Document security is a huge topic that can become highly technical. There is also a lot of overlapping terminology. This section provides a narrow overview of document security in its simplest terms as it relates to TIBCO BusinessConnect and TIBCO BusinessConnect Remote software.
TIBCO BusinessConnect and TIBCO BusinessConnect Remote software use the PKI (public key infrastructure) system of providing security for B2B transactions.
While there are many terms in use for the two main components of PKI, we use these terms in the documentation:
While not a perfect metaphor, we use a lock to illustrate the certificate and a key to illustrate the key:
A certificate can encrypt data sent to a partner and it can authenticate the digital signature of documents received. A key can decrypt documents received and sign documents sent to a partner.
Each time you launch the BusinessConnect Remote console, the software automatically connects to the BusinessConnect host and downloads the certificate of the BusinessConnect host. This allows you to encrypt the documents you send to the host. It also allows you to authenticate the documents that you receive from the host so you know that they are really coming from the host and not an imposter.
Before you begin exchanging documents with the BusinessConnect host, the host will ask you to send them your certificate. This allows the host to encrypt the documents it sends to you and to authenticate the documents it receives from you so they know the documents are really coming from you.
This next illustration shows the certificates and keys used when you send a document to the BusinessConnect host:
To obtain a security credential, contact a certificate authority (CA). CAs are companies in the business of providing security credentials. You can obtain a security credential from the web site of any authorized certificate authority such as:
You can obtain a multi-purpose security credential, which supports document encryption/decryption, SSL encryption during transport, and signing/authentication or you can obtain multiple, specialized credentials. The BusinessConnect Remote deployment wizard allows you to assign specific keys to specific tasks if you desire.
TIBCO BusinessConnect™ Remote User’s Guide Software Release 5.0, July 2006 Copyright © TIBCO Software Inc. All rights reserved www.tibco.com |