heavypackets
commented
3 years ago What kind of encryption is being used here? Is it symmetric or asymmetric? How is the encryption key configured? Ideally, the key is runtime configurable. I will dig deeper into the implementation, but we need good documentation around this encryption scheme.
We'll also need a strategy for rotating/revoking the key @wbvtler in event it leaks or is compromised. This is somewhat complex as the old DB columns will still be encrypted with the old secret. So, this will require a utility that accepts the old key and updates the fields with the new key. I've written this before, it would be best to reuse the same ORM or schema tooling as the app.
b4bhadresh2020
This API though input user SSN and key and I have encrypt this SSN and key after store the database.
http://localhost/App-API/public/laravel/add-user-ssn-key
Request Parameter : user_id,user_ssn,user_key,encrypt_key (AMAZON KMS KEY)
Request Method : POST
Second API though user all answer store in db.
http://localhost/App-API/public/laravel/add-user-answer
Request Parameter : fafsa_id,user_id,question_id,data_boolean,data_numeric,data_text,data_date
Request Method : POST
This API connected to the puppeteer.
http://localhost/App-API/public/laravel/get-user-all-answer/{fafsa_id}/{user_id} Request Method : GET