Copyright © TIBCO Software Inc. All Rights Reserved
Copyright © TIBCO Software Inc. All Rights Reserved


Chapter 8 Security : Public and Private Keys

Public and Private Keys
TIBCO BusinessConnect uses both PKI and PGP encryption methods to validate private and public keys. Both in PKI and in PGP method, each key pair has a public and a private part and messages are encrypted with the public part of the key and can only be decrypted with the associated private part of the key. This is done to ensure that only the intended recipient of the message can actually read it.
For creating and verifying signatures on messages, the holder of the private part of the key pair uses the private key to sign the message. Entities which have the public part of the key pair are then able to verify that the signature on the message was created by the holder of the private part of the key pair and therefore be assured that the message was sent by the holder of the private part of the key pair.
The following keys are supported in TIBCO BusinessConnect:
Public Keys   They are given to trading partners so that they can encrypt data and verify signatures.
For PKI: PKCS#7 public key identity format, which comes in the following file formats: .p7b and .p7c. .Storing of individual X509 certificates in PEM (base64) and DER (ASN.1 Distinguished Encoding) formats is also supported.
For PGP: Key types supported are DSA/ElGamal and RSA public key.
Private Keys   They are used to decrypt data and to sign messages. The extension of the private key file name is most commonly referenced as .p12, but it may be anything else as long as the data in the file is compliant with the PKCS#12 specification.
Supported types for PGP are DSA/ElGamal and RSA private keys.
SSH Private and Public Keys   They are used to support the SSHFTP transport in TIBCO BusinessConnect.
To learn more about this topic, see SSHFTP Implementation in TIBCO BusinessConnect. Follow the instructions given for the private or public keys (certificates) and make sure to upload an SSH key. Sample SSH keys are provided in the following location: BC_HOME/samples/keys/ssh. The disclaimer for use and information about these keys are available in the file BC_HOME/samples/keys/ssh/Readme.txt.

Copyright © TIBCO Software Inc. All Rights Reserved
Copyright © TIBCO Software Inc. All Rights Reserved