Takes an input BRD file and encrypts fields of the user's choosing using the triple DES or AES 256 algorithm and SHA-1 password hashing technique.
The user chooses the password, and can distribute it to the colleagues cleared to see the encrypted information. The node will pass through the fields the user does not want encrypted. The BRD files that this node partially encrypts are meant to be decrypted by the Decrypt Fields node.
Optionally specify a data encryption type.
Choose one of the following values:
- Triple DES encryption.
- AES 256 encryption.
The default value is Triple DES encryption.
Optionally specify one or more fields to encrypt.
When including more than one field, enter the field names as a comma-delimited list, for example
The fields are case-insensitive. The node will evaluate this property first in order to create a full list of all fields to be encrypted. Then, it will evaluate the ExcludeFields property and remove the fields in ExcludeFields from the fields in this property.
The default value is
* (all fields).
Optionally specify one or more fields that you do not want to encrypt.
When excluding more than one field, enter the field names as a comma-delimited list, for example
The fields are case-insensitive. The node will evaluate property IncludeFields first in order to create a full list of all fields to be encrypted. Then, it will evaluate this property and remove the fields in this property from the fields in IncludeFields.
The default value is blank (no fields).
Optionally specify whether any NULL values in the input pin will be obfuscated.
If this property is set to False or left blank, then NULLs will pass through unchanged. It is important to note that the node will run more quickly if this property is set to False; however, this opens the Encrypt/Decrypt nodes to a known issue. If there are any fields with NULL values in the first record in the BRD file input to the Decrypt node, the Decrypt node will throw a warning because it cannot produce the correct type of the decrypted value. Consequently, the Decrypt node will not decrypt any data in such fields.
The default value is True.
Specify the password to be used to encryption and decryption of the sensitive fields. The user must distribute the password to everyone cleared to see the sensitive fields, so they can decrypt those fields using the Decrypt node.
A value is required for this property.
Optionally specify whether to 'salt' the password.
If the user wants the encrypted BRD file to support joining, he or she should set SaltPassword to False. When this property is set to False, the Node always encrypts a particular unencrypted String to the same encrypted String with a 1-1 mapping. This means that when a worker who has access to two encrypted files can join on the encrypted fields and output the same result as if the files were not encrypted. If SaltPassword is set to True, then if the same String were encrypted 100 times it could have 100 different encrypted forms. It is important to note that if SaltPassword is set to False, even though the data is obfuscated, it is less secure.
The default value is True.
Inputs and outputs