cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Encryption

Go to solution
Former Member

on ‎08-30-2007 1:42 PM

0 Kudos

What are all the kinds of Encryption Available?

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

manish_bhalla2
Contributor
‎08-30-2007 1:49 PM
0 Kudos

A very vague question. Check out the details of encryption available at the following links:

<a href="http://help.sap.com/saphelp_nw04s/helpdata/en/a8/882a40ce93185de10000000a1550b0/frameset.htm">Message-Level Security</a>

<a href="http://help.sap.com/saphelp_nw04s/helpdata/en/ff/7932e4e9c51c4fa596c69e21151c7d/frameset.htm">Network and Communication Security</a>

<a href="http://help.sap.com/saphelp_nw04s/helpdata/en/f5/799add57aeee4f889265094a04695c/frameset.htm">Adapter-Specific Security Configuration</a>

Regards

Manish

Show replies
Show replies

Answers (1)

Answers (1)

Former Member
‎08-30-2007 1:51 PM
0 Kudos

a)Message level security by message level encryption

Message-level security allows us to digitally sign or encrypt documents exchanged between systems or business partners,

http://help.sap.com/saphelp_nw2004s/helpdata/en/ff/7932e4e9c51c4fa596c69e21151c7d/frameset.htm

b)Network and communication security by by transport layer encryption

Transport layer security for communication with or between SAP systems using either the Internet standard protocol Secure Sockets Layer (SSL) or the SAP interface for Secure Network Communications (SNC), depending on the underlying protocols used.

http://help.sap.com/saphelp_nw2004s/helpdata/en/ed/18cc38e6df4741a264bddcd4f98ae2/frameset.htm

Ex: HTTP connecttions can secured by using SSL(HTTPS) and RFC connections can be secured by (SNC).

c)Adapter specific security configuration

Each adapter is configured by an adapter-specific configuration for both the inbound (sender) side in (Service Users for Message Exchange) and the outbound (receiver) side in (Service Users for Message Exchange). You make these configuration settings in a sender agreement for the inbound side and a receiver agreement for the outbound side, together with adapter specific channels referenced in the agreements.

http://help.sap.com/saphelp_nw2004s/helpdata/en/ed/18cc38e6df4741a264bddcd4f98ae2/frameset.htm

Regards,

Sreenivas

Show replies
Show replies
Former Member
‎08-30-2007 2:09 PM
0 Kudos

Thanks . We are exchanging some confidential documents to our Brokers who are sitting outside the firewall.

1) We are planning to send a encrypted file in one of the scenario ,

2)also we want to exchange some stock details to our vendors over the HTTP or over SOAP

Our vendors are talking about SSL and PGP encryption. For the above scenario using XI how to achieve that.

manish_bhalla2
Contributor
‎08-30-2007 2:17 PM
0 Kudos

SSL is available natively in XI (refer the following links). Once you have configured SSL for HTTP connections, you can use that for the SOAP adapter too

<a href="http://help.sap.com/saphelp_nw04s/helpdata/en/14/ef2940cbf2195de10000000a1550b0/frameset.htm">HTTP and SSL</a>

<a href="http://help.sap.com/saphelp_nw04s/helpdata/en/43/0e16bfd7b021aee10000000a1553f6/frameset.htm">FTP and FTPS</a>

PGP encryption is slighty more difficult, since it can't be done by the XI system natively. You will need to develop an Adapter module to cater for this. Refer to the case-study/example on page 39 of this document:

<a href="https://www.sdn.sap.comhttp://www.sdn.sap.comhttp://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/docs/library/uuid/7bf6e190-0201-0010-83b7-cc557eb76abe">XI 301 - Development of Adapters for SAP XI Adapter Framework</a>

Cheers

Manish

manish_bhalla2
Contributor
‎08-30-2007 2:24 PM
0 Kudos

There is apparently a 3rd party adapter module for PGP... follow the link: <a href="http://www.aedaptive.com/index.php?option=com_content&task=view&id=52&Itemid=65">AEDAPTIVe Solutions</a>

(<i>Note</i>: I Haven't tried this myself... just found this through a Google search).

Former Member
‎08-30-2007 2:32 PM
0 Kudos

>>>1) We are planning to send a encrypted file in one of the scenario

In Your Communication channel -> Connection Security, use

FTPS (FTP Using SSL/TLS) for Control and Data Connection

All communication with the FTP server is encrypted and uses TLS/SSL

>>>2)also we want to exchange some stock details to our vendors over the HTTP or over SOAP

http://help.sap.com/saphelp_nw70/helpdata/en/56/992d4142badb2be10000000a1550b0/content.htm

Regards,

Sreenivas

Former Member
‎08-30-2007 3:04 PM
0 Kudos

Hi Pete,

Case1) We are planning to send a encrypted file in one of the scenario

PGP encryption is a good option to achieve encrypted documents. You will have to write an adapter module which encrypts the whole byte stream using an external PGP public key. The other pair of the key can be provided to the receiving vendor for decrypting it.

What needs to be done in XI?

- Develop a module using PGP API (We have used BouncyCastle PGP Java API for developing this module)

- Place the PGP key in the SAP XI J2EE Key repository

Case2)also we want to exchange some stock details to our vendors over the HTTP or over SOAP

You can use inbuilt XI feature (Secure HTTP) with digital signatures to exchange stock. To achieve HTTPS, you simply need to configure the adapter to send/receieve messages through HTTPS. If digital signatures required, it will be a baisis activity which shouldn't alter your implementation.

Feel free to ask clarification if there any.

Thanks

Krishna

Former Member
‎08-30-2007 4:44 PM
0 Kudos

Thanks Krishna.

Could you please explain me more in details on the following point

What needs to be done in XI?

- Develop a module using PGP API (We have used BouncyCastle PGP Java API for developing this module)

- Place the PGP key in the SAP XI J2EE Key repository

Thank you. If you have any realted documens send it to

pete123_xi_xi@yahoo.com

manish_bhalla2
Contributor
‎08-30-2007 4:53 PM
0 Kudos

What it means is that you will need to develop an Adapter Module to be deployed in the relevant adapters (soap/ftp).

How to do this? Get someone who knows how to write java apps. There is reference material available all over SDN.

<a href="http://help.sap.com/saphelp_nw04s/helpdata/en/8b/895e407aa4c44ce10000000a1550b0/frameset.htm">SAP Help - Adapter & Module Development</a>

<a href="https://www.sdn.sap.comhttp://www.sdn.sap.comhttp://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/e21106cc-0c01-0010-db95-dbfc0ffd83b3">Adapter Module Development - Webinar Presentation</a>

Once you have developed and deployed the adapter module, you can use it in the relevant adapter / communication channel configuration.

Regards

Manish

Former Member
‎08-30-2007 5:03 PM
0 Kudos

Hi Pete,

You can use org.bouncycastle.openpgp to implement PGP encryption

hope the below link is helpful to you

http://cephas.net/blog/2004/04/01/pgp-encryption-using-bouncy-castle/

Regards,

Sreenivas

Former Member
‎08-30-2007 5:12 PM
0 Kudos

Also, Have a look at this thread

Regards,

Sreenivas

Ask a Question