Section

Description

SAP NetWeaver Security Guide

The SAP NetWeaver Security Guide provides an overview of the security aspects involved with the SAP NetWeaver platform and its products. It includes a overview of the mechanisms available as well as our recommendations and security measures to take to increase the security of your overall SAP system landscape.

User Authentication and Single Sign-On

This section describes the user authentication and Single Sign-On mechanisms available with the SAP NetWeaver platform, for example the use of logon tickets or X.509 client certificates for Single Sign-On or the use of Pluggable Authentication Services (PAS) for using external authentication mechanisms.

Identity Management

This section describes the mechanisms available for user and role management on the SAP Web Application Server ABAP, the use of the User Management Engine (UME) for user management on the SAP J2EE Engine, and the integration of user accounts on SAP systems with user accounts maintained on a directory server.

Network and Transport Layer Security

This section describes the mechanisms available for transport layer security, for example, the use of the Secure Sockets Layer (SSL) protocol to secure Internet connections and the use of Secure Network Communications (SNC) to secure connections that use SAP-specific protocols.

System Security

This section describes topics that apply to system security, for example: key, key pair and trust management, logging of security-related events using the Security Audit Log, and virus detection using the virus scan interface.

Digital Signatures and Encryption

This section describes the use of public-key technology for digital signatures and encryption with SAP systems.