Encryption functionality in PO 7.31

Similar Messages

• Using mySQL Password encryption function

  hi there,
  I am using mySQL's password encryption function to store passwords
  safely in a tabe. The problem is when I retreive the username and password, because the password in encrypted, it won't match the password entered in a JSP page. Is there any way I can decrypt it to its original form so I can do a equal match comparision.
  thanks
  mani

  For Eg. you can compare the following way...
  Here,
  userdb - table name
  pwd - Column in table (password encrypted field)
  'userpassword' - user entered value....
  theSql = "SELECT PASSWORD('userpassword'), pwd FROM userdb
  rs = statement.executeQuery(theSql);
  if (rs.next())
  String strPswdEnter=rs.getString(1);
  String strPswdData=rs.getString(2);
  if (strPswdEnter.equalsIgnoreCase(strPswdData))
  bPasswordCorrect=true;
  Regards,
  Chandramohan V

• Encrypt function in 10g - RAW maximum size issue

  Hello,
  I m trying to encrypt some data using the ENCRYPT function provided by Oracle 10g.
  It appears that the function uses only RAW type and RAW apparently has a maximum size of 2000 bytes.
  And in my situation, the RAW data I would get after encrypting would be well above 2000 bytes. Can some one throw some light on how I can work around this situation.
  I'd appreciate any help here.
  Thanks
  Nikhil

  Should I convert the 9i database?You can, but not mandatory.
  from WE8MSWIN1252 to UTF8?I strongly advise you to read the following metalink
  notes :
  * Changing WE8ISO8859P1/ WE8ISO8859P15 or
  WE8MSWIN1252 to (AL32)UTF8 with ALTER DATABASE
  CHARACTERSET - Note:260192.1
  * NLS considerations in Import/Export - Frequently
  Asked Questions - Note:227332.1
  Nicolas.Nicolas:
  These links were very helpful!
  I actually was not aware of the fact that CHAR and VARCHAR2 are, by default, defined in terms of bytes, not characters when declaring column size. It seems like all I have to do is alter my tables in the 10g environment to be NVARCHAR2 instead of VARCHAR2, and that will define the columns in characters, not bytes.

• Is there any encryption function in Single Language Windows 8.1?

  Looking to install a data encryption utility on my Single Language Windows 8.1
  Truecrypt only seems to work on Windows 7, and there is no Bitlocker or EFS on my version of 8.1.
  Any recommendations?
  If you find my response helpful, please click on the "Vote as Helpful" button!Thank you!
  My Blog

  BitLocker Drive Encryption is only available in Windows 8.1 Pro and Windows 8.1 Enterprise editions.
  But check this
  Help protect your files with device encryption
  Hetti Arachchige V Aravinda | Network & System Administrator (B.Sc, Microsoft Small Business Specialist, MCP, MCTS, MCSA, MCSE,MCITP, CCNA, CEH, MBCS)

• Encrypt  and Decrypt  function modules

  Hi
  Please tell the function module names to Encrypt the code with key and Decrypt code with key.
  i know these function module names
  'FIEB_PASSWORD_ENCRYPT' and 'FIEB_PASSWORD_DECRYPT'
  but its not working.
  Is there any other function modules?
  if it is not there please tell the documentation of the to create  encrypt function module and decrypt function module.
  Thanks.
  Edited by: Craig Cmehil on Jul 18, 2008 10:01 AM

  try this it will do little bit closer to encription and decription
  DATA:
  g_key TYPE i VALUE 26101957,
  g_slen TYPE i,
  g_pwd type string VALUE 'Pass1234',
  g_pwd1 type xstring ,
  obj type ref to cl_http_utility.
  CREATE OBJECT obj.
  CALL METHOD obj->if_http_utility~encode_utf8
    EXPORTING
      unencoded         = g_pwd
    receiving
      encoded           = g_pwd1
    EXCEPTIONS
      conversion_failed = 1
      others            = 2
  IF sy-subrc <> 0.
  MESSAGE ID SY-MSGID TYPE SY-MSGTY NUMBER SY-MSGNO
             WITH SY-MSGV1 SY-MSGV2 SY-MSGV3 SY-MSGV4.
  ENDIF.
  CALL METHOD obj->if_http_utility~decode_utf8
    EXPORTING
      encoded           = g_pwd1
    receiving
      unencoded         = g_pwd
  EXCEPTIONS
     conversion_failed = 1
     others            = 2
  IF sy-subrc <> 0.
  MESSAGE ID SY-MSGID TYPE SY-MSGTY NUMBER SY-MSGNO
             WITH SY-MSGV1 SY-MSGV2 SY-MSGV3 SY-MSGV4.
  ENDIF.
  write:/ g_pwd.

• Call function..Destination

  Hi Experts,
  My requirement is to call a RFC Java function in SAP. The Java function is an encryption function which has 4 parameters (Password, Message, Strength128, Strength256). I need to pass the data for the parameters from SAP to JAVA. With the help of SDN, I tried to call this function in ABAP. A destination named 'INTEGRATION' is created in SM59, with the registered Program ID 'ASEncryptionHelper'. ASEncryptionHelper is the Java function name and the program ID is registered with this name only. The following is the code I wrote in my report
  DATA: XPASS TYPE STRING.
  XPASS = 'PASS'.
  CALL FUNCTION 'ASENCRYPTIONHELPER' DESTINATION 'INTEGRATION'
    EXPORTING
      PASSWORD          = XPASS
      MESSAGE             = XML_RESULT
      STRENGTH128       = ' '
      STRENGTH256       = 'X'
  I have created a RFC function module in my SAP system with the name ASENCRYPTIONHELPER
  FUNCTION ASENCRYPTIONHELPER.
  ""Local Interface:
  *"  IMPORTING
  *"     VALUE(PASSWORD) TYPE  STRING
  *"     VALUE(MESSAGE) TYPE  STRING
  *"     VALUE(STRENGTH128) TYPE  BOOLEAN
  *"     VALUE(STRENGTH256) TYPE  BOOLEAN
  ENDFUNCTION.
  When I execute the program I get a runtime error "Bean ASENCRYPTIONHELPER not found on host HOSTNAME".
  I am not able tofigure out the exact problem.
  Also I wanted to know whether the way I am coding is right. Do I need to create a RFC function module in SAP also as I did above?
  Does the Uppercase of the function 'ASENCRYPTIONHELPER' matter? In SM59 the program id is mentioned as 'ASEncryptionHelper'.
  I tried to change the function name with 'ASEncryptionHelper' in the CALL FUNCTION, but then I get another error, "JCO.Server could not find server function 'ASEncryptionHelper' '. What is wrong? I am confused.
  Please guide.
  Thanks
  Anu.

  Hi,
  I didn't get your requirement wxatly but you can do as below,
  What I am assuming is you have a java batch file at your desktop and you want to encrypt the file through this batch file execution from SAP.
  Now to execute the batch file at runtime and to pass data at runtime you can use below function module
  W_RFCENCRY = 'C:\Encrypt\enc.exc C:\Encrypt\test.txt'.
  W_RFCDEST = 'ZRFC'.
  CALL FUNCTION 'RFC_REMOTE_PIPE'
        DESTINATION W_RFCDEST
        EXPORTING
          COMMAND               = W_RFCENCRY
        EXCEPTIONS
          COMMUNICATION_FAILURE = 1
          SYSTEM_FAILURE        = 2
          OTHERS                = 4.
  Here ZRFC is the RFC created in SM59 as below
  1) select TCP/IP and create ZRFC
  in program option type as below C:\RfcSdk\bin\rfcexec.exe
  Note: RFCDSK folder is required to execute the batch file at your workstation at path specified as above
  2) In activation type select start on front end work station radio button.
  Now save the RFC and check the connection, same will be there if RFC SDK folder is available as specified in the program option
  In W_RFCENCRY give the inputs that you want to pass with the batch file.
  here I have mentioned as 'C:\Encrypt\enc.exc C:\Encrypt\test.txt'. in the program where C:\Encrypt\enc.exc is the path for batch file and C:\Encrypt\test.txt is the path of the file on the work station which is to be encrypted.
  Hope this will help you, I think at your end batch file can be different and inputs to be passed in the batch file can also be different.

• Need help for converting c# encryption code to javascript

  I have this below code in c# i need to convert it into nodejs i would really appriciate some help in this.
  Rfc2898DeriveBytes passwordDb2 = new Rfc2898DeriveBytes(passphrase, Encoding.ASCII.GetBytes(DeriveSalt(grains)));
  byte[] nonce = passwordDb2.GetBytes(NonceSize);
  AesManaged symmetricKey = new AesManaged { Mode = CipherMode.ECB, Padding = PaddingMode.None };
  _encryptor = symmetricKey.CreateEncryptor(_nonces[0], null);
  public byte[] Encrypt(byte[] plainText, int blockIndex)
  byte[] nonceEncrypted = new byte[NonceSize];
  byte[] outputData = new byte[_chunkSize];
  _encryptor.TransformBlock(_nonces[blockIndex], 0, NonceSize, nonceEncrypted, 0);
  for (int i = 0; i < _chunkSize; i++)
  outputData[i] = (byte)(plainText[i] ^ nonceEncrypted[i % NonceSize]);
  return outputData;
  public byte[] Decrypt(byte[] encryptedText, int blockIndex)
  byte[] nonceEncrypted = new byte[NonceSize];
  byte[] outputData = new byte[_chunkSize];
  _encryptor.TransformBlock(_nonces[blockIndex], 0, NonceSize, nonceEncrypted, 0);
  int index = 0;
  for (int i = 0; i < _chunkSize; i++, index++)
  if (index == NonceSize)
  index = 0;
  outputData[i] = (byte)(encryptedText[i] ^ nonceEncrypted[index]);
  return outputData;
  Currently i have the below code from what i understood (I am quite new to nodejs)
  var crypto = require("crypto");
  var nonce = crypto.pbkdf2Sync(passphrase, "grains", 1000, NonceSize);
  _encryptor = crypto.createCipheriv('aes-128-ecb', binkey, "");
  _decryptor = crypto.createDecipheriv('aes-128-ecb', binkey, "");
  Encrypt: function (plainText, blockIndex) {
  var nonceEncrypted = [NonceSize];
  var outputData = [_chunkSize];
  var crypted = Buffer.concat([_encryptor.update(plainText), _encryptor.final()]);
  for (var i = 0; i < _chunkSize; i++) {
  outputData[i] =(plainText[i] ^ nonceEncrypted[i % NonceSize]);
  var x = new Buffer(outputData);
  return x;
  Decrypt: function (encryptedText, blockIndex) {
  var nonceEncrypted = [NonceSize];
  var outputData = [_chunkSize];
  var decrypt = Buffer.concat([_decryptor.update(encryptedText), _decryptor.final()]);
  var index = 0;
  for (var i = 0; i < _chunkSize; i++, index++) {
  if (index == NonceSize)
  index = 0;
  outputData[i] = (encryptedText[i] ^ nonceEncrypted[index]);
  var x = new Buffer(outputData);
  return x;

  Maybe, you should post to the Javascript secition of the ASP.NET forum.
  http://forums.asp.net/

• I cannot read S/MIME encrypted Mails on iPhone and iPad

  I have a Certificate for my email address by Comodo. It is installed in Thunderbird on PC and iPhone and iPad with iOS 7.1.2.
  Thunderbird on PC behaves like expected, i can send and read encrypted emails.
  On iPad and iPhone i cannot read encrypted emails.
  I imported my S/MIME Certificate via email attachment (p.12-File) and activated it in the mail section for my account. I also enabled signature and encryption function.
  1. When i receive an email that is signed but not encrypted, the certificate of the sender is trusted & installed.
  2. When i receive an email that is encrypted, the same sender is now shown in red color. I cannot read the email, because my profile allegedly does not contain my identitiy.
  3. When i try to reply to the signed but not encrypted email (1.) then the message i send is signed but not encrypted, even though the address is shown in blue with a lock (which text info: encryption is possible).
  4. When I send an encrypted email to my own account via ipad or iphone, i can read it on both ipad and iphone. This makes me think that the iOS Mail App uses S/MIME encryption a little bit different then Thunderbird.
  All of this does not fit together. It think I correctly installed my certificate but there are problems in the Mail Program on iOS.

  Solved: the problem was that the emails were encrypted with an old public key.

• Establishing ELSTER encryption in ECC 6.0

  Hello!
  I would like to set up the ELSTER encryption functionality in ECC 6.0.
  Has some one experience, helpful information, technical steps (Tcodes), SAP notes for the following operations:
  <b>- establish ELSTER encryption
  - establish Business Connector
  - establish RFC-Verbindung
  - establish  electronic agency comunication
  - to store settings for electronic agency comunication
  - authorization</b>
  Thank you very much indeed!
  Regards
  Thom

  Hi Thom,
  <b>Regarding establish RFC-Verbindung</b>
  http://help.sap.com/printdocu/core/Print46c/de/data/pdf/BCMIDAPIINTRO/CABFAAPIINTRO.pdf
  <b>establish Business Connector</b>
  http://www.thespot4sap.com/articles/SAP_XML_BC_Integration_Benefits.asp
  <b>For Tcodes</b>
  http://www.saptransactioncodes.com/l.html
  Regards,
  Kumar.

• Credit Card Encryption through RFC calls to third party software

  Dear All,
     I am working on credit card encryption in CRM. At our firm, we have SAP R/3 which is integrated with third party server for performing credit card encryption using RFC calls. We want to perform similar thing in SAP CRM. I was looking into SAP standard mechanism to perform encryption and it seems they use class CL_PCA_SECURITY -> External Encryption to encrypt credit card. Are there any BADIs available for me to change behaviour of this call and call our listeners (for third party server) instead of what standard SAP is calling. Here is what in the code:
  call C function 'SSFENVELOPE'
    CALL 'SSF_ABAP_SERVICE'                                 "#EC CI_CCALL
         ID 'OPCODE'             FIELD   SSF_OPCODES-ENVELOPE
         ID 'SECTOOLKIT'         FIELD   SSFTOOLKIT
         ID 'STRFORMAT'          FIELD   STR_FORMAT
         ID 'STRFORMATL'         FIELD   STR_FORMAT_L
         ID 'BINENC'             FIELD   B_INENC
         ID 'IOSPEC'             FIELD   IO_SPEC
         ID 'OSTRINPUTDATAL'     FIELD   OSTR_INPUT_DATA_L
         ID 'STRPAB'             FIELD   STR_PAB
         ID 'STRPABL'            FIELD   STR_PAB_L
         ID 'STRPABPASSWORD'     FIELD   STR_PAB_PASSWORD
         ID 'STRPABPASSWORDL'    FIELD   STR_PAB_PASSWORD_L
         ID 'OSTRENVELOPEDDATAL' FIELD   OSTR_ENVELOPED_DATA_L
         ID 'CRC'                FIELD   CRC
         ID 'OSTRINPUTDATA'      FIELD   OSTR_INPUT_DATA-SYS
         ID 'RECIPIENTLIST'      FIELD   RCPTAB-SYS
         ID 'OSTRENVELOPEDDATA'  FIELD   OSTR_ENVELOPED_DATA-SYS
         ID 'STRSYMENCRALG'      FIELD   STR_SYM_ENCR_ALG
         ID 'STRSYMENCRALGL'     FIELD   STR_SYM_ENCR_ALG_L.

  Vivek,
  While it may be technically possible to accomplish what you are suggesting (leveraging the encryption functionality provided by your third-party server) I would recommend strongly that you consider a token-based solution instead.  You can learn more about tokenization on this [blog|/people/eric.bushman4/blog/2009/01/02/tokenization-as-a-means-of-securing-credit-card-numbers ].
  There are many reasons why a token-based solution is superior to using application specific encryption (as outlined in the blog), but specifically in the case you describe where an SAP CRM and SAP R/3 are involved there is one specific reason to consider:
  When order data is replicated between SAP CRM and SAP R/3 the systems will attempt to decrypt the credit card numbers prior to passing the data and therefore the RAW card number will be stored in the middleware logs.  This is especially true when using SAP's native credit card encryption logic in the CRM and R/3-ECC applications. 
  For example, let's say a user enters a credit card as the form of payment during Order Creation in CRM.  At Order Save the system will send the credit card information to your third-party server for an authorization attempt and the results will be returned to CRM.  As the Order is saved and committed to the CRM database the standard SAP encryption functionality can be leveraged to encrypt the card data.  Based on your middleware configuration, eventually the Order data (including the credit card details) will be sent to the R/3 or ECC system.  In order to do so the CRM system will first decrypt the card number meaning that the CRM middleware logs will contain RAW card numbers.  When the Order is created in R/3 or ECC the native credit card encryption functionality in R/3 or ECC could be used to encrypt the card number prior to the Order being stored in the database.
  Should you choose to use a third-party server you may find, depending on how the third-party vendor's logic works in SAP, that you must utilize a BADI to decrypt the card number in CRM so that the CRM middleware has a RAW card and so that when the Orders is saved in the R/3 or ECC system it can be encrypted again with the third-party vendor solution.  In either case the RAW card number is present in all systems for some period of time and potentially stored in logs thus exposing your systems to risk and greater PCI audit scrutiny.
  Eric Bushman
  VP, Solutions Engineering
  [Paymetric|https://www.paymetric.com]

• Email Broadcasting by encrypting the content

  Hi Gurus,
  I have a requirement to publish(broadcast) reports via email. And this should happen with encryption.
  Can someone help me with the step by step proceedure to be followed to have this broadcast email encryption functionality.
  Thanks in advance,
  Sandeep

  hi sandeep,
  Please follow the link mentioned below
  http://help.sap.com/saphelp_nw70/helpdata/en/cf/700b405bacdd5fe10000000a155106/content.htm
  Also
  the broadcaster itself does not provide any encryption.Emails are sent out by an external SMTP server. u have tu check whether ur server is configured for encryption or not.
  take help of note 149926.
  hope it will help you.
  thanks

• PreparedStatements with parameters inside functions

  With PreparedStatements, can I use parameters inside of functions. For example, instead of doing:
  stmt = conn.prepareStatement("INSERT INTO MyTable (EncData) VALUES (ENCRYPTBYKEY(KEY_GUID('MyKey'), 'ABCDEF''))");
  I want to do:
  stmt = conn.prepareStatement("INSERT INTO MyTable (EncData) VALUES (ENCRYPTBYKEY(KEY_GUID('MyKey'), ?))");
  stmt.setString(1, "ABCDEF");
  I am getting a 'String or binary data would be truncated' exception when trying this.
  Thanks,
  Kevin

  OK ... let me take you a couple steps back ...
  I can get PreparedStatements to work in Java (J2SE1.5):
  stmt = conn.prepareStatement("INSERT INTO MyTable (Data) VALUES (?)");
  stmt.setString(1, "ABCDEF");
  However, the previous example does not work through SQL Server Management Studio ... it gives a syntax error:
  INSERT INTO MyTable (Data) VALUES (?)
  Moving onto my issue, how do I get PreparedStatement parameters to work within a function:
  stmt = conn.prepareStatement("INSERT INTO MyTable (EncData) VALUES (ENCRYPTBYKEY(KEY_GUID('MyKey'), ?))");
  stmt.setString(1, "ABCDEF");
  And as mentioned earlier, the following works fine in Java J2SE 1.5
  stmt = conn.prepareStatement("INSERT INTO MyTable (EncData) VALUES (ENCRYPTBYKEY(KEY_GUID('MyKey'), 'ABCDEF'))");
  So, in conclusion:
  I can successfully make PreparedStatements perform inserts using parameters in Java
  I can successfully make PreparedStatements perform inserts in Java using the encryption function
  However, I cannot make PreparedStatements perform inserts using parameters in the encryption function in Java
  I cannot get a simple example of PreparedStatements to work in SQL Server Management Studio ... and wouldn't expect to ...
  Thanks,
  Kevin

• Encrypted USB Flash Drive with Lion OS X questions

  Like many of us, we don't want our USB flash drives lost with our valuable data on them.  So I've used the encryption function in Lion OS X in Disk Utility to make an encrypted flash drive.  This has some limitations as I read but what I want to know is can I use this usb drive on a DIFFERENT computer that also has OS X Lion?  I don't have another mac w/ lion to test it on. 
  This is important to me because I've got a laptop and God forbid, but if it was stolen or destroyed, will I be able to access my USB drive with important data on it by plugging it into another mac computer w/ lion? 
  Also, as a follow up question - I haven't yet made an encrypted DMG file (tho I plan to soon) and place that on a usb drive for multiple platform use, but how functional is this?  Can you add and copy files within the DMG file?  I thought a dmg file, once created, couldn't change in size, MB's, etc. 
  Basically, I'd like to use the most user friendly type of way of securing my files and data on USB flash drives.  I have tried TrueCrypt and have it installed but I just don't prefer using it.  I like the simplicity of the former approach, though it has it's limitations.

  NightBird wrote:
  This is important to me because I've got a laptop and God forbid, but if it was stolen or destroyed, will I be able to access my USB drive with important data on it by plugging it into another mac computer w/ lion? 
  How about any computer instead?
  Hardware based encryption is superior to software encryption which can be hacked or not available if your needs change.
  This will work with any computer, and has a nice keychain so you can attach to something like your wrist or retractable key cable.
  http://www.amazon.com/IronKey-Secure-Hardware-Encrypted-Flash-D20402A/dp/B000RXY V5U
  There are also hardware based encypted external hard drives with their own keys and password keypads, also work with any computer if your needs are larger then a USB can handle.

• Encryption in Time Machine is utterly crippled. Why?

  The encryption function for Time Machine is so slow as to be effectively null and void. I've been trying to encrypt a mere 400gigs onto a 3T LeCie HD and several days in, I'm at 37% done. It's barely doing 1% for 2 hours.  What on earth is going on?

  Michel Colman wrote:
  I used Disk Utility to wipe a disk and initialize it as an encrypted volume to be used for Time Machine backup. But in the Time Machine preferences, there's also an option to encrypt the destination. I'm a bit confused now:
  If the disk is encrypted, when you select it as the destination, the Encrypt backup disk box should be checked automatically.
  If I use the encrypted disk AND choose the Time Machine encryption option, will everything be encrypted twice?
  No.
  Or will Time Machine simply use the encrypted volume without further ado?
  Yes.
  And what if I don't check the encryption option in Time Machine? Will it convert the disk to an unencrypted format?
  I believe so, but don't recall if I tested that.
  Which is the best way? Using encrypted Time Machine backup on a regular disk, using "normal" Time Machine on an encrypted disk, or using encrypted TM on an encrypted disk? Or is it all just the same? I would assume the latter, but I want to be sure.
  Yes, encryption is encryption.
  See Time Machine - Frequently Asked Question #31 for the gory details.

• AES Encryption - Encrypted value lengths

  HI all -
  I am attempting to use CF 8's AES encryption feature, and
  have not found a critical piece of info in the docs to enable me to
  progress.
  I am using the function to encrypt a password that can be
  from 6 to 16 characters long, which will be stored in a database. I
  am using generateSecretKey("AES"), and that gives me a 24 character
  key that I'm storing for future decryption use. I find that when I
  use the key to encrypt a 6 character password the resulting
  encrypted string is 32 characters long, but when I encrypt a 16
  character password I get a 64 character encrypted string. This is
  the case whether I specify "HEX" or "UU" as the encoding.
  Without knowing how the length of the resulting encoded
  string is determined, I cannot know how large to make my database
  column. (MySQL's AES encryption gives the formula 16 ×
  (trunc(string_length / 16) + 1) to arrive at the resulting string's
  length, but that formula doesn't yield the results I'm seeing in
  CFMX). Can anyone point me to a doc, or explain to me how to
  determine the column length for storing the resulting encrypted
  value?

  No. Only things like key, encoding and string size should
  matter. If the encoding is "hex", 1-15 characters should produce
  size 32, 16-31 characters should produce 64, etcetera. Unless space
  is at a premium, you could always increase the field size if that
  makes you feel more comfortable.
  Well, the results are dictated by the AES standard and basic
  string encoding rules, not CF. I highly doubt either one is going
  to change any time soon ;-) I agree documentation is good. However,
  unlike aes_encrypt, the encrypt function supports many different
  algorithms. Most of which have a distinct set of rules. So it would
  probably be difficult to provide accurate information about all of
  them. Especially as the specifications for each one alone probably
  spans volumes ;-)