• Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

transport-guarantee

 
Rina Magro
Ranch Hand
Posts: 63
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi ya
can somebody please explain to me this phrase re the transport-guarantee sub-element of user-data-constraint in the DD:
"Some people recommend use of CONFIDENTIAL as latest Containers use SSL".

I cannot understand why this preferred value as recommendation in relation to SSL? Can someone explain please?
thanks loads
Rina
 
Rina Magro
Ranch Hand
Posts: 63
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
i meant preferred CONFIDENTIAL value over INTEGRAL, why?
thanks
regards
Rina
 
Michael Ku
Ranch Hand
Posts: 510
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
It is up to the container as to how it implements CONFIDENTIAL. Most containers now use SSL to implement CONFIDENTIAL
 
khushhal yadav
Ranch Hand
Posts: 242
Java Mac Ubuntu
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi Rina

i meant preferred CONFIDENTIAL value over INTEGRAL, why?


See if data is confidential, then by default it's integral too, no one can do any mischief with it as it can't be seen or accessed by others.
Confidentiality in itself incorporates both confidentiality and integrity.

On the other hand, if the data is integral, there is no gaurantee that would be integral. Though others cann't malform the data but still they can see it. Hence integrity doesn't assure cofidentiality.

So, it's preffered to have CONFIDENTIAL value over INTEGRAL value for <transport-gaurantee> element of <user-data-constraint>

Regards,
Khushhal
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic