Kbase P90578: SSL What streams are encrypted.
| Autor |
Progress Software Corporation - Progress |
| Acesso |
Público |
| Publicação |
30/05/2005 |
|
Status: Unverified
GOAL:
SSL What streams are encrypted.
FACT(s) (Environment):
OpenEdge 10.0B
FIX:
WebServices
WebServices client (4GL, etc) to WebServer can be secured with https.
WebService Adapter uses unencrypted TCP to speak to the NameServer.
WebService to Appserver can use SSL (See Appservers for further detail).
AppServer State-Reset and State-Aware
If an AppServer is setup as State Reset or State Aware the clients connect to the Broker and then are redirected to the Server.
The stream from client to Broker can be SSL encrypted.
The stream from client to Server can be SSL encrypted.
When the AppServer broker is told to shutdown it opens SSL streams to each server telling the server to shutdown.
AppServer Stateless and Statefree
Client speaks to Broker thru encrypted SSL stream.
Broker speaks to Server thru unencrypted TCP.
Broker gets data and sends it back to client thru the SSL stream already established with client.
Open Client Java and .Net
From Client to WebServer can use https.
From AIA/s to AppServer can use SSL AIA/s functions as a client to the AppServer.
Remember to import the Root CA?s into the Windows Cert Store for the .Net client to find it. .Net only searches thru the Windows Cert Store.
WebSpeed
The WebSpeed Messengers can use SSL to the WebSpeed Brokers and to the Webspeed Agents
Sonic Adapter
From the 4GL client to the JVM hosting the Sonic Adapter can be SSL.
From the Sonic Adapter JVM to the Sonic Broker can be SSL.
AIA/s
AIA/s has been enhanced to allow SSL connection from AIA directly to AppServer AIA/s is treated as a client here.