note
The FPE_Decrypt API only works with the FPE/AES/CARD10 algorithm.
Sample REST call for cxf
request
{
"FPE_Decrypt": {
"username": "jcetest",
"password": "asdf1234",
"keyname": "aes256vt",
"tweakAlgo": "none",
"tweakData": "1a23456712345678",
"cipherText": "363631343133"
}
}
response
{
"DecryptFPEResponse": {
"plainText": "232323328763"
}
}
Sample SOAP Parameters
<prot:FPE_Decrypt>
<username>jcetest</username>
<!--Optional:-->
<password>asdf1234</password>
<!--Optional:-->
<keyname>aes256vt</keyname>
<!--Optional:-->
<keyiv>0001020104050607080900010203040506070809000102030405060708090001020304050607080900010203040506070809000102030405</keyiv>
<!--Optional:-->
<tweakAlgo>none</tweakAlgo>
<tweakData>1a23456712345678</tweakData>
<cipherText>363631343133</cipherText>
</prot:FPE_Decrypt>
Output
Plaintext data.
<ns2:FPE_DecryptResponse xmlns:ns2="http://dsws.org/protectappws/">34373038</ns2:FPE_DecryptResponse>
