We are on the reflection on the protection of sensitive data on DB (i.e. Client_secret).
For this security requirement, we need to encrypt the data in DB by the GW API component with a reversible algorithm like AES-256 or RSA-256, in order to be able to display its on the API portal after decrypting.
What are your advices or recommendations to implement these requirements to respond to the need??
this has been posted to the wrong community
Tell me please in which community I have to post it? I need advice
I have already moved it to the right community.
The details posted here may help:
Encryption used in OAuth toolkit for storing access tokens and client secret