Oracle Integration Cloud FBDI and HDL Integrations with Encryption

Introduction

In today’s digital landscape, securing data is of paramount importance, especially when integrating disparate systems and applications. Oracle Integration Cloud (OIC) facilitates seamless integration between various cloud and on-premises applications, streamlining business processes and enhancing operational efficiency. However, the integration of sensitive data across multiple platforms presents significant security challenges that must be addressed to protect data integrity and confidentiality.

Encryption plays a crucial role in safeguarding this sensitive data. By transforming readable data into an unreadable format, encryption ensures that unauthorized parties cannot access or tamper with the data during transmission and while at rest. Given the critical nature of the data handled by OIC—ranging from financial transactions to personal information—it is essential to implement robust encryption mechanisms.

This blog provides a comprehensive guide to implementing encryption within Oracle Integration Cloud.

Usage:

In Oracle Integration Cloud (OIC), Data Integration tasks such as File-Based Data Import (FBDI) and HCM Data Loader (HDL) are critical for managing and integrating large volumes of data. Implementing encryption in these contexts is essential for ensuring data security and compliance

By implementing effective encryption strategies for data in transit and at rest, organizations can protect sensitive information, comply with regulatory requirements, and enhance overall data security. Following best practices and leveraging Oracle’s encryption features will help ensure that your data integration processes are secure and reliable.

Step by Step process to Encrypt Data

Generate ‘fusion-key’ PGP encryption key pair

• Login as security manager user and access the Navigate to Tools > Security Console, Click the Certificates tab.
• Click Generate button and create ‘fusion-key’ using PGP certificate type with AES 128 algorithm (as of now Oracle HCM Cloud supports only AES-128, Blowfish, CAST5, 3DES Cipher algorithms) . You must enter fusion-key as Alias. Otherwise, the encryption APIs can't use this key to decrypt all encrypted inbound files. Securely store the Passphrase, as it is needed for removing this in future.

 

·       Export the Keys as below:

 

Import the keys into OIC

·          Login into OIC -> Settings->Certificates

·          Upload Public Key

FBDI Integration with Encryption

File based data import (FBDI) is a mass data loading tool in Oracle Cloud applicable for Finance, Project, Procurement, Order management and Supply chain data. It is a two-step process: Data is first imported into the UCM content repository, and it is then loaded into the database. 

Steps to Create OIC FBDI Integration with Encryption

Pre-requisite: Pair of private key and public certificate of application trying to establish a connection with Oracle fusion. 

 1)      Create an integration and as a first step to fetch the zip file from SFTP containing csv and property file.

 2)     Encrypt the file using Stage file operation.

 3)     Add invoke action of Oracle ERP Adapter Connection and select Impot Bulk Data into ERP Cloud.

 4)     Select the required Import process from the dropdown list and click on continue.

 5)     For enabling Callback option enable Callback Checkbox.

 

 6)     Now in mapping section map the file reference, file name and Import Job Option.

In Import Job Option write below statement-

FileEncryption = PGPUNSIGNED, FA_ALIAS=<PRIVATE_KEY_ALIAS>, CUSTOMER_ALIAS = <PUBLIC_KEY_ALIAS>

 

 7)     Run the integration and check for the file in UCM (file will be encrypted) and Import process is completed successfully.

 

HDL Integration with Encryption

HCM Data Loader (HDL) is a mass data loading tool in Oracle HCM Cloud applicable for Core HR, Benefit, Recruitment, compensation and payroll data. It is a two-step process: Data is first imported into the UCM content repository, and it is then loaded into the database. HDL process supports data encryption so that users have the option to encrypt their data for secure transfer. As most of the HCM data are PII data, it is recommended to use HDL encryption. This article outlines how to encrypt the HDL data before loading it to Oracle HCM Cloud while creating integration through OIC.

Steps to Create OIC HDL Integration with Encryption

1)      Generate HDL file and Load into HCM using OIC

In OIC, create integration and map data to generate HDL file. After creating File in HDL format, zip the file using Stage File Action and then Encrypt File using Stage File Action by selecting the uploaded public file.

 

 

2)     Configure the Oracle HCM Cloud connection

a.      Select Import Bulk Data using HCM Data Loader (HDL)

b.     Select the submit an HCM Data Loader job and select file encryption as PGP UNSIGNED

 

 3)     In Mapping to HDL Loader add the parameter as FileEncryption=PGPUNSIGNED

Run the integration and check for the file in UCM (file will be encrypted) and Import process is completed successfully.

Conclusion

Encryption is a crucial aspect of securing data in File-Based Data Import (FBDI) and HCM Data Loader (HDL) integrations within Oracle Integration Cloud (OIC). By implementing effective encryption strategies for data in transit and at rest, organizations can protect sensitive information, comply with regulatory requirements, and enhance overall data security. Following best practices and leveraging Oracle’s encryption features will help ensure that your data integration processes are secure and reliable.