cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Digital signed File Upload to XI (PI)

Former Member

on ‎08-07-2008 12:40 PM

0 Kudos

Hello we need to provide high End-to-End Data Intregity.

We upload files to XI via FileAdapter, put them to the KM and provide them for download.

Can the XI (PI) sign these Files? Can we use the XI (PI) as CA (Certification Authority)?

What are the Best Practise for us?

It ist very important to ensure the Data Integrity.

Please help.

Edited by: Norman Trapp on Aug 7, 2008 1:41 PM

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (2)

Answers (2)

Former Member
‎08-07-2008 1:06 PM
0 Kudos

Hi,

You can acheive security through digital signatures in XI.

For this you have to get certificates from CA and need to deploy on to J2EE Server.

Please award marks if found useful.

Thanks

Hamja

Show replies
Show replies
Former Member
‎08-07-2008 1:40 PM
0 Kudos

Thank for you answers, one open question is:Can the XI create a certificate.

Another question ist. Can the XI sign a file, to give file + signature to end point.

I repeat the Idea more clearly:

A ist File provider.

A creates File + Signature. The XI ist checking File + Signature. Stores both to KM.

B is File user

B download File + Sigantur. Checks both File + Signature and can be sure that the File is integer and not corrupted.

Is it possible that the XI resign these File?

Can the XI pass File+Signatue without any poblems?

Has anyone ideas how to solve such a szenario?

Thanks

Former Member
‎08-07-2008 1:51 PM
0 Kudos

Hi Norman,

Can the XI sign a file?

Yes XI can sign a file.

Can the XI pass File+Signatue without any poblems?

Yes it is very much possible.

For this we need to purchase certificates from certificate authority and load into J2EE engine using Visual admin. This certificate can be used with public and private key in integration directory while creating communication channel and sender/receiver agreements.

The communication protocols would be HTTPS or FTPS.

Please go through the blogs on CIDX messages being transmitted using HTTPS communication.

[CIDX Part I|https://www.sdn.sap.com/irj/sdn/weblogs?blog=/pub/wlg/9488] [original link is broken] [original link is broken] [original link is broken];

[CIDX Part II|https://www.sdn.sap.com/irj/sdn/weblogs?blog=/pub/wlg/9538] [original link is broken] [original link is broken] [original link is broken];

Regards,

Hamja

bhavesh_kantilal
Active Contributor
‎08-08-2008 2:54 AM
0 Kudos

I am not aware of a optin where file adapters can be used to Sign Files. Digital Signatures are normally used for Non Repudiation purposes and File adapter cannot be used for this.

With File adapters you can ensure Secure Data and Connection layer by using FTPS - FTP over SSL but you definitely will not be able to sign the file's content.

Are you using the file adapter for sure? What is the adapter you are using to integrae with KM?

If you are using SOAP, HTTP adapter or any of the b2b adapters then this is possible, but not with the file adapter of XI.

Can you explain further if possible if the answer is off track?

Regards,

Bhavesh

prateek
Active Contributor
‎08-07-2008 12:45 PM
0 Kudos

Yes it is very well possible. U will have to enable SSL on the java and abap engine of XI.

http://help.sap.com/saphelp_nw04/helpdata/en/14/ef2940cbf2195de10000000a1550b0/frameset.htm

Regards,

Prateek

Show replies
Show replies
Ask a Question