Encrypt Field Processor
Description
You can use the Encrypt processor to apply an encryption algorithm and key to a specified field.
Use
The Encrypt processor is useful when you need to send sensitive log data to storage, for example when you want to retain log data that may contain account names and passwords.
Configuration
There are four options you need to set for this processor.
| Option | Description | Example |
|---|---|---|
| Field | The field you want to apply encryption to. | .foo |
| Encryption algorithm | The encryption algorithm to apply. These options also determine how many characters to use for the encryption key and initialization vector. | AES-256-CFB (key=32 characters, iv=16characters) |
| Encryption key | The key used by the algorithm to encrypt the field. | 6B58703273357638792F423F4528482B |
| Initialization vector (IV) field | This field is added by the pipeline to the JSON and is used by the algorithm as the initialization key. | .encrypt_iv |
Interactive Demo
Check out an interactive demo of the Encrypt Processor as a component in a Compliance group, as well as instructions for building a version of the Pipette with your own sample data.
Example
Before
{ "foo": "bar"}| Option | Value |
|---|---|
| Field | .foo |
| Encryption algorithm | AES-256-CFB (key=32 characters, iv=16characters) |
| Encryption key | 6B58703273357638792F423F4528482B |
| Initialization vector (IV) field | .encrypt_iv |
After
{ "encrypt_iv": "FmXUb0OPOWm1A2kw6diKYw==", "foo": "vFza"}Was this page helpful?