Once we've called the
appsec procedures to get the DES secret password key artifacts and encrypted data back to the client, we need to
1) decrypt the artifacts with the RSA private key
2) generate the DES secret password key
3) decrypt the data with the secret password key
As a rule, I try to limit the number of steps that I require of developers to accomplish work. Why make a developer call three methods when they can call a single method that accomplishes the other calls for them? The application developer's goal is to decrypt data, so we provide a method for them to do just that.
Note You can find ...