...
A backend API handles requests to decrypt the file.
The API decrypts the file using the same hardcoded key and provides:
The decrypted WAV file.
File metadata (e.g., recording duration, agent/customer IDs, timestamp).
Decrypted Encrypted files are only accessible via the VRS front end, ensuring controlled playback.
...
Hardcoded Key:
Security risk: The encryption key is hardcoded in the service code.
Recommendation: Transition to a secure key management solution.
Direct File Access:
Encrypted files can be downloaded directly but are unplayable.
Recommendation: Restrict direct access to sensitive storage directories.
Changes in Deployment:
for the call encryption and decryption, there is no change in the overall deployment of the Mixer and API component. since the changes is in the code.Technical Documentation
Below is the technical Documentation for Encryption/Decryption
...