Abstract image of a woman sitting on books and studying on a laptop

Mule security - pgp

Download as PPT, PDF
C
charan teja R

This document discusses PGP security and encryption in Mule. It explains that PGP allows for end-to-end encrypted communication between parties using signed and encrypted messages. It also discusses requirements for using PGP, including installing unlimited strength jurisdiction policy files. Finally, it provides an example of configuring PGP encryption in Mule using a security manager, key manager, and credential accessor to encrypt and decrypt messages and files in flows.

Technology
1 of 11
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
Security-PGP
2 PGP Security This extension adds PGP security on endpoint communication. With PGP you can achieve end-to-end security communication with signed and encrypted messages between parties.
3 Requirements Policy Files If you are running JDK 1.4+ that comes with the Sun JCE by default, you must install the Unlimited Strength Jurisdiction Policy files, which can be downloaded from the following URL (note that they are listed entirely at the bottom of the page, in the Other Downloads section): JDK 1.4 JDK 5 JDK 6 These files must be installed in $JAVA_HOME$/jre/lib/security
4 According to Sun, the default distribution of the JCE allows "strong, but limited strength cryptography." This means that you cannot use RSA keys bigger than 2048 bits and no symmetric ciphers that use more than 128 bits. ElGamal is not allowed at all, thus DH/DSS cannot be used for encryption.
5 Encrypting and Decrypting To encrypt and decrypt messages you need to configure the following elements: A security manager: responsible of holding a security provider, which contains the key rings, and the encryption strategy to be used. This allows for the encryption of all messages using the same key or to facilitate the use of different key rings. A key manager: which is responsible for reading the key rings. A credential accessor: which determines the key ring and key manager to be used to encrypt/decrypt the message being processed.
6 Example <spring:beans> <spring:bean id="pgpKeyManager" class="org.mule.module.pgp.PGPKeyRingImpl" init-method="initialise"> <spring:property name="publicKeyRingFileName" value="pubring.gpg"/> <spring:property name="secretKeyRingFileName" value="secring.gpg"/> <spring:property name="secretAliasId" value="$ {public.KeyId.LongValue}"/> <spring:property name="secretPassphrase" value="$ {secret.Passphrase}"/> </spring:bean> <spring:bean id="credentialAccessor" class="com.somecompany.apps.AppCredentialAccessor"> <spring:property name="credentials" value="John Smith (TestingKey) &lt;john.smith@somecompany.com&gt;"/> </spring:bean> </spring:beans>
7 <pgp:security-manager> <pgp:security-provider name="pgpSecurityProvider" keyManager-ref="pgpKeyManager"/> <pgp:keybased-encryption-strategy name="keyBasedEncryptionStrategy" keyManager-ref="pgpKeyManager" credentialsAccessor-ref="credentialAccessor"/> </pgp:security-manager>
8 The pgpKeyManager (in the spring:beans tag) is the one responsible for reading the rings. You have to set all the parameters: public and secret rings, the alias id (the long value in the ring) and the secret passphrase. In the same section, you can see the credentials accessor which needs to implement the CredentialsAccessor interface basically returning the key id based on the message (MuleEvent). Finally the pgp:security-manager glues both beans.
9 You are ready to encrypt and decrypt messages in your flows. The following two flows show how to use the encrypt-transformer and decrypt- transformer to encrypt and decrypt files.
10 <flow name="processEncryptFiles"> <file:inbound-endpoint connector-ref="inputEncrypt" path="file:///temp/fileInput" moveToDirectory="file:///temp/fileInputBackup" moveToPattern="#[header:originalFilename].backup" transformer- refs="file2Bytes" /> <encrypt-transformer name="pgpEncrypt" strategy-ref="keyBasedEncryptionStrategy" /> <file:outbound-endpoint connector-ref="output" path="file:///temp/fileOutput" outputPattern="#[function:datestamp]- #[header:originalFilename]" /> </flow> <flow name="processDecryptFiles"> <file:inbound-endpoint connector-ref="inputDecrypt" path="file:///temp/fileOutput" moveToDirectory="file:///temp/fileOutputEncrypted" moveToPattern="#[header:originalFilename].backup" transformer- refs="file2Bytes" /> <decrypt-transformer name="pgpDecrypt" strategy-ref="keyBasedEncryptionStrategy" /> <file:outbound-endpoint connector-ref="output" path="file:///temp/fileOutputDecrypted" outputPattern="#[function:datestamp]- #[header:originalFilename]" /> </flow>
Mule security - pgp

More Related Content

PPT
Mule security - pgp
himajareddys
 
PPT
Mule security pgp with Example
D.Rajesh Kumar
 
PPTX
Pgp security mule
Sindhu VL
 
PPTX
Using pgp with mule
Anil Kumar V
 
PDF
Safer Online Communication
Maja Kraljič
 
PDF
Web security at Meteor (Pivotal Labs)
Emily Stark
 
DOCX
key-aggregate cryptosystem for scalable data sharing in cloud storage
swathi78
 
PPTX
Home network security
Jay Mehta
 
Mule security - pgp
himajareddys
 
Mule security pgp with Example
D.Rajesh Kumar
 
Pgp security mule
Sindhu VL
 
Using pgp with mule
Anil Kumar V
 
Safer Online Communication
Maja Kraljič
 
Web security at Meteor (Pivotal Labs)
Emily Stark
 
key-aggregate cryptosystem for scalable data sharing in cloud storage
swathi78
 
Home network security
Jay Mehta
 

What's hot (14)

PDF
Meteor Meets Mallory
Emily Stark
 
PPTX
MongoDB.local DC 2018: Simplified Encryption & Key Management for MongoDB
MongoDB
 
PPTX
Cassandra
rezabehzadi3
 
PPT
ssl
sjyuva
 
PPT
Sniffing SSL Traffic
dkaya
 
PPTX
SSL overview
Todd Benson (I.T. SPECIALIST and I.T. SECURITY)
 
PDF
Safety first – best practices in app security​
Ana Baotić
 
PPTX
Ssl in a nutshell
Frank Kelly
 
PPTX
Introduction to SSL and How to Exploit & Secure
Brian Ritchie
 
PPTX
Ssl certificate in internet world
jamesbarns729
 
PPTX
cryptography security
Zia3130
 
PDF
Let's Encrypt! Wait. Why? How? - WC Pune
Nancy Thanki
 
PDF
Let's Encrypt! Wait. Why? How?
Nancy Thanki
 
PDF
Hashgraph vs Blockchain | Hedera Hashgraph Tutorial | Hashgraph Technology | ...
Edureka!
 
Meteor Meets Mallory
Emily Stark
 
MongoDB.local DC 2018: Simplified Encryption & Key Management for MongoDB
MongoDB
 
Cassandra
rezabehzadi3
 
ssl
sjyuva
 
Sniffing SSL Traffic
dkaya
 
SSL overview
Todd Benson (I.T. SPECIALIST and I.T. SECURITY)
 
Safety first – best practices in app security​
Ana Baotić
 
Ssl in a nutshell
Frank Kelly
 
Introduction to SSL and How to Exploit & Secure
Brian Ritchie
 
Ssl certificate in internet world
jamesbarns729
 
cryptography security
Zia3130
 
Let's Encrypt! Wait. Why? How? - WC Pune
Nancy Thanki
 
Let's Encrypt! Wait. Why? How?
Nancy Thanki
 
Hashgraph vs Blockchain | Hedera Hashgraph Tutorial | Hashgraph Technology | ...
Edureka!
 
Ad

Viewers also liked (20)

PPT
Mule saas
vishnukanthro45
 
PDF
How to make ... Smore
Joanna Soltysiak
 
PDF
TEDxUCDavis SAV(vy) Orientation
Jenny Bounmivilay
 
PDF
veverka DE65 Opinion
William Clair
 
PPTX
Engage
Simon Baig, FCCA, CGEIT, MSc
 
PPTX
Roofer westchester county ny
lakshmi durga
 
PDF
Transformando eficientemente resultados de uma consulta jdbc para json
Jeison Barros
 
DOCX
Rúbricas Clásicos Escolares Tarea del Módulo 3
tomasrodriguezreyes
 
PPT
Maven in Mule
Anand kalla
 
PDF
Aprenentatge Basat en Projectes: Nivells i vies de transició.
jdomen44
 
PDF
Katastatiko neognologikis
psaltakis
 
PPTX
Les controvèrsies com a contexts rellevants per a l'experimentació a les aules.
jdomen44
 
PPTX
Kahoot questions
Lamia Büşra YEŞİL
 
PDF
Estrategias para evitar reingresos
Sociedad Española de Cardiología
 
PDF
Guía de lectura. los doce trabajos de hércules Clásicos Escolares 15/16
tomasrodriguezreyes
 
PPTX
Μαριάννα - Αυτόχθονες λαοί
pitm1
 
PPTX
λαπωνια
Chrysa Arabatzoglou
 
PDF
Introdução a RAML - parte 1
Jeison Barros
 
PPTX
Service orchestration by using flows
Sindhu VL
 
PPTX
Mule esb for beginners
Sindhu VL
 
Mule saas
vishnukanthro45
 
How to make ... Smore
Joanna Soltysiak
 
TEDxUCDavis SAV(vy) Orientation
Jenny Bounmivilay
 
veverka DE65 Opinion
William Clair
 
Engage
Simon Baig, FCCA, CGEIT, MSc
 
Roofer westchester county ny
lakshmi durga
 
Transformando eficientemente resultados de uma consulta jdbc para json
Jeison Barros
 
Rúbricas Clásicos Escolares Tarea del Módulo 3
tomasrodriguezreyes
 
Maven in Mule
Anand kalla
 
Aprenentatge Basat en Projectes: Nivells i vies de transició.
jdomen44
 
Katastatiko neognologikis
psaltakis
 
Les controvèrsies com a contexts rellevants per a l'experimentació a les aules.
jdomen44
 
Kahoot questions
Lamia Büşra YEŞİL
 
Estrategias para evitar reingresos
Sociedad Española de Cardiología
 
Guía de lectura. los doce trabajos de hércules Clásicos Escolares 15/16
tomasrodriguezreyes
 
Μαριάννα - Αυτόχθονες λαοί
pitm1
 
λαπωνια
Chrysa Arabatzoglou
 
Introdução a RAML - parte 1
Jeison Barros
 
Service orchestration by using flows
Sindhu VL
 
Mule esb for beginners
Sindhu VL
 
Ad

Similar to Mule security - pgp (20)

PPTX
Encrption in mule
Sindhu VL
 
PPTX
Using pgp with mule
Anil Kumar V
 
PDF
Using PGP for securing the e-mail
davidepiccardi
 
PPTX
E mail security
Soumya Vijoy
 
DOCX
Pgp
Abhishek Kesharwani
 
PPTX
Mulesoft encryption
Jagruti Sakhare
 
DOCX
Pgp
Abhishek Kesharwani
 
PPTX
Using PGP for securing the email
Gianni Fiore
 
PPT
PGP S/MIME
Sou Jana
 
PPTX
Mulesoft Meetup Cryptography Module
ManjuKumara GH
 
PPTX
Ahmadabad mule soft_meetup_17april2021_mule4_cryptography
Shekh Muenuddeen
 
PPT
Lecture 8 mail security
rajakhurram
 
PPTX
Pgp pretty good privacy
Pawan Arya
 
PPT
Pgp
Reham Maher El-Safarini
 
PDF
E-mail Security Protocol - 2 Pretty Good Privacy (PGP)
Vishal Kumar
 
PPT
Pgp smime
Tania Agni
 
PPTX
Pgp1
Sanjeevsharma620
 
PPTX
Email sec11
Athira Asakumar
 
PDF
PGP Encryption And Decryption With Mule ESB
Jitendra Bafna
 
PPT
electronic mail security for authent.ppt
naghamallella
 
Encrption in mule
Sindhu VL
 
Using pgp with mule
Anil Kumar V
 
Using PGP for securing the e-mail
davidepiccardi
 
E mail security
Soumya Vijoy
 
Pgp
Abhishek Kesharwani
 
Mulesoft encryption
Jagruti Sakhare
 
Pgp
Abhishek Kesharwani
 
Using PGP for securing the email
Gianni Fiore
 
PGP S/MIME
Sou Jana
 
Mulesoft Meetup Cryptography Module
ManjuKumara GH
 
Ahmadabad mule soft_meetup_17april2021_mule4_cryptography
Shekh Muenuddeen
 
Lecture 8 mail security
rajakhurram
 
Pgp pretty good privacy
Pawan Arya
 
Pgp
Reham Maher El-Safarini
 
E-mail Security Protocol - 2 Pretty Good Privacy (PGP)
Vishal Kumar
 
Pgp smime
Tania Agni
 
Pgp1
Sanjeevsharma620
 
Email sec11
Athira Asakumar
 
PGP Encryption And Decryption With Mule ESB
Jitendra Bafna
 
electronic mail security for authent.ppt
naghamallella
 

More from charan teja R (20)

PPT
Mule cloud hub console overview
charan teja R
 
PPT
Mule deploying a cloud hub application
charan teja R
 
PPT
Security spring security manager
charan teja R
 
PPT
Security authorization using spring security
charan teja R
 
PPT
Anypoint data gateway
charan teja R
 
PPT
Mule B2B
charan teja R
 
PPT
Mule security
charan teja R
 
PPT
Mule security - jaas
charan teja R
 
PPT
Mule security - saml
charan teja R
 
PPT
Mule anypoint workday-devkit
charan teja R
 
PPT
Mule anypoint workday-connectors
charan teja R
 
PPTX
Mule esb
charan teja R
 
PPT
Mule connectors
charan teja R
 
PPT
Mule microsoft environment
charan teja R
 
PPT
Mule esb–api layer
charan teja R
 
PPT
Mule salesforce integration solutions
charan teja R
 
DOCX
Mule with jdbc(my sql)
charan teja R
 
PPTX
Mule esb usecase
charan teja R
 
PPT
Mule saas
charan teja R
 
PPTX
Mule esb
charan teja R
 
Mule cloud hub console overview
charan teja R
 
Mule deploying a cloud hub application
charan teja R
 
Security spring security manager
charan teja R
 
Security authorization using spring security
charan teja R
 
Anypoint data gateway
charan teja R
 
Mule B2B
charan teja R
 
Mule security
charan teja R
 
Mule security - jaas
charan teja R
 
Mule security - saml
charan teja R
 
Mule anypoint workday-devkit
charan teja R
 
Mule anypoint workday-connectors
charan teja R
 
Mule esb
charan teja R
 
Mule connectors
charan teja R
 
Mule microsoft environment
charan teja R
 
Mule esb–api layer
charan teja R
 
Mule salesforce integration solutions
charan teja R
 
Mule with jdbc(my sql)
charan teja R
 
Mule esb usecase
charan teja R
 
Mule saas
charan teja R
 
Mule esb
charan teja R
 

Recently uploaded (20)

PPTX
SGT Report The Beast Plan and Cyberphysical Systems of Control
hopegirl587
 
PDF
A symptom-driven medical diagnosis support model based on machine learning te...
IAESIJAI
 
PDF
Enhancing plagiarism detection using data pre-processing and machine learning...
IAESIJAI
 
PDF
Transform-Your-Streaming-Platform-with-AI-Driven-Quality-Engineering.pdf
Kalilur Rahman
 
PDF
Rapid Prototyping: A lecture on prototyping techniques for interface design
Mark Billinghurst
 
PPTX
AI-driven Assurance Across Your End-to-end Network With ThousandEyes
ThousandEyes
 
PDF
CXOs-Are-you-still-doing-manual-DevOps-in-the-age-of-AI.pdf
Kalilur Rahman
 
PDF
Connector Corner: Transform Unstructured Documents with Agentic Automation
DianaGray10
 
PDF
Dell Pro Micro: Speed customer interactions, patient processing, and learning...
Principled Technologies
 
PDF
Comparative analysis of machine learning models for fake news detection in so...
IAESIJAI
 
PDF
4 layer Arch & Reference Arch of IoT.pdf
sendilkumar66
 
PDF
Transform-Your-Supply-Chain-with-AI-Driven-Quality-Engineering.pdf
Kalilur Rahman
 
PDF
Data Virtualization in Action: Scaling APIs and Apps with FME
Safe Software
 
PDF
EIS-Webinar-Regulated-Industries-2025-08.pdf
Earley Information Science
 
PDF
5-Ways-AI-is-Revolutionizing-Telecom-Quality-Engineering.pdf
Kalilur Rahman
 
PDF
INTERSPEECH 2025 「Recent Advances and Future Directions in Voice Conversion」
NU_I_TODALAB
 
PDF
Electrocardiogram sequences data analytics and classification using unsupervi...
IAESIJAI
 
PDF
Transform-Quality-Engineering-with-AI-A-60-Day-Blueprint-for-Digital-Success.pdf
Kalilur Rahman
 
PDF
Accessing-Finance-in-Jordan-MENA 2024 2025.pdf
Mustafa Kuğu
 
PDF
Planning-an-Audit-A-How-To-Guide-Checklist-WP.pdf
DROK2
 
SGT Report The Beast Plan and Cyberphysical Systems of Control
hopegirl587
 
A symptom-driven medical diagnosis support model based on machine learning te...
IAESIJAI
 
Enhancing plagiarism detection using data pre-processing and machine learning...
IAESIJAI
 
Transform-Your-Streaming-Platform-with-AI-Driven-Quality-Engineering.pdf
Kalilur Rahman
 
Rapid Prototyping: A lecture on prototyping techniques for interface design
Mark Billinghurst
 
AI-driven Assurance Across Your End-to-end Network With ThousandEyes
ThousandEyes
 
CXOs-Are-you-still-doing-manual-DevOps-in-the-age-of-AI.pdf
Kalilur Rahman
 
Connector Corner: Transform Unstructured Documents with Agentic Automation
DianaGray10
 
Dell Pro Micro: Speed customer interactions, patient processing, and learning...
Principled Technologies
 
Comparative analysis of machine learning models for fake news detection in so...
IAESIJAI
 
4 layer Arch & Reference Arch of IoT.pdf
sendilkumar66
 
Transform-Your-Supply-Chain-with-AI-Driven-Quality-Engineering.pdf
Kalilur Rahman
 
Data Virtualization in Action: Scaling APIs and Apps with FME
Safe Software
 
EIS-Webinar-Regulated-Industries-2025-08.pdf
Earley Information Science
 
5-Ways-AI-is-Revolutionizing-Telecom-Quality-Engineering.pdf
Kalilur Rahman
 
INTERSPEECH 2025 「Recent Advances and Future Directions in Voice Conversion」
NU_I_TODALAB
 
Electrocardiogram sequences data analytics and classification using unsupervi...
IAESIJAI
 
Transform-Quality-Engineering-with-AI-A-60-Day-Blueprint-for-Digital-Success.pdf
Kalilur Rahman
 
Accessing-Finance-in-Jordan-MENA 2024 2025.pdf
Mustafa Kuğu
 
Planning-an-Audit-A-How-To-Guide-Checklist-WP.pdf
DROK2
 

Mule security - pgp

  • 2. 2 PGP Security This extension adds PGP security on endpoint communication. With PGP you can achieve end-to-end security communication with signed and encrypted messages between parties.
  • 3. 3 Requirements Policy Files If you are running JDK 1.4+ that comes with the Sun JCE by default, you must install the Unlimited Strength Jurisdiction Policy files, which can be downloaded from the following URL (note that they are listed entirely at the bottom of the page, in the Other Downloads section): JDK 1.4 JDK 5 JDK 6 These files must be installed in $JAVA_HOME$/jre/lib/security
  • 4. 4 According to Sun, the default distribution of the JCE allows "strong, but limited strength cryptography." This means that you cannot use RSA keys bigger than 2048 bits and no symmetric ciphers that use more than 128 bits. ElGamal is not allowed at all, thus DH/DSS cannot be used for encryption.
  • 5. 5 Encrypting and Decrypting To encrypt and decrypt messages you need to configure the following elements: A security manager: responsible of holding a security provider, which contains the key rings, and the encryption strategy to be used. This allows for the encryption of all messages using the same key or to facilitate the use of different key rings. A key manager: which is responsible for reading the key rings. A credential accessor: which determines the key ring and key manager to be used to encrypt/decrypt the message being processed.
  • 6. 6 Example <spring:beans> <spring:bean id="pgpKeyManager" class="org.mule.module.pgp.PGPKeyRingImpl" init-method="initialise"> <spring:property name="publicKeyRingFileName" value="pubring.gpg"/> <spring:property name="secretKeyRingFileName" value="secring.gpg"/> <spring:property name="secretAliasId" value="$ {public.KeyId.LongValue}"/> <spring:property name="secretPassphrase" value="$ {secret.Passphrase}"/> </spring:bean> <spring:bean id="credentialAccessor" class="com.somecompany.apps.AppCredentialAccessor"> <spring:property name="credentials" value="John Smith (TestingKey) &lt;[email protected]&gt;"/> </spring:bean> </spring:beans>
  • 8. 8 The pgpKeyManager (in the spring:beans tag) is the one responsible for reading the rings. You have to set all the parameters: public and secret rings, the alias id (the long value in the ring) and the secret passphrase. In the same section, you can see the credentials accessor which needs to implement the CredentialsAccessor interface basically returning the key id based on the message (MuleEvent). Finally the pgp:security-manager glues both beans.
  • 9. 9 You are ready to encrypt and decrypt messages in your flows. The following two flows show how to use the encrypt-transformer and decrypt- transformer to encrypt and decrypt files.
  • 10. 10 <flow name="processEncryptFiles"> <file:inbound-endpoint connector-ref="inputEncrypt" path="file:///temp/fileInput" moveToDirectory="file:///temp/fileInputBackup" moveToPattern="#[header:originalFilename].backup" transformer- refs="file2Bytes" /> <encrypt-transformer name="pgpEncrypt" strategy-ref="keyBasedEncryptionStrategy" /> <file:outbound-endpoint connector-ref="output" path="file:///temp/fileOutput" outputPattern="#[function:datestamp]- #[header:originalFilename]" /> </flow> <flow name="processDecryptFiles"> <file:inbound-endpoint connector-ref="inputDecrypt" path="file:///temp/fileOutput" moveToDirectory="file:///temp/fileOutputEncrypted" moveToPattern="#[header:originalFilename].backup" transformer- refs="file2Bytes" /> <decrypt-transformer name="pgpDecrypt" strategy-ref="keyBasedEncryptionStrategy" /> <file:outbound-endpoint connector-ref="output" path="file:///temp/fileOutputDecrypted" outputPattern="#[function:datestamp]- #[header:originalFilename]" /> </flow>