Ticket encryption keys

Encryption keys are used to securely store sensitive user data on the blockchain.

The Valicit platform allows one or multiple encryption keys to be created and used safely and securely to verify that the data stored on the blockchain is exactly the same as data sent to the Valicit platform.

By default, every ticket provider has one encryption key created. The encryption used is AES-256-CTR.


Create a new encryption key

Creates a new encryption key for a ticket provider on the Valicit platform.

When a request to create an encryption key is received, the response object will contain a secretKey and a version property.

This secret key is used to encrypt sensitive data before saving it on the blockchain. You can use this key to manually decrypt and verify that the metadata contains the exact same data as sent to Valicit platform.

After creating a new encryption key, all new sensitive user data saved to the blockchain gets encrypted with this new key.

To have access to data encrypted with both older and newer keys, each encryption key object has a "version" property and each ticket metadata has a "version" property also to match the key that it was encrypted with.


Get encryption key by version

Get an encryption key for a ticket provider on the Valicit platform based on specified version number

When a request to get an encryption key is received, the response object will contain a secretKey and a version.

This method should be used when trying to get older key versions to decrypt previously saved data.

Was this helpful?