we are working on a process with external party to receive a csv file from there.
The file will be duplicated and the duplicate converted into a data file which we use to import data into an R/3 system.
Now the csv file will be enhanced by a pkcs7 based signature which we have to verify. After successful verification the duplication step will be started and the file will be moved to the archive.
My question is, because I have never worked with SSF:
Is the SSF / the SAPSECULIB able to do such a verification and if yes, are there any conditions for use of SSF, e.g. third party products (for which purpose)?