Skip to Content
Former Member
Mar 14, 2013 at 08:02 AM

Using external cryptoprovider for SAP J2EE (SAP PI)



could you be so kind to tell me -

is it, in principle, possilbe to use external cryptoprovider (which implements cryptoalgorithms which are compliant to Russian law requirements)

to implement digital signature check in SOAP based communication via SAP PI?

We are using SAP PI 7.11

and SOAP adapter to communicate with external parties.

External party should sign the message as a whole and (possibly) the attached files, and we need to check the digital signature.

We need to use the external cryptoprovider because SAP doesn't support the Russian algorithms (also known as GOST algorithms).

And we have the external cryptoprovider CryptoPro JCP in place, which is JCA compatible and can check the XMLDSig format of digital signature.

What should you advice?

Is it possible in principle and what are the main steps?

Does anybody implement this case in practice?

What format we should use - XMLDsig?

And does this supported by SAP? I know when we are talking about ABAP side the SAP provided the SSF interface and we can use external

products which are certified by SAP.

But here we have J2EE part and I can't find exact position by SAP in this case.

Thanking you in advance,