Stay organized with collections
Save and categorize content based on your preferences.
In this section, we explain how to establish connectivity and provide details
on the API design patterns and security model.
API communication details
Communication with the Client Side Push Provisioning API involves transport layer and
application layer security. The transport layer
uses TLS to secure HTTP requests (HTTPS) and the
application layer uses
either PGP or
JWE encryption.
In addition, our Protocol standards to find details on
our API design patterns and strategy for maintaining a robust connection with
partners.
Key exchanges
Encryption keys need to be rotated before they expire or if they are
compromised. As part of your implementation, you need to have a process for
managing these exchanges.
To ensure key rotations do not cause temporary outages or require significant
management overhead, Client Side Push Provisioning partners must support the use
of multiple encryption keys at once. During a key rotation, a second key will
be trusted and verified to be working correctly before the old key is removed.
All rights reserved. Java is a registered trademark of Oracle and/or its affiliates.
Last updated 2024-12-03 UTC.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2024-12-03 UTC."],[[["This section outlines the establishment of connectivity with the Client Side Push Provisioning API, detailing its security model and API design patterns."],["Communication security involves Transport Layer Security (TLS) for HTTP requests and application layer security using either PGP or JWE encryption."],["Protocol standards and design patterns are documented to ensure robust connections with partners."],["Key exchanges and rotations are crucial, requiring support for multiple keys to avoid outages, with a warning that lacking this support is a launch-blocking bug."]]],["The Client Side Push Provisioning API uses TLS for transport layer security (HTTPS) and either PGP or JWE encryption for application layer security. Partners must adhere to API design patterns and protocol standards for robust connectivity. Encryption key rotation is mandatory; partners must support multiple encryption keys simultaneously to avoid outages. Failure to support multiple keys will be a launch-blocking issue. Key exchanges should be done before the key expires or it is compromised.\n"]]