Secure Network Communications (SNC) integrates SAP NetWeaver Single Sign-On or an external security product with SAP systems. With SNC, you strengthen security by using additional security functions provided by a security product that are not directly available with SAPsystems.
SNC protects the data communication paths between the various client and server components of the SAP system that use the SAP protocols RFC or DIAG. There are well-known cryptographic algorithms that have been implemented by the various security products, and with SNC, you can apply these algorithms to your data for increased protection.
If you are using standard protocols such as HTTP, then you can use the Secure Sockets Layer (SSL) protocol to provide such protection.
There are regulations in various countries that restrict the use of encryption in software applications. Pay close attention to the regulations that apply to your area of application.
There are three levels of security protection you can apply. They are:
When using authentication only, the system verifies the identity of the communication partners. This is the minimum protection level offered by SNC.
No actual data protection is provided!
When using integrity protection, the system detects any changes or manipulation of the data which may have occurred between the two end points of a communication.
When using privacy protection, the system encrypts the messages being transferred to make eavesdropping useless. Privacy protection also includes integrity protection of the data. This is the maximum level of protection provided by SNC.
The product that you use must meet the following requirements:
The SAP Cryptographic Library is available with this release to be used by customers for SNC connections between system components. For more information, see Using the SAP Cryptographic Library for SNC and SAP Note 1848999 .