top of page
Writer's pictureAlex James

Self-Signed Certificates Made Secure: Minimum Parameters for a secure AS2 cert

Updated: Mar 1

🚩 Self-Signed Certificates Made Secure: Minimum Parameters for a secure AS2 cert


AS2 is one of the most secure ways to transmit EDI data. AS2 certificates plays a central role in encryption and signing thereby ensuring data is kept secure during AS2 transmissions. You can either use certificate generated by Boomi or a certificate issued by a certificate authority.


Boomi certificate component provides a convenient option to generate a self-signed certificate.


It is important that the certificates are created with right parameters so that they are considered more secure by current standards and for AS2 setup to properly work.


Below is an excerpt from Walmart EDI Self-Service Onboarding guide for AS2 X.509 certificate. Ensure to generate a certificate with the below minimum parameters


RSA Encryption Key (Key Length): Minimum 2048-bit key

Signature Algorithm: Minimum SHA256 key, sometimes called SHA2

Expiration Date (Validity): Less than 8 years, with 2 years preferred


Boomi “Generate Private Key” defaults “SHA-512” for Signature Algorithm, “2048” for Key Length and “365” for Validity (in days)

92 views0 comments

Comments


bottom of page