Is the INSTDATA encrypted when being CPFed to another NODE?

Document ID : KB000100656
Last Modified Date : 08/06/2018
Show Technical Document Details
Issue:
When a new ID is created and is propagated via CPF - are the non-password portions of the command also encrypted as soon as the <enter> key is pressed?

We store special instructions in the INSTDATA field and need to know if this is transmitted from the sending system in an non-encrypted form.
 
Resolution:
CPF encrypts sensitive fields of the command such as passwords or passphrases initially and then encrypts (masks) the whole command in the command buffer before it is written to the CPF recovery file and sent to the remote. Thus the entire command is encrypted within TSS via a proprietary algorithm before being sent. 

Additionally, ENF/CCI can be configured to use SSL via the PROTOCOL of TCPSSLGW, which starts the CCISSLGW task.  It would have to be configured with the appropriate SSL certificate, etc… to function with encryption but that would allow for an additional layer of protection.