Best Practices
Whenever transmitting sensitive information such as passwords, card numbers, or pins the data should be encrypted. This adds a necessary layer of protection for your users.
Information to Encrypt
Below is are lists of information that must be encrypted before you send it to Synapse. You may use the associated public key to encrypt the information.
Padding
Please make sure you are using
PKCS1_v1_5
padding for encrypting your data
Bank Logins
Field | Required By |
---|---|
info.bank_id | Link w/ Bank Login |
info.password | Link w/ Bank Login |
mfa_answer | Link w/ Bank Login |
Bank Logins Public Keys
If you wish to encrypt bank login info while transmitting the information from the client device, you can use the following encryption key(s).
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1NXB7+ZV56Ev5xKDYT9Q
YoVu/arTD1Csq/yG+Z75OqdoIwStDbVRuzdpyh1ov4IdlkSyN9fULwn/SREq8UQI
EILEOZtSjrp/Ot/R5bupK7SEu3G+D6Ry2HKtZgE2fOHWpyvhl8bJ7D5O/n4IPB8C
I822iMgs+VsQpx4AfC7wMji27o6/Q3HobDXvbk6Cr+cLFUd2tBvAkywKqNHGazQk
6kgq91rn9oznVgHV19qar34wxNFGdq3269IdDZgE5i8H3lffDLZE/62gJKlMR766
pfgCCGPf55qR++hxViw8EqDHk+ZkI2DbEOndCtVr43CxLDaGNtp7C08hu46yVo9c
ywIDAQAB
-----END PUBLIC KEY-----
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxy7xFpupeVxgUiaPneI1WAioSIeL6+/NAIIjbvDOvdTCNUeI//ob4bfdGLYlXpXOor/5POqfheZnHzkTu6BhDQqGZBc2BLaARlqx0s+twIadPwzqOJETzmp7r5U5ZioluOGDw4CF+JKRL6sBOaYr5wJ3BemZOXqQE7SAqIsi6Sej2ijGzVFq4tR3gogAdMKjGhzDwthqzZViZN1Zhzb8jsX/aCY+OWq9IUp4iX41fYmpfI9klVKnneAuVAIOPhI5zMaZ7JiQ+88ZQngTi6IhieyGIjvfG7FTsLNoYEqu1OeKw3SRt+HSs+LpnO3P9wwWODZtr07H7oxNJDAIoXITPwIDAQAB
-----END PUBLIC KEY-----
Interchange and Debit Cards
Field | Required By |
---|---|
card_number | Link a Card |
exp_date | Link a Card |
pin | Set Pin (Legacy Card Issuance) Set Pin (Native Card Issuance) |
Interchange (Link Card) Public Keys
Sandbox Public Key for Linking Cards
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArbpGgZBGUiafuBVH/p1H8UCFDv+sxmMX6HPZOh7feWYAz66NAg6OTG6LMR0Dl/Vt90NbI65d5dX7lR/cZUY2SkK1vWSRs1XVtphWW6Vlz0Ehr5Y3g9Xr9T22GaaWgEhUlo/5wAEfgDW5rybshaM+VqyEnETWhyt32iK6DAEWK66KEBoArCrbQTrtao/K1OLuKHose3JuGLXzXvzOj3FuLfVNdkB0a9l2iiCiAnUydcs1aq6WwTePB9HuCizcw+55xX8P5Gofir9eqhbf4zuvVPSSOofoCsx9ZgwC1KpodhrGOCHBusgWUlAQNiDc5+rjB9PxTuNNN0pmB6t2PNZVgwIDAQAB
-----END PUBLIC KEY-----
Production Public Key for Linking Cards
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2QTPfkJW2xvWQUqAWt5+Q0QXHKw1+Z1I8mMPPN+Dfw3PkANwfkPh+cWT1lexLhAyk6IdQY3g02p5fcCBvnjWlLtfNIgC7ZoVWnv+eE7kPPipzpZPtolCS8q2iNm3/0+tU+0Xtz/SfJFrvIgBJgElCNSHz7gv4jmUDPdkgH5jm1xw1ElDK6lHH9YxL581X3oLF4FjJqcn1xXOfRB/eW5Ebj0JuLz7g3sm02FJTi4qeJwTjjVX5UqdZrV4gEmzhU3kGr2Mq+w0tEAIUvud0sy3Yu5g9BRf/MLY8HQcMrbuZwely1/d8Xypas4VN5L8lWgklIRO9L+h9BVaxEzg2nKZCwIDAQAB
-----END PUBLIC KEY-----
Legacy Card Issuance (Subnets-Debit Card) Public Keys
Sandbox Set PIN Public Key for Legacy Card Issuance
Use the following public key when setting a PIN with Native Card Issuance in Sandbox or when sending card_number
and exp_date
to link a card in Sandbox.
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzxVLeRTf77kmG/42SdjjtRfaI/7GN4UoUBfxzN80gCyrjK+tHYJR7DKefC47fNyA2dGU7x3tu1wQRKOkjschbC3ZWF1mCqccUiHRPiGhH9VBsxLbAUCFAKOPZcBDCT7IhUdd6S23e99ewkb0c6pRk28u+kz+7ZB7d6Z/S+Em316zs0HqEnEaoUNFXtdTyW3EPuaqo0+p9daICRC44VbrTlzc+Y1A/CsiOcCCl4ske8scu/fWg0K3nybfn7IdO2smkzRwwGOc4uexBMnAkAyl0eQrqXZO4vis6ktmLFV4NpYsd0U2vvmuXFoA9XBcJHdbAww/TGwHq5RJ3505QSEK8QIDAQAB
-----END PUBLIC KEY-----
Production Set PIN Public Key for Legacy Card Issuance
Use the following public key when setting a PIN with Native Card Issuance in Production or when sending card_number
and exp_date
to link a card in Production.
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv3kNZHEqY8Id47h9Jh6Q4+tYy7WkgCgXnr4oYTH/EPNBBY++Wd0eVUjcyU77vPbuG6qht5KHk3IMKLpXLzmWTxYHA9yvh1ZBFuigTd+jqy0NV27xIJ7KY8imrqeB+URcOxQ9ggnP/v69oxtjI+q8N/kXmdW8VAzhO8Vb+1CvG0e3VdMqLpPyWxng3ZkzWX9GCoxkrhfCKjMHJzKSXojfptP+yEaIr5TZLzNtKqL6e4FUvKD/ah4YcEkv2bxHCaybUTkX8NGvxnvTp13qv2l7DP+g2Elv+0c/FxSQRMDLWxPZTJeo0Fl6NCJo6kcUZA2AWILWjqJzu8eE3pbejCym5QIDAQAB
-----END PUBLIC KEY-----
Native Card Issuance Public Keys
Use the following public key when setting a PIN with Native Card Issuance in Sandbox.
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApxPCzjKUcjktcu6DTVvw
WtDymXCJOdBaMCFejObzTgQVYWgaR2WgO0DJ8guAK02tB3yKHu+RjygAcI9GTrtR
MkJzgGA0iZ+QktiCS0ooH115TvIiPKDh9aQVqFNx7FFuji4c+KpSiHHzLnpxcUFB
7U7rq8GIqP3SkDPSFQAWwM+lANAJIzNRJx1I56odTZ1zSgsXtwH9SHjg34Ptdeu/
RjX759oWTcUdMmnHtpLOPe1co89dEpJ6QqPyo7IUHdnRfMiu63XgDUEzsaTQEevy
LeWj+VDH86y0uJbWu6CVMdEkBnNkTZDGiAmdeI0Q8LdinLUHX3j+5tzxj36iOQQi
NQIDAQAB
-----END PUBLIC KEY-----
Use the following public key when setting a PIN with Native Card Issuance in Production.
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0b1tpW5s6k/d7thDpmup
TlNMva9h+QQn17c0ypo2uzWM+zpj5OAXwkjz7TmmMl/Uiu1Wm7WThIcMBQ+KLzm4
590UXxSTWxzOSQXWWAEzp4YkpxICYsNHA1GpLtqdA+rGQcyx3TJkdh1+5SWRCcRJ
QikUa5wcApEs+L/NBm8AeKy/rqtDjb0BjAqZvoVPe4J2zJlPwwbxrIspuSCQmxle
bIHti97+maflGuy/9XV8aw1FhKbM5oeQxs9M0J49x1a7aqpIEuW3Z224UQwuGzRo
0vN3pP3YGS5cfFjVjlaQFX0Ezavl4G7u9G2IpmPky/A1eDWyC50K/F0NRCtYb4Uk
wwIDAQAB
-----END PUBLIC KEY-----
RPPS BillPay Public Keys
Use the following public key when encrypting account numbers during RPPS node creation.
Sandbox RPPS Public Key
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApxPCzjKUcjktcu6DTVvw
WtDymXCJOdBaMCFejObzTgQVYWgaR2WgO0DJ8guAK02tB3yKHu+RjygAcI9GTrtR
MkJzgGA0iZ+QktiCS0ooH115TvIiPKDh9aQVqFNx7FFuji4c+KpSiHHzLnpxcUFB
7U7rq8GIqP3SkDPSFQAWwM+lANAJIzNRJx1I56odTZ1zSgsXtwH9SHjg34Ptdeu/
RjX759oWTcUdMmnHtpLOPe1co89dEpJ6QqPyo7IUHdnRfMiu63XgDUEzsaTQEevy
LeWj+VDH86y0uJbWu6CVMdEkBnNkTZDGiAmdeI0Q8LdinLUHX3j+5tzxj36iOQQi
NQIDAQAB
-----END PUBLIC KEY-----
Production RPPS Public Key
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0b1tpW5s6k/d7thDpmup
TlNMva9h+QQn17c0ypo2uzWM+zpj5OAXwkjz7TmmMl/Uiu1Wm7WThIcMBQ+KLzm4
590UXxSTWxzOSQXWWAEzp4YkpxICYsNHA1GpLtqdA+rGQcyx3TJkdh1+5SWRCcRJ
QikUa5wcApEs+L/NBm8AeKy/rqtDjb0BjAqZvoVPe4J2zJlPwwbxrIspuSCQmxle
bIHti97+maflGuy/9XV8aw1FhKbM5oeQxs9M0J49x1a7aqpIEuW3Z224UQwuGzRo
0vN3pP3YGS5cfFjVjlaQFX0Ezavl4G7u9G2IpmPky/A1eDWyC50K/F0NRCtYb4Uk
wwIDAQAB
-----END PUBLIC KEY-----