Secure call flows: Encrypted payload for web service data action

View Only

Back to discussions

Expand all | Collapse all

Secure call flows: Encrypted payload for web service data action

Thread closed by the administrator, not accepting new replies.

1. Secure call flows: Encrypted payload for web service data action

Like

Kartik Sura

Posted 03-26-2020 02:35

No replies, thread closed.

Hi Team,

We are exploring a way to send credit card details from phone to our backend. Our requirement is to have the Creditcard details encrypted using our public key, before the API call is made.

Does pure-cloud support encryption of payload before sending the API request?

Note: HTTS might not work for us as the PCI compliance team raised a concern of: the credit card number would then be in plain text to our Public endpoint, bringing it and any systems that touched it after SSL into PCI scope (usually our Public endpoint, would not be decrypting SSL itself, usually network equipment upstream handles SSL), which isn't going to be allowed.

#ArchitectureandDesign
#Implementation

------------------------------
Kartik Sura
Uber
------------------------------
2. RE: Secure call flows: Encrypted payload for web service data action

Like

Robert Wakefield-Carl

Community Rockstar

Posted 03-26-2020 20:21

No replies, thread closed.

Encrypted key data actions is on the roadmap, but not for a bit. What you can use now is mTLS to secure the connection with your own certificate. Combined with https and IP whitelisting, you can get pretty secure.

Robert

------------------------------
Robert Wakefield-Carl
Avtex Solutions, LLC
Contact Center Innovation Architect
robertwc@avtex.com
https://www.Avtex.com
https://RobertWC.Blogspot.com
------------------------------
3. RE: Secure call flows: Encrypted payload for web service data action

Like

Kartik Sura

Posted 04-08-2020 09:09

No replies, thread closed.

Thanks for the response, Robert.
Could you provide a rough timelines for the tentative dates for this feature? I understand due to the extra-ordinary circumstances these days the timelines might vary wildly. But some broad hints such as H1,H2, Q4 Q3 would help us.

------------------------------
Kartik Sura
Uber
------------------------------

Original Message

Genesys Cloud - Main

Secure call flows: Encrypted payload for web service data action

Kartik Sura03-26-2020 02:35

Robert Wakefield-Carl03-26-2020 20:21

Kartik Sura04-08-2020 09:09

1. Secure call flows: Encrypted payload for web service data action

2. RE: Secure call flows: Encrypted payload for web service data action

3. RE: Secure call flows: Encrypted payload for web service data action

Related Content

Facing issue when decrypting the encrypted Data

Dialogflow in secure IVR

How are recordings encrypted?

Can agent listen to a hold music while the caller is in a secure ivr?

Bulk Recordings, are they encrypted, how?