FIPS-compliant SSL as client in XI 7.0
I am configuring an RFC destination in SM59 to send data to an external system via HTTPS.
The partner requires FIPS 140 compliant cryptography (which means TLSv1 cipher suites) - or else they deny the SSL request. Everything I have seen thus far shows SSLv3 as the highest encryption level supported in this scenario.
Wondering if anyone out there has encountered something similar, and if TLSv1 is supported at all in this sort of integration scenario.
FYI - SAP XI 7.0 SPS 16, SAPCRYPTOLIB = 5.5.5.C pl22
Mark Smyth replied
Unfortunately, the SAP Cryptographic Module is not FIPS compliant and at the moment there are no immediate plans to make it FIPS compliant.
If you have any further queries regarding this issue you can contact the SAP Security team directly via the email: security at sap.com.