Security with Data Storage

Data Storage

If evaluations and analyses are called using BEx Web applications, data is displayed in a Web Browser. Data is then stored in a browser cache. We recommend always deleting the browser cache after evaluating data.

Data Protection

Using BEx Tools in SAP NetWeaver 2004

If using BEx tools in SAP NetWeaver 2004, note the following:

BEx Web applications can be implemented either as stateful or stateless applications. Use the BEx Web runtime for Web application session cookies with a state to combine independent requests (the function calls in a Web application, navigation steps for example) for a session. These cookies are called sap-contextid. The cookie contains a generated ID as a value. This ID allows the relevant session to be identified on the server. The session cookie is a temporary cookie. It is deleted automatically when the browser window is closed. The server also has a timeout parameter. The session cookie is invalid after the timeout and can no longer be used for navigating in a Web application. Using Web template attribute NO-SESSION_COOKIE , you can use the session coding in the URL for the Web application. In this case, no session cookies are generated. To ensure that the Web application uses the session coding in the URL, set X for the NO-SESSION_COOKIE attribute.