This guide will be removed on April 29, 2022. Please use our new, easier-to-use Toast technical documentation site. All updated content is on the new site.

Encryption keys and key identifiers

When you make a credit card authorization request, you specify the identifier of the encryption key that you are using. The Toast technical partnership team can issue you multiple encryption keys to make it easier for you to refresh your keys without interrupting your credit cards API integration. Specifying which key you use to encrypt credit card information allows the Toast platform to use the correct algorithm and private key to decrypt the information in your request.

In an authorization request, you include the identifier of the public encryption key that you received from the Toast technical partnership team in the keyId value of a PaymentAuthorization object in the request message body. For information about encryption algorithm identifiers, see Identifying the encryption algorithm in an authorization request.

For more information about making an authorization request, see Authorizing a credit card payment.