Importing Files with GPG Encryption
You can import data into your Cloud Vault that is GPG encrypted ( when using server upload across any of the supported import connectors (S3/GCS/sFTP). This is not supported for local file upload.
Before starting your GPG import, please ensure that you are familiar with the complete data import process and that you have a Cloud Vault available for the import.
The process has three distinct steps:
- Enabling GPG encryption when creating a new ICC in the InfoSum platform, which will generate the GPG encryption key
- Using the GPG encryption key to encrypt the data (off the InfoSum platform). You can create either a .gpg or a .pgp file, both extensions are accepted
- Importing the GPG encrypted file into your Cloud Vault using a new or existing Importer
Once the file(s) has been decrypted the import is complete which will enable you to proceed to recordset creation followed by normalization and publishing to a Bunker.
Table of contents
Create an ICC and enable GPG encryption
Encrypt your data in your data storage
Import the encrypted data to your Cloud Vault
Create an ICC and enable GPG encryption
To import GPG encrypted files, please activate the GPG Encryption Enabled toggle when creating a new Import Connector Config (ICC).
Use this article to learn how to create an ICC using any server connector and the credentials and information you need for:
- SFTP
- S3 Cross account
- S3 access key
- GCS
You can set an expiry time frame or a specific date and will be alerted on the platform when the GPG key has expired:
Once you create the ICC it will show the status GPG Ready in the list of available ICCs.
Click on the ICC you just created to find and copy the GPG public encryption key at the bottom of the details panel (this key is not data sensitive). If you are not encrypting the data yourself, please share this key with the team who manages your internal data operations. You could also share this article if they need more context about the full process.
Encrypt your data in your data storage
The process in which you encrypt your data on your end may differ depending on your preferred tool. Please see the following link to a GPG How-to documentation: https://www.gnupg.org/documentation/howtos.html .
Please make sure that the file(s) are copied to the location mentioned within the ICC that you configured on the InfoSum platform.
Import the encrypted data to your Cloud Vault
When you are ready to import your data, you will need to create an importer - here you can specify the specific GPG encrypted files that you wish to import. You can import multiple files at once and they will be imported as separate files. As the file is encrypted, you may need to include the extension filename path i.e. .pgp or .gpg.
Once the importer is created, you are now ready to import.
You can reuse the same ICC and it’s associated encryption key across multiple GPG imports which means you only require one GPG key per source (i.e. SFTP, S3 and GCS). Importers are reusable, so if you keep the same name/file path, you don’t need to create a new importer to refresh the file(s) in your Cloud Vault.
During the import to the Cloud Vault, the data will be decrypted leaving only an unencrypted file(s) for you to proceed with recordset creation and normalization.
Next steps
Once the file is ready in your Cloud Vault you can create a Recordset, Normalize the data and publish the data.