Secure SAP Mobile Platform component communications to prevent packet
sniffing or data tampering. Different combinations of components communicate with different
protocols and different ports.
End-to-end data encryption support is based on Transport Layer Security (TLS) and Secure
Sockets Layer (SSL), which
secure
client/server communication using X.509
certificates.
Communication security spans:
- Device-to-platform communications: Devices connect via a reverse
proxy.
In SAP Mobile Platform deployments, a reverse proxy is the
first line of defense to the platform, acting as a proxy for the device, and
facilitating interactions with SAP Mobile Platforms
installed on the corporate LAN.
- Server-to-device application communications:
SAP Mobile Platform only supports HTTP/HTTPS connections
from the client, and the response is sent back on the same channel. It is
recommended that HTTPS protocol be used to secure the data communicated over the
connection.
- Server to Management Cockpit Communications:
Communications between SAP Mobile Platform Server and the
Management Cockpit
use
one-way SSL authentication on port 8083 by default. While
SAP Mobile Platform installs a sample certificate to
enable the use of one way SSL authentication automatically, you should exchange
the certificate with a production-ready one immediately following installation.