System Security for SAP Web
AS ABAP Only 
System security functions that apply to specifically for SAP Web AS ABAP are described in the following sections:
The trust manager is the tool to use when using public-key technology with the SAP Web AS ABAP server.
Use the Security Audit Log to keep track of security-related events on the SAP Web AS ABAP server. Events such as unsuccessful logon attempts, starting of transactions or reports, or changes to user master records can be recorded and analyzed.
The secure storage is part of the SAP Web Application Server ABAP and is used by SAP applications to store the passwords used for connecting to other systems. The passwords are stored encrypted so that they cannot be accessed by unauthorized users.