Documents
  • About Chaintool
    • Why Chaintool
  • Quick Start
    • Key Concepts
    • User Guide
      • KYA User Guide
      • KYC User Guide
      • Device Intelligence User Guide
    • Category Definition
  • Identity Verification
    • KYC
      • Access Method
        • Workflow Configuration
        • KYC API
          • API Call Pre-description
            • Upload Customer Signing Key
            • Data Encryption and Decryption
          • Data Dictionary
          • Initiate face and document OCR
          • Biometric initialization
          • Match face to document
          • Face and document comparison results query
          • User KYC information query
      • Support countries and documents
    • ACL(Coming soon)
  • On-chain AML
    • KYA API
    • ML Risk Score
    • Data Indicators for Behavior Overview
    • KYT(Coming soon)
  • Anti-Fraud
    • Device Intelligence SDK
  • FAQ
    • Identity Verification FAQ
    • On-Chain AML FAQ
    • Anti-Fraud FAQ
  • Release Notes
    • 2023
Powered by GitBook
On this page
  • Why Use Data Encryption
  • Chaintool Uses AES Encryption
  • How Chaintool-KYC Products Encrypt and Decrypt
  1. Identity Verification
  2. KYC
  3. Access Method
  4. KYC API
  5. API Call Pre-description

Data Encryption and Decryption

Why Use Data Encryption

In the network transmission, the communication between the enterprise and the Chaintool server may be intercepted by hackers. ID verification products contain a lot of sensitive information from enterprise and customers, such as customer ID, real name, ID number, etc. Once intercepted, it may be used by hackers to commit crimes, causing customer losses. Therefore, the Chaintool-KYC product provides a solution to encrypt the entire request and data in the communication to avoid data leakage.

Chaintool Uses AES Encryption

Advanced Encryption Standard (AES) is a relatively common encryption method in symmetric key encryption. The encryption and decryption key of this encryption method is the AES key.

How Chaintool-KYC Products Encrypt and Decrypt

Upload AES Key

TODO Additional procedures are needed here

link Click to set up your AES key

Request Encryption

If an encrypted request scheme is adopted, the entire request message body needs to be AES encrypted. The encryption key is the AES key uploaded in the Chaintool management background. The code sample is as follows:

String encryptKey = "YOUR ENCRYPT KEY" //This is the AES encryption key generated or uploaded by the enterprise in the management backend.

Object body = new HttpRequestBody() //This is the body in the enterprise’s request.

String encryptBody = AESUtil.encrypt(key, body.toString()); // AES encryption of body

return encryptBody;

Response Decryption

If encryption scheme is used, while the request is encrypted, the response to the request will also be encrypted using the AES key uploaded through the Chaintool management console. The code sample is as follows:

String encryptKey = "YOUR ENCRYPT KEY" //This is the AES encryption key generated or uploaded by the enterprise in the management backend.

String responseBody = new String(response.getBody().getBytes()) //Get response of type String

String decryptBody  = AESUtil.decrypt(encryptKey, responseBody); //AES decryption of body

return decryptBody;

PreviousUpload Customer Signing KeyNextData Dictionary

Last updated 1 year ago