Abstract [eng] |
Business documents protection while transferring in enterprise interoperability systems is one of major problems in this area. From interoperability systems nature interoperability servers are used not only to resend received business documents from sender to receiver, but also to perform a number of other document transformation functions. Therefore it is possible to distinguish several security problems in these systems. First of all it is a need to ensure documents integrity, confidentiality and non-repudiation on the way between server and sender or receiver. The problem is that server in this architecture has to have rights to read or modify some fields in the document, but on the other hand server itself is third party to two business partners, and some specified confidential information in business documents should not be revealed to it. The approach that ensures business documents integrity, confidentiality and non-repudiation in all his way from document sender to ultimate receiver (another client) is required. Standard safe transfer methods are not suitable for solving these problems. The purpose of this research is to create a method, which securely transfers business documents from one client to another trough interoperability system server and evaluate method performance. Enterprise interoperability systems, standard safety methods for protecting documents, data encryption algorithms, and business document types are analyzed in this work. Three programs for collecting needed data for this research designed and implemented. Diagrams from collected results are presented at the end of the work. Research results are summarized and recommendations for further method use are presented in conclusions. |