☠

Cipher Encrypts

Encryption Services

Multi-gateway payment encryption API. Supports Adyen, CyberSource Flex V2, TempusRSA, CardConnect iToken, and Clover. Server-side tokenization with industry-standard cryptographic algorithms.

Adyen

POST

/api/encrypt

RSA-OAEP-256 + AES-256-GCM with device fingerprint generation

CyberSource V2

POST

/api/encrypt/cybersourceV2

Flex V2 encryption via JWT capture context

TempusRSA

POST

/api/encrypt/TEMPUSRSA

RSA PKCS1_v1_5 XML-based encryption

CardConnect

POST

/api/encrypt/itoke-cardconnect

iToken RSA-OAEP SHA-256 PAN encryption

Clover

POST

/api/encrypt/clover

RSA-OAEP SHA-256 card number encryption (NA Region)

API Documentation

Base URL: https://cipher-encrypts.xyz | All endpoints accept application/json

POST /api/encrypt ADYEN ▶

Encrypt card data with Adyen CSE (RSA-OAEP-256 + AES-256-GCM). Returns encrypted card fields + optional device fingerprint.

// REQUIRED FIELDS

PARAM	TYPE	STATUS	DESCRIPTION
cardNumber	string	REQUIRED	13-19 digits
expiryMonth	string	REQUIRED	01-12
expiryYear	string	REQUIRED	2 or 4 digits
cvv	string	REQUIRED	3-4 digits
adyen_public_key	string	REQUIRED	Format: exponent\|modulus
origin	string	REQUIRED	Merchant origin URL
originKey	string	REQUIRED	Merchant origin key

// OPTIONAL FIELDS

ip	string	OPTIONAL	Client IP for metadata
generateFingerprint	boolean	OPTIONAL	Default: true

// EXAMPLE REQUEST

            JSON
{
  "cardNumber": "4111111111111111",
  "expiryMonth": "03",
  "expiryYear": "2030",
  "cvv": "737",
  "adyen_public_key": "10001|...",
  "origin": "https://merchant.com",
  "originKey": "pub.v2.xxx"
}
          

POST /api/encrypt/cybersourceV2 CYBERSOURCE ▶

CyberSource Flex V2 encryption. Requires a valid JWT capture context from the merchant.

// REQUIRED FIELDS

PARAM	TYPE	STATUS	DESCRIPTION
cardNumber	string	REQUIRED	13-19 digits
expiryMonth	string	REQUIRED	01-12
expiryYear	string	REQUIRED	4 digits (e.g. 2030)
captureContext	string	REQUIRED	JWT from CyberSource

// OPTIONAL FIELDS

cvv	string	OPTIONAL	3-4 digits
ip	string	OPTIONAL	Client IP

POST /api/encrypt/TEMPUSRSA TEMPUSRSA ▶

TempusRSA PKCS1_v1_5 encryption. Returns encrypted XML payload.

// REQUIRED FIELDS

PARAM	TYPE	STATUS	DESCRIPTION
cardNumber	string	REQUIRED	13-19 digits
expiryDate	string	REQUIRED	MMYY format (e.g. "0327")
cvv	string	REQUIRED	3-4 digits
tempus_public_key	string	REQUIRED	RSA PEM public key

// OPTIONAL FIELDS

string

OPTIONAL

Client IP

POST /api/encrypt/itoke-cardconnect CARDCONNECT ▶

CardConnect iToken encryption. Only the card number gets encrypted — CVV and expiry go plain text.

// REQUIRED FIELDS

PARAM	TYPE	STATUS	DESCRIPTION
cardNumber	string	REQUIRED	13-19 digits
publicKey	string	REQUIRED	RSA PEM public key

// OPTIONAL FIELDS

expiryMonth	string	OPTIONAL	01-12 (plain text)
expiryYear	string	OPTIONAL	4 digits (plain text)
cvv	string	OPTIONAL	3-4 digits (plain text)
host	string	OPTIONAL	CardConnect server URL
ip	string	OPTIONAL	Client IP

POST /api/encrypt/clover CLOVER ▶

Clover NA Region PAN encryption with embedded RSA public key.

// REQUIRED FIELDS

PARAM	TYPE	STATUS	DESCRIPTION
card	string	REQUIRED	Format: "cardNumber\|expMonth\|expYear\|cvv"

// OPTIONAL FIELDS

environment

string

OPTIONAL

production | staging | sandbox

// EXAMPLE REQUEST

            JSON
{
  "card": "4111111111111111|12|2025|123",
  "environment": "production"
}
          

GET /health HEALTH CHECK ▶

Returns service status and version.

⟩ Request

⟩ Response

// Select an encryptor and fill in the fields. // Click ENCRYPT to send the request. // Response will appear here.