SABRE Server Encryption
CMP
Converged Monetisation Platform. The MDS Global product that supports customer care and billing for digital service providers. is capable of encryption of all outgoing files and decryption of all incoming files using PGP encryption following the OpenPGP standard (RFC 4880) for encrypting and decrypting data. PGP is an asymmetric algorithm meaning it requires a key pair (public and private) to support encryption and decryption. Payloads are encrypted using the public key and can only be decrypted using the matching private key along with a passphrase. There are many tools available which implement the OpenPGP standard and allow for the generation of keypairs and encryption/decryption of data using these keys. GNU Privacy Guard (GnuPG or GPG) is one such freely available and commonly used tool that you may wish to use.
When CMP is installed encryption is configured for all files and default public and private keys are installed. Those keys reside on each SABRE host in the following locations:
- Public key used for encrypting files:
/etc/mdsglobal/sabre/gpg/pubring.gpg - Private key used to decrypt files:
/etc/mdsglobal/sabre/gpg/secring.gpg
The password to use in conjunction with the private key for decryption can be obtained from MDS Global Professional Services prior to installation.
Important
The default keys are designed for test purposes only. Before processing sensitive data through CMP or using CMP in production it is the responsibility of operators of CMP to update the properties in the Administration Console