Bug #15609: Android - QC1332 - HSM SDK - Password Encryption Enhancement - Registration Check UAT - S-MADP Customer Support & Information Center

Bug #15609

Android - QC1332 - HSM SDK - Password Encryption Enhancement

Added by Jimmy Phang almost 2 years ago. Updated 8 months ago.

Status:

Resolved

Start date:

19 January 2023

Priority:

Normal

Due date:

Assignee:

Jimmy Phang

% Done:

Category:

Spent time:

Target version:

Description

For FE to cater the encryption using HSM, FE shall grab the PBK & Exponent String from retrieveSecInfo response by BE.

FE shall also consider the example of encryption below:

1. PBK String - from RetrieveSecInfo response
2. Exp String - from RetrieveSecInfo response
3. username = “ORG_CD”+”/”+”USER_CD”, sample : SUBSESTER001/SGL_1
4. String password = plaintext password

Please also pass in the password_data_block parameter for below WSs:-

- FE passes ‘password_data_block’ during PerformLogin

- FE passes ‘password_data_block’ during PerformVerifyPassword

- FE passes ‘password_data_block’ during PerformChangePassword

QC1332 - HSM Encryptor.pptx (47.1 KB) Jimmy Phang, 19 January 2023 01:23 PM

QC1332 - HSM Encryptor.pptx (47.8 KB) Jimmy Phang, 20 January 2023 10:25 AM

History

#1 Updated by Jimmy Phang almost 2 years ago

File QC1332 - HSM Encryptor.pptx added

Document updates.

3 ws added for FE to pass in password_data_block parameter.

#2 Updated by Jimmy Phang 8 months ago

Status changed from New to Resolved
Assignee changed from sengloong.khoo sengloong.khoo to Jimmy Phang

Tested good

Also available in: Atom PDF

OCBC NISP Velocity Mobile » VELO Registration Check » Registration Check UAT

Issues

Custom queries

Bug #15609

Android - QC1332 - HSM SDK - Password Encryption Enhancement

History

#1 Updated by Jimmy Phang almost 2 years ago

#2 Updated by Jimmy Phang 8 months ago