Hi
A general defination of HTTP and HTTPS would be :
HTTP
HTTP is the protocol that a web browser such as Internet Explorer uses to request a web page from a web server.
It can be "implemented on top of any other protocol on the Internet, or on other networks. HTTP only presumes a reliable transport; any protocol that provides such guarantees can be used."
HTTPS
HTTPS is an encrypted form of HTTP used for sending sensitive data like credit card numbers between the browser and the web server. This is also sometimes called Secure HTTP or SSL (which stands for Secure Sockets Layer).
All XI runtime components using the HTTP protocol support the encryption of the HTTP data stream by means of the SSL protocol, also known as HTTPS. HTTPS data streams are completely transparent to the Exchange Infrastructure.
To enable an HTTPS connection, two steps are required:
...
1. Both parties of an HTTP connection (that is, the HTTPS client and the HTTPS server) must be technically enabled.
2. The internal XI communications and the messaging communications must be configured in XI to use these HTTP connections.
In addition, for certain adapters you can enforce HTTP security for incoming messages.
Technically Enabling SSL
Whenever a hardware or software component is to be enabled for SSL, the client and the server part of an HTTP connection have to be enabled differently. Moreover, the technical configuration for HTTPS is different for XI ABAP and J2EE components. For more information, see Transport Layer Security.
HTTPS comes in two flavors, both ensuring the confidentiality of data sent over the network
● Server authentication
Only the HTTP server identifies itself with a certificate that is to be verified by the client.
● Client authentication
Additionally, the HTTP client identifies itself with a certificate that is to be verified by the server.
Hope this clears your doubts
Thanks
Saiyog
Bluesky
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.