Is it enough for you to hide the details in the process payload only (shown in the EM)?
If so, you can change the audit level to production or of etc...
Thanks for your suggestion.
The requirement is , after the Creditcard number is returned from the Webservice it need to encrypted and at anytime if we are again invoking another webservice which requires this creditcard number to be in decrypted format , we should be able to do decryption in BPEL before invoking.
I went through the example which is posted in SOA Sample website . But seems that doesn't meet my requirement.
Can we attach a policy (which do encryption) which is only for the response returned from the Web Service ?
1 person found this helpful
some useful links about this topic are:
Hope this hels,