on 08-30-2007 1:42 PM
What are all the kinds of Encryption Available?
A very vague question. Check out the details of encryption available at the following links:
<a href="http://help.sap.com/saphelp_nw04s/helpdata/en/a8/882a40ce93185de10000000a1550b0/frameset.htm">Message-Level Security</a>
<a href="http://help.sap.com/saphelp_nw04s/helpdata/en/ff/7932e4e9c51c4fa596c69e21151c7d/frameset.htm">Network and Communication Security</a>
<a href="http://help.sap.com/saphelp_nw04s/helpdata/en/f5/799add57aeee4f889265094a04695c/frameset.htm">Adapter-Specific Security Configuration</a>
Regards
Manish
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
a)Message level security by message level encryption
Message-level security allows us to digitally sign or encrypt documents exchanged between systems or business partners,
http://help.sap.com/saphelp_nw2004s/helpdata/en/ff/7932e4e9c51c4fa596c69e21151c7d/frameset.htm
b)Network and communication security by by transport layer encryption
Transport layer security for communication with or between SAP systems using either the Internet standard protocol Secure Sockets Layer (SSL) or the SAP interface for Secure Network Communications (SNC), depending on the underlying protocols used.
http://help.sap.com/saphelp_nw2004s/helpdata/en/ed/18cc38e6df4741a264bddcd4f98ae2/frameset.htm
Ex: HTTP connecttions can secured by using SSL(HTTPS) and RFC connections can be secured by (SNC).
c)Adapter specific security configuration
Each adapter is configured by an adapter-specific configuration for both the inbound (sender) side in (Service Users for Message Exchange) and the outbound (receiver) side in (Service Users for Message Exchange). You make these configuration settings in a sender agreement for the inbound side and a receiver agreement for the outbound side, together with adapter specific channels referenced in the agreements.
http://help.sap.com/saphelp_nw2004s/helpdata/en/ed/18cc38e6df4741a264bddcd4f98ae2/frameset.htm
Regards,
Sreenivas
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Thanks . We are exchanging some confidential documents to our Brokers who are sitting outside the firewall.
1) We are planning to send a encrypted file in one of the scenario ,
2)also we want to exchange some stock details to our vendors over the HTTP or over SOAP
Our vendors are talking about SSL and PGP encryption. For the above scenario using XI how to achieve that.
SSL is available natively in XI (refer the following links). Once you have configured SSL for HTTP connections, you can use that for the SOAP adapter too
<a href="http://help.sap.com/saphelp_nw04s/helpdata/en/14/ef2940cbf2195de10000000a1550b0/frameset.htm">HTTP and SSL</a>
<a href="http://help.sap.com/saphelp_nw04s/helpdata/en/43/0e16bfd7b021aee10000000a1553f6/frameset.htm">FTP and FTPS</a>
PGP encryption is slighty more difficult, since it can't be done by the XI system natively. You will need to develop an Adapter module to cater for this. Refer to the case-study/example on page 39 of this document:
<a href="https://www.sdn.sap.comhttp://www.sdn.sap.comhttp://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/docs/library/uuid/7bf6e190-0201-0010-83b7-cc557eb76abe">XI 301 - Development of Adapters for SAP XI Adapter Framework</a>
Cheers
Manish
>>>1) We are planning to send a encrypted file in one of the scenario
In Your Communication channel -> Connection Security, use
FTPS (FTP Using SSL/TLS) for Control and Data Connection
All communication with the FTP server is encrypted and uses TLS/SSL
>>>2)also we want to exchange some stock details to our vendors over the HTTP or over SOAP
http://help.sap.com/saphelp_nw70/helpdata/en/56/992d4142badb2be10000000a1550b0/content.htm
Regards,
Sreenivas
Hi Pete,
Case1) We are planning to send a encrypted file in one of the scenario
PGP encryption is a good option to achieve encrypted documents. You will have to write an adapter module which encrypts the whole byte stream using an external PGP public key. The other pair of the key can be provided to the receiving vendor for decrypting it.
What needs to be done in XI?
- Develop a module using PGP API (We have used BouncyCastle PGP Java API for developing this module)
- Place the PGP key in the SAP XI J2EE Key repository
Case2)also we want to exchange some stock details to our vendors over the HTTP or over SOAP
You can use inbuilt XI feature (Secure HTTP) with digital signatures to exchange stock. To achieve HTTPS, you simply need to configure the adapter to send/receieve messages through HTTPS. If digital signatures required, it will be a baisis activity which shouldn't alter your implementation.
Feel free to ask clarification if there any.
Thanks
Krishna
Thanks Krishna.
Could you please explain me more in details on the following point
What needs to be done in XI?
- Develop a module using PGP API (We have used BouncyCastle PGP Java API for developing this module)
- Place the PGP key in the SAP XI J2EE Key repository
Thank you. If you have any realted documens send it to
pete123_xi_xi@yahoo.com
What it means is that you will need to develop an Adapter Module to be deployed in the relevant adapters (soap/ftp).
How to do this? Get someone who knows how to write java apps. There is reference material available all over SDN.
<a href="http://help.sap.com/saphelp_nw04s/helpdata/en/8b/895e407aa4c44ce10000000a1550b0/frameset.htm">SAP Help - Adapter & Module Development</a>
<a href="https://www.sdn.sap.comhttp://www.sdn.sap.comhttp://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/e21106cc-0c01-0010-db95-dbfc0ffd83b3">Adapter Module Development - Webinar Presentation</a>
Once you have developed and deployed the adapter module, you can use it in the relevant adapter / communication channel configuration.
Regards
Manish
Hi Pete,
You can use org.bouncycastle.openpgp to implement PGP encryption
hope the below link is helpful to you
http://cephas.net/blog/2004/04/01/pgp-encryption-using-bouncy-castle/
Regards,
Sreenivas
User | Count |
---|---|
95 | |
11 | |
11 | |
10 | |
9 | |
8 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.