Communication Channel Security
Protecting the information transferred between the client and SAP NetWeaver Portal, and between the Portal Runtime for .NET server and SAP NetWeaver Portal, is important, because the data transferred contains authentication credentials and possibly other sensitive data that must not be known to third parties. This kind of data must be encrypted using secure communication protocols such as Secure Sockets Layer (SSL).
The following figure illustrates the communication channels used by PDK for .NET.
The following table shows the communication paths used by PDK for .NET, the protocols used for the connection and the type of data transferred.
|
Communication Path |
Protocol Used |
Type of Data Transferred |
Data Requiring Special Protection |
|---|---|---|---|
|
Web clients to SAP NetWeaver Portal |
HTTP/ HTTPS |
User credentials, portal content |
Passwords, sensitive portal content |
|
Portal Add-in to SAP NetWeaver Portal |
HTTP/ HTTPS |
User credentials, portal content, portal component deployment |
Passwords, sensitive portal content |
|
Portal Runtime for .NET to SAP NetWeaver Portal |
TCP/IP |
Portal content |
Sensitive portal content |
HTTP connections are protected using the Secure Sockets Layer (SSL) protocol.
TCP/IP connections are protected using the IP Security (IPSec) protocol.