Masking sensitive data in the messages?
All,
We are getting some sensitive data from a legacy system that needs to be imported into R/3. There is a translation service - that translates the sensitive data into public format.
The question i have is - though we will be able to use XI to call this translation service and translate and then send the translated values to R/3, how can we mask the sensitive data on the messages that would be logged in the XI system. (Like if somebody runs the SXMB_MONI - they will be able to see the sensitive data that was sent to get the public format back).
Is there a setting or way - we can accomplish this in XI?
Thanks.
Hi,
you have to restrict user access to certain messages.
Go through this blog to see how to accomplish this:
<a href="/people/michal.krawczyk2/blog/2006/01/02/xi-sxmbmoni--controlling-access-to-message-display: SXMB_MONI - controlling access to message display</a>
Also have a look at this link to understand which are all the possible points you should protect:
<a href="http://help.sap.com/saphelp_nw04s/helpdata/en/a0/64f6413a15e23ee10000000a155106/frameset.htm">Protection of Sensitive Message Data</a>
Kind Regards,
Sergio
Similar Messages
-
All the message dates in the message list changed in every mailbox to a recent date, I don't know why.. The dates within the messages' headlines themselves remained correct. How do I re-establish the correct dates also in the mailboxes' message list?
First thing is to forget all the complex configs and just try to schedule the report to run once now, no alerts, no notifications, no nothing.
Does that work?
Then you can build up the schedule, to see where the problem is coming from.
Sincerely,
Ted Ueda -
How to send binary data in the message body
How can we send binary data in the message body that is base64 encoded? below are the requirements
Mime Header.
Mime-version: 1.0
Content-Type: application/octet_stream; name=test
Content-Transfer-Encoding: Base64
Submission must be named "test.sub" (lowercase)
Submission must be base64 mime-encoded
Submission must be sent in the body of the message (not as an attachment)
Only one submission per mail message
No other comments should be put in the body of the mail message (other than the submission)
I highly appreciate your help. If you can provide few examples, that will be very helpfull.
Thanks,
MadanUse Message.setContent to set the content, or use Message.setDataHandler with
a DataHandler constructed with a ByteArrayDataSource. If the content is not
"naturally" encoded in base64, you can enforce it by setting the Content-Transfer-Encoding
header to "base64". Any reasonable mail reader won't care what encoding you use, as
long as the decoded data is correct. -
I'm trying to make a purchase at itunes, but when I finish asking the card data to the message comes into contact support itunes appears, can you help me?
Do exactly what it told you to do.
Contact itunes support -
Hey Experts. Can someone tell me how we can "Mask" certain data in SAP, using Standard functionality. We don't want to customize, so if a way exists, please share.
We want to be able to blank out or mask data such as the description of the WBS Elements.
Thanks.
Chris
Edited by: Christopher Ambrose on Oct 29, 2009 6:27 PMWith SHD0, you create variants which you can use in a number of ways.
The main ones are:
1. Modify the use of the standard transaction
2. Create a new transaction which uses the variant.
With option 1, everyone who runs the transaction gets the modification
With option 2, you create a custom transaction and assign it to the variant. When someone runs the custom tcode, it executes the original transaction but applies the variant to that. You are not actually copying any transactions etc but it does let you have 2 different types of functionality hanging off the original transaction depending on the transaction you used to access it.
If you want to use different variants for the standard transaction, you could look into variant groups. I've not used these before but it may be an option: http://help.sap.com/saphelp_nw04s/helpdata/en/46/8ad19434a801dce10000000a1553f7/frameset.htm
There are also downsides to using transaction variants, if you do a search on SHD0 there are a few posts on their drawbacks. -
DTP to load master data, gives the message 'No more data available'.
hi,
when i execute the DTP to load master data from DSO, it executes and gives the message 'No more data available'. The request is green but no data is transferred from the DSO to master data.
I want the DSO data to get into master data how do i do it?Hi Hardik,
Since the request is green, there is no error in extraction. But, as they've rightly pointed out, the Update mode of the DTP must be Delta and there must not be any new Master data that you are looking for.
Compare the data and check if the Delta DTP should bring anything at all i.e. new records. If there are no new records, then the Delta DTP will not bring any more data. Else, change mode to Full and check again.
Reg,
Dhaval -
Can the Date of the messages in Mail.app all appear as "date_sent"?
I have an IMAP mail account, and it has been added into the Mail.app on my Mac (OS X Yosemite 10.10.2).
As I known, a mail message has three "time stamps", which are date_sent, date_received, and date_internal.
The first two time stamps(date_sent & date_received) are stored in the source of the mail message,
and the last one(date_internal) is stored on the mail server.
This date_internal is the time when this mail message is received on the server for the first time.
Normally, date_received and date_internal are the same or very close to each other.
However, when some old mail messages are synced back to the mail server, these two time stamps are quite different.
For example, I miss-deleted some mail messages on the server, and I have the backup files on my Mac, so I can sync these messages back to the mail server through IMAP protocol.
In the situation above, the date_received is still the origin received time because it is always stored in the source of the mail message, while the date_internal then becomes the time when I sync this mail message.
Unfortunitly, Mai.app uses the date_internal as the default Date appearing in the list, not the date_received, not the date_sent, and even no settings about this can be found.
Can the Mail.app shows the date_received instead of the date_internal in my mail list? Thank you so much!
Btw, I have tried the AppleScript to change the dateReceived element, but the system said my operation is not allowed.Maybe I'm missing something...?
In Mail.app -> View -> Columns you can add various columns to the view.
Is that not what you want? -
This is NOT TRUE!! I want the date on the short header!!! WHY in the world would they change such a simple but sometimes critical feature?
HELP!!!You're right - it says '2 days ago' or '6 days ago' or 'two weeks ago' - eventually it shows the date when the message gets old enough. It's crackers, and I'm not sure you can do anything about it.
-
When trying to up date ITunes the message: "Ungültiges Laufwerk E: shows up" and the finalizaition of the up date is cancelled.
On my PC drives C and I are defined. Anybody knows how to solve this??Hey Chris-
It has been some time since you posted this message and I see you haven't gotten any replies, but I have the same issue and I was wondering if you figured out how to resolve it. Hopefully you were able to figure it out. -
Hi...I'm in need of masking sensitive data being displayed in my companies web site.I've gone through many proxies but many are not supporting https and ftp protocols which i really require because my company's web site is an secured site....
For example
i need <html><b>SSN</b></html> should be masked with<html><b>XXX</b></html>
Please do help me in this issue....Any help would be greatly appreciated.Hi Rahul,
Thanks for your input. I have gone through the SJSwebproxy.
But the problem is, it only filters the content which has been included within
the html tags...For ex
<html>
<input type="text" name="text1" value="ssn">
</html>
we can change the value="ssn" to value="xxx" using this Proxy...
But unfortunately with none of this proxy servers you can edit static html text content
As i have described in my previous post, I just want to filter like this
<html>
<h1>Hai</h1>
</html>
to
<html>
<h1>xxx</h1>
</html>
Since, all the web proxy servers allow the content editing only if the
content to be edited present within a HTML ATTRIBUTE
for ex,,,<font color="RED">hai</font>
you can change this content as <font color="XXX">hai</font>, because
color is an attribute. But since hai is not an attribute, i
can't able to mask hai to xxx...
Please do help he in this issue...Looking forward to read from you.... -
How can I import Chat history into the Messages.app?
Okay so this is what I've done so far: I've freshly reinstalled Mac OS X 10.8.1 on my Mac and I've already copied the Messages Folder located in User/Library/Application Support, to the new one.
The idea is to access all this history data in the Messages.app, but so far I haven't been lucky.
When I'm chatting with people, the recent activity will be shown in the left column of the app but nothing from the past shows up, yet.
Is there some way to import all the chats into Messages, so that I can see them all in a nice way instead of quick-looking them in the Finder?Hi,
The "sync" between and iPhone (or other iOS device) and a Mac only works from the time both devices have the same details.
Effectively this is the time that the iPhone has the Apple ID added to it's settings and the pop ups that appear on the Mac about the iPhone's details are accepted.
The Sync is then "Display on all devices" only.
There is no catch up on existing threads on either device on the other.
If you delete an iMessages or a conversation on one device the other is unaffected.
10:16 pm Sunday; June 8, 2014
iMac 2.5Ghz i5 2011 (Mavericks 10.9)
G4/1GhzDual MDD (Leopard 10.5.8)
MacBookPro 2Gb (Snow Leopard 10.6.8)
Mac OS X (10.6.8),
Couple of iPhones and an iPad -
Re-authenticate or provide additional credentials to access sensitive data
Hi,
I am wondering if anyone has ever come across a scenario in SAP where a user is asked to provide an additional logon (perhaps a PIN number or asked to re-enter their password) in order to access sensitive data in the system? I was recently asked this question and in my 15 years of working with SAP I can't recall ever seeing such a scenario.
An equivalent scenario which I see in my daily life is when I use my internet banking and I want to increase my daily transfer limits. When I go to this part of the site it asks me to provide a special code that they send to me via SMS.
The only thing that came to my mind was Firefighter, where you can get temporary higher level privileges but this is more in a technical support role.
Does anyone have any thoughts on this?
Thanks in advance,
SimonHello Simon,
If you are talking about web access to the system then this scenario can be implemented when SAML 2.0 is used. For a web application which provides sensitive data you can either force re-authentication with a password or require specific SAML 2.0 authentication context means authentication method, e.g. PIN. In this case even the user is authenticated with the ABAP system when he navigates to such application he will be redirected to the SAML 2.0 identity provider (IDP) to re-authenticate, either with a password or with a PIN. If you are interested in further details let me know.
http://help.sap.com/saphelp_ca_cpd102/helpdata/en/4a/b5ef3222526d6de10000000a42189c/content.htm?frameset=/en/46/631b92250b4fc1855686b4ce0f2f33/frameset.htm
Regards,
Dimitar
P.S. SAP provides SAML 2.0 compliant IDP which can easily be extended to support any authentication method using JAAS login modules: http://scn.sap.com/community/netweaver-sso/blog/2013/02/28/competitive-advantages-of-sap-identity-provider. With the next SP of NW SSO we plan to support by default also authentication with time-based one-time passwords (TOTP) - http://tools.ietf.org/html/rfc4226. -
How safe is to exchange encrypted sensitive data over unsecured network
Hi All:
We have developed a signed applet to display sensitive data. The applet communicates with Server over SSL connection. Applet is developed with SUN JDK 1.4.2_06 and uses JSSE to communicate with the Server, which is using openSSL. After we deployed the applet to end customers, we found that there exists a SocketTimeOut issue with JSSE bundled with SUN 14.2_06 JRE. We reported it to SUN and they told us that it is going to be fixed in a new release 1.4.2_11 that is going to come out by this month end.
In the mean time we are exploring different options. Just wondering whether it is safe to use thirdy party libraries such as one from BouncyCastle, RSA (RSA-BSAFE C/J),etc. to encrypt the sensitive data and exchange the same over unsecured communication channels? We are for sure want to use asymmetric keys for encryption. We are not experts in security related matters. We would like to get some valuable inputs from you.
Thanks a lot in advance....If you use public/private keys you are as safe as your private keys are. You will find this is rather slow. SSL uses the public/private keys to negotiate a one-time session key which is used symmetrically which is much quicker.
-
Body of the message appearing as attachment ?
I am sending a mail with attachment. When I open it in Microsft Outlook, the body also appears as an attachment with filename attnnnnn.txt.
I am using the following code to construct the message:
Session session = Session.getDefaultInstance(props, null);
// create a message
MimeMessage msg = new MimeMessage(session);
//setting all the addresses using InternetAddress class
//setting recipients
msg.setRecipients(Message.RecipientType.TO, toAddresses);
// create and fill the first message part
MimeBodyPart mbp1 = new MimeBodyPart();
mbp1.setText(this.text); //body of message
Multipart mp = new MimeMultipart();
//adding attachments
if (fileName != null) {
StringTokenizer tokens = new StringTokenizer(fileName,",");
while (tokens.hasMoreTokens()) {
file = tokens.nextToken();
if(file != null) {
// create the second message part
MimeBodyPart mbp2 = new MimeBodyPart();
// attach the file to the message
FileDataSource fds=new FileDataSource(file);
mbp2.setDataHandler(new DataHandler(fds));
StringTokenizer st = new StringTokenizer(file,"\\");
while (st.hasMoreTokens()){
fName = st.nextToken();
int pos = fName.lastIndexOf(".");
String ext = fName.substring(pos);
StringTokenizer st1 = new StringTokenizer(fName,".");
mbp2.setFileName(st1.nextToken()+ ext);
//adding the attachments to the multi part
mp.addBodyPart(mbp2);
// Adding the body
mp.addBodyPart(mbp1);
// add the Multipart to the message
msg.setContent(mp);
// set the Date: header
msg.setSentDate(new Date());
// send the message
Transport.send(msg);
[\code]
Any clues as to why is this happening. Sending a similar message (using the same SMTP server) from an outlook client works fine. Is there any setting in the outlook or JavaMail that needs to be set to prevent this from happening ?
TIA
AjayHi!
Add the actual body right after the line, you have created the Multipart object.
// create and fill the first message part
MimeBodyPart mbp1 = new MimeBodyPart();
mbp1.setText(this.text); //body of message
Multipart mp = new MimeMultipart();
// Adding the body
mp.addBodyPart(mbp1);
//adding attachments
//... and so on...-Raine- -
How to mask important data which will be exported?
Hi experts,
I have a request from a customer on how to mask important data, when the data are exported. and how to mask important field according to the predefined conditions?
Could you please give me some ideas how to implement them? or give me some documents?
Thank you very much.
QuentinHi Rossi,
Actually, these questions come from one client, and we do response offshore. I dont know what transactions are related for them. They just give me the questions like that. So Could you please help me ?
Quentin
Maybe you are looking for
-
The Managed Bean in the faces-config.xml File
I am still very new to JSF. I am confused about the managed bean. For example, I have a button in my web page. A click on this button invokes an action; say, ListAction.java. In this ListAction class, I instantiate a business delegate; say, ListPerso
-
IPhoto 09 updates photo's on iPhoto 08, now can't open.
Hi, I was transferring photos from my iMac which uses iPhoto 08 to my MacBook Pro which uses iPhoto 09. When I had finished and tried opening iPhoto on my iMac it now says this: +"You can't open your current photo library using this version of iPhoto
-
Still trouble with getting a free version of OS X Lion
I have still some trouble with my free version (old threat here). The Database do not recognize the serial ID of my Macbook. Next I tried to sent a copy of my sales recipt, so I am still waiting of a reaction. Does somebody know how long it takes or
-
I have tried configuring a VPN connection on my IPAD2 Wifi,,,, the settings are apparently wrong since it won't connect and I get an error stating that.... the trouble is I can't get back intop that area to change the settings everytime i ttry to t
-
WAG160N - setting as Access Point; help needed
Hi all, I have a WAG160N router currently acting as my main router and a spare Technicolor TG58n. I want to use one of them as a router extension but 1) not sure if it matters which way round, and then 2) how to do it!.. Also, if it helps/ is relevan