How can I use different encryption keys for different encrypted forms?

  • pinnacleifs
    Asked on January 22, 2018 at 8:54 AM

    I have multiple forms that are encrypted. Several of the forms are clones of the original encrypted form, and therefore use the same encryption key. However, when I created a new form I created a new key for that form. However, even when logged in, JotForm only allows me to view the submissions for one encryption key. When I try to view the data for the different keyed form, I don't get the option to upload the different key. I have to log out of the browser, clear all data and then log in again. (I.E., I have two encrypted forms, Form A and Form B. Form A uses Key A and Form B uses Key B. When try to view Form A submissions, I am prompted to upload Key A. However, while still logged in, if I try to look at Form B submissions, I'm not prompted to upload Key B, and all the data remains encrypted. I have to manually log out of JotForm AND clear cookies/cache and then log back in and upload Key B.)

    I need to be able to load more than one encryption key at a time, and/or JotForm needs to ask me to upload a key each time I open an encrypted form.

  • Nik_C
    Replied on January 22, 2018 at 11:41 AM

    Actually, you don't need multiple keys for your forms, since one key will work for all of them. The last key you created will unlock all submissions from that point. But, it will not work backward, meaning, it will not unlock previous encrypted submissions.

    Hope it makes sense.

    Let us know if you have any further questions.

    Thank you!

  • pinnacleifs
    Replied on January 22, 2018 at 2:28 PM

    If the new key can't see old submissions, can the old key see new submissions?

  • Nik_C
    Replied on January 22, 2018 at 2:45 PM

    The reason why you are able to decrypt certain submissions with multiple keys is that some keys would work with previous submissions and some with new submissions (across all forms).

    For example, if you have several forms and you create a key, the key will work from that point for all submissions in all forms. But if you after several days decide to create a new key, the submissions from that point will work only with that new key, however, old submissions will still be possible to decrypt with the old key.

    Also, there is no way to manipulate with keys, combine them or anything like that, that is what makes encrypted forms secured.

    Hope it helps.

    Let us know if you have any further questions.

    Thank you!