Please Note:

User Guide
Quick Start
Tasks
- Upgrade from PA/CAP to CADP
- Create an NAE Session
- Setting up SSL with CipherTrust Manager
- Add Multiple CipherTrust Manager Servers
- Key Operations
  - Creating a Key
  - Creating a New Version of the Versioned Key
  - Using a Versioned Key to Decrypt, SignV, and MACV
  - Getting an Instance of a Key Object
  - Alternative Method to Get an Instance of a Key Object
  - Deleting a Key using the Key Name
  - Exporting a Key
  - Exporting a Wrapped Key
  - Setting a Key Mode and Padding
  - Getting Attributes of a Key
  - Exporting Versioned Key
  - Fetching Key Version using ID
- Generate and Verify MAC
- Encrypt a String Using an AES Key
- Decrypt a String Using an AES Key
- Encrypt a String Using an RSA Key
- Decrypt a String Using an RSA Key
- Encrypting/Decrypting a File
- Sign and SignVerify Data using an EC Key
- Sign and SignVerify Data using an RSA Key
- Enable Connection Pooling
- Enable Symmetric Key Caching
- Enable Asymmetric Key Caching
- Set Logging Parameters
- Change the Default Value of Connection Timeout
- Setting Transaction ID in Logs
- Logging to Syslog Server
Advanced Topics
- Configuration
  - Network Configuration Parameters
  - Connection Configuration Parameters
  - Caching Parameters
  - Logging Parameters
  - Syslog Advanced Configuration Parameters
  - SSL Configuration Parameters
  - Miscellaneous Configuration Parameters
- Connection Pooling
- Load Balancing Group
- Multi-tier Load Balancing Group
- Symmetric/Asymmetric Key Caching
- Persistent Key Caching
- Supported Services & Operations
- Supported Algorithms
- NAE Supported Functions
  - Supporting Calls
  - Connection Calls
  - Key-related Calls
  - MAC/Hash-related Calls
  - Security Considerations
- Format Preserving Encryption
- FPE/AES/Unicode Cardinality Block-Size Table
- API Definitions
- Key Permissions on Groups
- CryptoDataUtility
Troubleshooting

CADP for .NET Core
User Guide

User Guide

CADP enables you to integrate your .NET Core applications with the cryptographic and key-management capabilities of the CipherTrust Manager.

CADP enables your .NET Core client to perform cryptographic operations either by requesting that operations be performed on the CipherTrust Manager (remote mode) or by caching keys on the client and performing crypto locally (local mode).

Architecture

The CipherTrust Manager platform consists of the following components:

Client
CipherTrust Manager
Database connector (it is optional, required in some cases)

The following diagram shows a high-level architecture of a typical deployment of the CipherTrust Manager platform. Whenever required, the CipherTrust Manager client (application, Web, and database servers) makes requests using one of the CADP Clients or the XML interface for cryptographic operations to be performed by the CipherTrust Manager.

Architecture

The CipherTrust Manager performs all the desired cryptographic operations and returns data to the application that made the request. At that point, if the client is an application, it might want to store the data in a database or return the data to a client over the Internet. This unique method of providing cryptographic functionality over the network creates an extremely simple, scalable, and secure solution to backend data encryption, integrity checking, and fingerprinting (hashing). An example configuration is illustrated below.

CADP is installed on all the back-end servers that might be making requests for the cryptographic operations. All applications, servlets, or scripts see a conventional interface and issue simple commands to the CipherTrust Manager to perform cryptographic operations. Instead of bogging down back-end server applications with cryptographic operations, the CipherTrust Manager performs all such operations.

Hardware and Software Requirements

The hardware and software required are listed below.

CipherTrust Manager appliance: Available in various hardware configurations and comes standard with multiple 10/100 Ethernet interfaces for connecting to the back-end servers. Options are available for redundant power supplies, redundant fans, and multiple Gigabit Ethernet interfaces.
NuGet Package: Provided in the form of a package consisting of DLL files and configuration files.
.NET 6.0 or .NET 8.0 is required to run the sample code.
For macOS, the OpenSSL must be installed.

Supported Platforms

CADP for .NET Core is tested on the following platforms:

Windows Server 2019 Datacenter
Red Hat Enterprise Linux 8.0 (Ootpa)
macOS 13.3
Ubuntu 20.04

Suggest A Change

User Guide

Architecture

Hardware and Software Requirements

Supported Platforms

On this page