This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Apigee Cache encryption.

Posted on 04-06-2020 10:21 PM
amitsatishnerka
New Member
Reply posted on --/--/---- --:-- AM

Hi,

My question is

Does Apigee store the cache data in encrypted format.

Is there any default encryption done internally by Apigee when we store the data in cache.

Thanks & Best regards,

Amit

0 2 447
Topic Labels
0 Likes
2 REPLIES 2

Posted on --/--/---- --:-- AM
dchiesa1
Staff
Reply posted on --/--/---- --:-- AM

Nope. Apigee does not encrypt data that your proxy inserts into the cache.

There is an encrypted Key-Value-Map store, but that's not the same as the Cache.

If you want to encrypt data before inserting it into the cache, you'll have to do it at the application layer. There are several custom policies that allow that. AES, RSA, JWE....

0 Likes

Posted on --/--/---- --:-- AM
deniska
New Member
Reply posted on --/--/---- --:-- AM

Well, I found some workaround on this one.

You can use KVM (that is encrypted), and you can define cache on your KVM, which will result the data being cached on MP level + encrypted from KVM.

But you need to write also logic for 'cleaning' your KVM because KVM saved unlike a cache, which truncated periodically. [Create encrytpted KVM> define cache for KVM> after X delete KVM and start over]

This is the closest result you can get, but, as Dino wrote, it's not same as pure cache, however, I think it is pretty close (as a mechanism) for cache (cached KVM)

https://docs.apigee.com/api-platform/reference/policies/key-value-map-operations-policy#exclusivecac...