Solved: Encryption Algorithm in SSFA vs. STRUST

Former Member · ‎05-27-2008

Hi,

I am doing the configuration for encrypting credit card using Cryptolib as per SAP Note: 662340.

One think I noticed is that in SSFA transaction we have to specify the encryption alogorithm (the choices are DES-CBS and TRIPLE-DES). We have to also specify the Private Address book (name of the .PSE file) here.

Then in STRUST transaction we create a PSE file (with the same name as mentioned in SSFA) and again have to select the encryption algorithm (the choices are RSA and DSA) with key length.

So, I am not sure which algorithm SAP is using to encryption...one is SSFA or the one specified in STRUST?

Any help would be highly appreciated.

Thanks,

Paresh

former_member402999 · ‎06-13-2008

Hi Paresh,

SSF makes use of hybrid encryption, which consists of a symmetric algorithm like DES-CBS or TRIPLE-DES and an asymmetric algorithm like RSA. Note that the DSA algorithm can't be used for encryption.

Best regards,

Klaus

former_member402999 · ‎06-13-2008

Hi Paresh,

SSF makes use of hybrid encryption, which consists of a symmetric algorithm like DES-CBS or TRIPLE-DES and an asymmetric algorithm like RSA. Note that the DSA algorithm can't be used for encryption.

Best regards,

Klaus

Former Member · ‎06-13-2008

Hi Klaus,

Thanks for your reply. Do you know how the key management is done by SAP? Is there any document that you can point me to. I am not getting any concrete answers from the available documentation on encryption.

Thanks,

Paresh

former_member402999 · ‎06-16-2008

Hi Paresh,

for the ABAP server, key management is done using transaction [STRUST|http://help.sap.com/erp2005_ehp_03/helpdata/EN/0e/fb993af7700577e10000000a11402f/frameset.htm]. For information on encryption you might check the [SSF documentation|http://help.sap.com/saphelp_nw70/helpdata/EN/4d/bf6f77a2c5446a86e0152f1b309db6/frameset.htm].

Best regards,

Klaus

Former Member · ‎06-16-2008

Thanks Klaus!!