Presentations

SAP Cloud for customer Security Guide

Description
SAP Cloud for customer Security Guide
Categories
Published
of 42
48
Categories
Published
All materials on our website are shared by users. If you have any questions about copyright issues, please report us to resolve them. We are always happy to assist you.
Similar Documents
Share
Transcript
  PUBLIC SAP Cloud HandbookDocument Version: 1402 - 2014-02-26 SAP Business ByDesign, SAP Cloud for Customer, and SAP Cloud for Travel and Expense Security Guide  Table of Contents 1 Document History..............................................................42 Introduction..................................................................5 2.1 About this Document.............................................................52.2 Why is Security Necessary?........................................................52.3 Document Structure.............................................................5 3 Technical System Landscape......................................................74 Security Aspects of Data, Data Flow, and Processes....................................9 4.1 Communication Channels.........................................................94.2 Business-To-Business Communication and Application Integration...........................104.2.1 Integration of SAP Cloud for Travel and Expense with Other Components................114.3 E-Mail.......................................................................15 5 User Administration and Authentication............................................17 5.1 User Management..............................................................175.2 User Types...................................................................185.3 Authentication Mechanisms.......................................................195.3.1 Logon Using SAML 2.0 Assertion for Front-End Single Sign-On (SSO)..................205.3.2 Logon Using Client Certificate (X.509)........................................205.3.3 Logon Using User ID and Password...........................................245.4 Security Policy................................................................24 6 Authorizations................................................................25 6.1 Authorization Assignment........................................................256.2 Access Restriction..............................................................256.3 Segregation of Duties...........................................................26 7 Mobile Applications............................................................27 7.1 General Information.............................................................277.2 Mobile Apps..................................................................277.3 Authorizations................................................................287.4 Secure System Access and Authentication............................................287.5 Password Change and Password Reset...............................................287.6 Special Considerations..........................................................287.7 Data Storage..................................................................297.7.1 Password Retention......................................................297.7.2 Support Log Files.......................................................297.7.3 Cache Files............................................................297.7.4 Offline Mode...........................................................30 2 PUBLIC ©  2014 SAP AG or an SAP affiliate company. All rights reserved.SAP Business ByDesign, SAP Cloud for Customer, and SAP Cloud for Travel and Expense Table of Contents  7.7.5 Local Application Data Storage..............................................30 8 Front-End Security.............................................................31 8.1 Microsoft ®  Silverlight ™ ...........................................................318.2 HTML5......................................................................31 9 Security of Data Storage and Data Centers..........................................33 9.1 Asset Protection and Data Integrity..................................................339.2 Power Backup and Redundancy....................................................339.3 Restricted Physical Access........................................................339.4 Communication Security.........................................................339.5 Network Security...............................................................34 10 Security for Additional Applications...............................................3511 Other Security-Relevant Information..............................................36 11.1 Service Composition Security......................................................3611.1.1 URL Mashup Integration...................................................3611.1.2 HTML Mashup Integration.................................................3611.1.3 Map Mashup Integration...................................................3711.1.4 Data Mashups..........................................................3711.2 Internal and External Audits.......................................................3811.2.1 Security Management and Continual Improvement of Security.......................39 12 Security-Relevant Logging and Tracing.............................................40 12.1 Data Privacy..................................................................4012.2 Security-Relevant Reports........................................................40 SAP Business ByDesign, SAP Cloud for Customer, and SAP Cloud for Travel and Expense Table of Contents PUBLIC ©  2014 SAP AG or an SAP affiliate company. All rights reserved. 3  1 Document History Table 1: VersionDateChange 1.02013-11-20Initial version for SAP Business ByDesign, SAP Cloud for Customer, and SAP Cloud for Travel and Expense November 20131.12013-11-28The following chapters have been updated: ● Business-to-Business Communication and Application Integration ● Logon Using Client Certificate (X.509) 4 PUBLIC ©  2014 SAP AG or an SAP affiliate company. All rights reserved.SAP Business ByDesign, SAP Cloud for Customer, and SAP Cloud for Travel and Expense Document History
We Need Your Support
Thank you for visiting our website and your interest in our free products and services. We are nonprofit website to share and download documents. To the running of this website, we need your help to support us.

Thanks to everyone for your continued support.

No, Thanks
SAVE OUR EARTH

We need your sign to support Project to invent "SMART AND CONTROLLABLE REFLECTIVE BALLOONS" to cover the Sun and Save Our Earth.

More details...

Sign Now!

We are very appreciated for your Prompt Action!

x