Web Service Message Confidentiality with XML Encryption (New) (SAP Library - Release Notes for SAP NetWeaver Syst./Standalone Engines)

Web Service Message Confidentiality with XML Encryption (New)

Use

The SAP NetWeaver AS Java enables the use of XML encryption for protecting the confidentiality of Web service messages.

XML encryption in SAP NetWeaver is based on the OASIS standard for WS-Security and enables protection of the confidentiality of the message sections in the SOAP envelop without relying on network transmission security mechanisms such as Secure Sockets Layer.

Effects on Existing Data

The use of message confidentiality with XML encryption requires a WS provider system SAP NetWeaver 7.1 and higher.

Effects on Data Transfer

Enabling the use of XML Encryption for Web service message keeps the encrypted message sections confidential to all intermediary systems other than the WS consumer and the WS Provider. To enable the WS consumer and the WS provider systems to read the message, system administrators have to make the necessary configuration changes for system trust between the counterparties.

Effects on System Administration

Enabling the use of XML encryption for a WS consumer or a WS provider is performed from the Web service management functions for the corresponding logical port or binding. The configuration involves choosing a keystore view and a certificate or a private key to use the XML encryption. The availability of the key or certificate in the chosen keystore view is performed separately as a part of the trust system configuration between the WS consumer and the WS Provider.