Problem Statement or Business Need
Colleges have requested a more secure type of supplemental question that can be used for sensitive information that requires encryption in transit and at rest, such as a temporary password.
Proposed Solution
Develop a new, secure supplemental question Type - which would be encrypted in our DB - and uses a regular expression and accept a validation.
- Colleges may use as a temporary password field (student input)
- Data would be encrypted in our DB (during transit and at rest)
- Uses a regular expression (accepts a validation)
Requirements Summary
# | Description |
---|---|
1 |
|
Change Specifications
The following example specifies a new EncryptedText type supplemental question type.
This regular expression rule in this example specifies a 6 to 20 characters string with at least one digit, one upper case letter, one lower case letter and one special symbol (“@#$%”).
Input and output on the screen will be masked via asterisk "*" characters
The reenter attribute specifies that the encrypted field will displayed twice and will require the same entry in both fields
<EncryptedText id= "2" required= "true" reenter= true " maxLength=" 20 " regex=" ((?=.*\d)(?=.*[a-z])(?=.*[A-Z])(?=.*[@#$%]).{ 6 , 20 })"> <Label>Temporary Password</Label> </EncryptedText> |
Encrypted Supplemental questions will leverage the same encryption scheme used for Social Security Numbers
Within the Apply application, encrypted questions will be encrypted in the database and at rest using the same encryption keys used for Social Security Numbers.
When a colleges requests the encrypted answer as part of thier dowload format, the encrypted text will be decrypted just prior to download and sent to the download client over a SSL encrypted channel.
The value will be written to the colleges download file in plain text.
Top
Changes to Data Download File
This approved change request resulted in five new optional supplemental question data fields which can be used in the CCCApply Standard Application and/or the International Application. These fields are downloadable and can be added to the college download file as described below.
New Optional Downloadable Data Fields:
<supp_secret_01>
<supp_secret_02>
<supp_secret_03>
<supp_secret_04>
<supp_secret_05>
Actions Required:
To download the new secure supplemental question data fields, they must be added to your download Format XML file(s) and must be referenced in your Supplemental Questions XML file by your IT department.
To ensure the new data fields will download in the correct format, refer to the Working with Supplemental Questions User Guide, as well as the Download Client User Guide.
Thiese data fields have been added to the Supplemental Questions table.
After the 5.4.0 release to production on March 31, 2016, update your Download Client with the latest version of the CCCApply Download Client Jar File. (NOTE: The Download Client only needs to be updated once for all new data fields added to your download Format XML file(s).
- Map the new supplemental questions fields to your student information system as required.
Changes to Logic
There are no changes to the residency logic as a result of this change request.
Top
Supporting Documentation
Below is additional documentation (i.e., CCCCO legal opinions, residency and/or education code citations, legislation citations, supplemental information, etc.) to be referenced in support of this change request.
Description | File or Link |
---|---|
Working with Supplemental Questions User Guide | Link to PDF |
Download Client User Guide | Link to PDF |