AS2 is an electronic document interchange(EDI) standard, using HTTPS secure transport, the successor of AS1 which used email ( SMTP). Still widely used as the major business to business secure document exchange method, unlikely the newer AS3 standard ( sync only, FTP or SFTP based transport) or AS4 (claimed payload format independent, but basically a form of secure XML/SOAP exchange, least popular of all).
CrushFTP 11 supports RFC compliant AS2 as both sender and recipient, and AS3 as recipient only.
External links
Wikipedia
AS2 RFC document
The AS2 protocol itself is very simple, client (sending partner) , signs and encrypts the payload, does basic HTTP authentication against the server ( receiving partner), sends the encrypted payload. The server decrypts the payload if it can, validates the digital signature, validates message integrity(MIC), generates a success response (MDN), sends that back to the client over the same HTTPS connection (sync MDN) or a separate HTTPS connection (async MDN). In this case latter, the receiving partner authenticates back to the sender using HTTP basic authentication.
The payload related cryptography uses x509 digital certificates, basically the same as the ones used in SSL, the certificate extensions must include key and data encipherment and digatal signature ( the usual cert for web servers will do, can be even a self signed cert).
Setting up CrushFTP as the sending partner, it's an Enterprise licenses-only feature.
Acting as a receiving partner (AS2 server) is a core feature, available with all license types, only requires a properly configured user account in User Manager and a publicly available HTTPS port.
CrushFTP 11 supports RFC compliant AS2 as both sender and recipient, and AS3 as recipient only.
External links
Wikipedia
AS2 RFC document
The AS2 protocol itself is very simple, client (sending partner) , signs and encrypts the payload, does basic HTTP authentication against the server ( receiving partner), sends the encrypted payload. The server decrypts the payload if it can, validates the digital signature, validates message integrity(MIC), generates a success response (MDN), sends that back to the client over the same HTTPS connection (sync MDN) or a separate HTTPS connection (async MDN). In this case latter, the receiving partner authenticates back to the sender using HTTP basic authentication.
The payload related cryptography uses x509 digital certificates, basically the same as the ones used in SSL, the certificate extensions must include key and data encipherment and digatal signature ( the usual cert for web servers will do, can be even a self signed cert).
Setting up CrushFTP as the sending partner, it's an Enterprise licenses-only feature.
Acting as a receiving partner (AS2 server) is a core feature, available with all license types, only requires a properly configured user account in User Manager and a publicly available HTTPS port.
Add new attachment
Only authorized users are allowed to upload new attachments.
«
This page (revision-9) was last changed on 30-May-2024 04:35 by Ada Csaba
G’day (anonymous guest)
Log in
CrushFTP11 | What's New
- WebInterface
- Server Admin
- User Manager
- Client Apps
- CrushBalance Load Balancer
- High Availability
- Self Registration
- Preferences
- Email Templates
- Restrictions
- Replication
- Banning
- Logging
- Encryption
- Alerts
- Folder Monitor
- Tunnels
- Syncs
- User Config
- Search Config
- Preview
- Misc
- Plugins
- Manage Shares
- PGP
- Telnet
- FAQ
- API
- Linux Install
- Virtual Linux Server
- Server Variables
- Google Authenticator and Microsoft Authenticator
- AS2 EDI
JSPWiki