Generate Encryption Keys for Credit Card Data

Overview

Starting with Everest 6, the credit card sensitive data is encrypted using the standalone cryptographic keys. This article describes the process.

Solution

After installing Everest 6, the keys need to be generated using the KeyMgmt.exe utility.

  • The utility is included in the Data component of the Everest Server package.
  • By default it is installed into:
    C:\Program Files (x86)\Icode\Everest\Data\CCard KeyMgmt\KeyMgmt.exe.

Steps

Note

The duration of this process varies depending on your server configuration and database size. It is also advised to run this outside of business hours and with no users logged into Everest.

  1. On your Database server, go to the Everest installation folder.
  2. Navigate to Data\CCard KeyMgmt.
  3. Run KeyMgmt.exe.
    Screen_Shot_2021-01-28_at_1.30.05_PM.png
  4. Enter the name of your database server.
    (This can be found by going to Start > Right-click Computer > Properties)
  5. User name: sa.
  6. Password: your sa password.
  7. Click OK.
    Screen_Shot_2021-01-28_at_1.30.30_PM.png
  8. Choose your company from the dropdown.
  9. If it's the first time generating the description keys:
    • Click the browse button on the right side to select location where your encryption keys will be saved.
    • Type your chosen name for the key file.
      Note

      The encryption keys folder cannot have spaces in the name or in the directory path. For example, C:\Program Files (x86) would not be a valid encryption keys folder.

  10. Click the Generate new key button.
  11. Close the key management tool.
Important

The keys should be re-generated every thirty days.

Comments

0 comments

Please sign in to leave a comment.