Administration Tasks for Cryptographic Services and Transport Layer Security
Cryptography is used with SAP NetWeaver for certain security functions.
-
Secure Network Communications (SNC)
-
Transport Layer Security (TLS)
-
Digital signatures and data encryption using Secure Store and Forward (SSF)
-
Secure Storage
This topic provides links to the administrative tasks involved when using cryptography for these functions.
The following tools are available for using cryptographic functions:
-
SAP NetWeaver AS for ABAP: Trust Manager
-
SAP NetWeaver AS for Java: Keystore service
-
Standalone servers: SAPGENPSE (See Configuring SNC for Using the SAPCRPYTOLIB Using SAPGENPSE. See also the documentation for SAP Web Dispatcher for the configuration of SSL support.)
To use cryptography, install the cryptographic software on the server. Per default, this is installed with the kernel of SAP NetWeaver Application Server for ABAP.
For more information about SAP NetWeaver Application Server for Java, see Deploying the SAP Cryptographic Software.
For other cryptographic functions, such as digital signatures, the AS Java uses the SAP Java Cryptographic Toolkit, which is provided per default during the installation.
The following tasks may be required when using cryptographic services:
-
AS ABAP
-
Generate key pairs
-
Create certificate requests
-
Import certificate request responses
-
Manage Personal Security Environments (PSEs)
For more information, see Trust Manager and Getting Started with the Trust Manager.
-
-
AS Java:
Manage keystores, keystore views, and certificates
For more information, see Key Storage Service.
The distribution of cryptographic software is subject to and controlled by German export regulations and is not available to all customers. In addition, the library may be subject to local regulations of your own country that may further restrict the import, use and (re)export of cryptographic software. If you have any further questions on this issue, contact your local SAP subsidiary.