📄️ External Adapter Encryption Keys
External Adapter functionality requires that data (potentially including PII Data - Personally Identifiable Information) is sent from the Fenergo platform to a downstream provider. Encryption and Authentication is required when sending such data outside our domain and clients can configure this as part of their Adapter Setup.
📄️ External Adapter Encryption and Decryption
To protect the content of data sent to an External Adapter, The message body content is first encrypted using the AES-CBC Algorithm. This uses both an Encryption Key along with a random Initialization Vector (IV). A separate Authentication Key is used to calculate a hash on the encrypted message body. The random IV and the Hash are sent along with the message as a header. This allows the message to be both decrypted and then validated as coming from a trustworthy source.