Skip to Content
0

generated certs

May 17, 2017 at 03:46 PM

59

avatar image

Hi,

Please help me in understand the cert concept. I have 2 outbound interfaces 1. Proxy to AS2(Customer) and 2. Proxy to SFTP(Customer).

In the first case, customer had generated the certificate and we have imported it. and in the second case basis(we) had generated the cert and provided to customer. as both are outbound interfaces and in both the interfaces we are accessing customer systems, so what makes difference in generating the certs, means in what cases we or they have to generate the cert.

Thanks,

Vijay

10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

2 Answers

Harish Mistri May 18, 2017 at 06:54 AM
2

Hi Vijay,

The AS2 receiver - we use the client certificate (public key of the client) to encrypt the message (because the message goes via the internet) and additionally we can use our own private key to sign the message. The customer uses our public key to verify the authenticity of the message.

The SFTP receiver - We generate the public-private key pair. The public key is associated with the SFTP server location/folder so only we can access that location with the private key. This only authentication part. If we need to encrypt the message, then we need to ask the client to provide encryption key which use the PGP module to encrypt the message.

Hope this help

Harish

Show 1 Share
10 |10000 characters needed characters left characters exceeded

To complement Harish's explanation, in the case of AS2, the receiver would use their private key to sign the MDN that they return to the sender to implement non-repudiation of receipt. The sender would then use their public key to validate that signature. Using signed MDNs is optional but quite common.

0
Vijay B May 18, 2017 at 02:19 PM
0

Thank you very much Harish and Patrick for helping me in understading the concept.

Show 1 Share
10 |10000 characters needed characters left characters exceeded

Hi Vijay,

Great to hear that our comment/answer help you. Please close the thread. Please refer the below blog for more details.

https://blogs.sap.com/2013/04/03/how-to-close-a-discussion-and-why/

0