Unlock a world of possibilities! Login now and discover the exclusive benefits awaiting you.
Guys,
I've been working on this for quite some time. One of the QlikTech employees was kind enough to help me with the script but I'm having issues here.
I needed field level encryption using any encryption function. We have card numbers stored into QVDs and so wanted to encrypt them at load time and decrypt using the same key whenever needed.
Currently the app attached uses the AES encryption function to encrypt card numbers but during decryption, a few values don't get decrypted to their original clear texts. Almost 95% of values decrypt properly except a few. I tried changing the key, the length of the key etc, but it didn't help. With a lot of records, there are always a few that remain junk at decryption time. Since this is going to be used to store 70 million plus rows, I wanted help in fixing this.
I don't mind using other encryption techniques either, whatever works, but prefer 128 bit encryption at the minimum.
Thanks in advance.
Sam.
Hi,
I am running into exactly the same encryption/decryption problem, and am super glad that I found this post.
I attempted to implement the fix according to flipside's latest post, and thought I got it working (at least on Sam's original qvw attached in his post). However, I am finding one issue with my fix, and would appreciate inputs from any expert out there.
Attached qvw contains my fix to the encryption/decryption functions. I noticed that if the original cell contains missing data (i.e. null), after applying encryption followed by decryption on that cell, the decrypted value becomes "empty" but not null. As you will find in the attached qvw, I added a new row in the source excel file (also attached), where card number is empty. When loaded into QV, that row shows - for Card_Number_ClearText column but "" (no quotes) for Card_Number_Decrypted. Making dropdowns for those two fields also shows the difference- Card_Number_ClearText simply does not have the null value whereas Card_Number_Decrypted has an empty line.
Looks like I spoke too soon. Upon further testing, I don't think the original issue was resolved. I was still able to see some junk values after decryption. Worse, it's not consistently happening at the same place.
The following screenshot shows that for a given card number, the decrypted text is still gobbled up.
Now if I run reload one more time, the same card now decrypted just fine.
Hi All,
I have fixed this issue. It is caused when an character in the source string encrypts to chr(0) which can not be successfully concatenated to the encrypted string.
I solved this by hexing the encrypted characters and building a hex string instead of string of char. The decrypt routine then converts the hex string to the encrypted string of char and processes it normally.
Encrypt
For i = 0 To 15
If Len(Hex(block((i Mod 4) * 4 + (i \ 4)))) = 1 Then
sCipher = sCipher & "0" & Hex(block((i Mod 4) * 4 + (i \ 4)))
Else
sCipher = sCipher & Hex(block((i Mod 4) * 4 + (i \ 4)))
End If
Next
Decrypt
ts = ""
For i = 1 To Len(s) / 2
ch = Mid(s, (i * 2) - 1, 2)
ich = CLng("&H" & ch)
ts = ts & (Chr(ich))
Next
s = ts
I've attached the vbs script.
1) Open the AES_Cipher_block_256.txt file
2) Copy the text
3) Paste it into the VBscript Edit module in QlikView
4) Make the appropriate Encrypt/Decrypt calls in your load script.
example:
let pwd = '09876554321dsefrtgyh';
// Encrypt field to be secured in the qvd file
encrypted:
load
id,
clearText as origClearText,
text(aesEncrypt(trim(text(clearText)), '$(pwd)')) as EncyptedText
from drg.qvd (qvd);
//store encrypted into EncyptedText.qvd (qvd);
decrypted:
NoConcatenate
LOAD
id,
text(aesDecrypt(trim(text(EncyptedText)), '$(pwd)')) as DecyptedText
FROM EncyptedText.qvd (qvd);
let pwd = '';
Regards,
Jeff Koch
Principle OEM Solution Architect