1.  Home
  2. MIDRANGE-L
  3. August 2017

Re: Secured txt file

Hi Gad,

You don't say whether confidentiality is needed as well as integrity or how the process on the PC will work. That said, a solution to detect changes would be to create a PGP detached signature file and send that with the original file to the PC. The PC process would need to perform a signature check immediately before sending to the bank. This involves no encryption so the contents of the original file aren't modified and no key or password is required on the PC end.

Tim


On 8/16/2017 7:28 AM, Gad Miron wrote:
Hello pundits

Need advice with the following:

I'm asked to create on the i a "payment instructions" text file to be sent
to our bank.
The actual uploading of the file to the bank is done by a special secured
*PC based* software.

When testing the process someone pointed to me the need to prevent any user
(i user or domain user) from changing the content of this text file.

I can create a txt file on the IFS and deny i users access to it (using
CHGAUT)
BUT when the file is copied from the IFS to the user's PC in order to send
it to the bank
then the access restrictions on the i are no longer valid.

I guess it is worth mentioning that we do not use SSO (Single sign on) for
accessing the i


TIA

Gad


As an Amazon Associate we earn from qualifying purchases.

This thread ...
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.