WebSphere brand IBM WebSphere Telecom Web Services Server, Version 7.1

Configuring encryption

If you configured the Parlay Connector to use encryption during authentication or while signing service agreements, you must also configure the data needed for the configured encryption processing. The data includes encryption keys.

Before you begin
If the Parlay gateway requires that different key sets be used, you need custom software either for authentication or for signing service agreements. Configure the additional keys as custom parameters for the customized software.
About this task
Complete these steps to configure the Parlay Connector for encryption:
  1. Log in to the Integrated Solutions Console:
    1. Open a browser and navigate to the following URL: https://host_name:port/ibm/console.
      Where:
      • host_name is the fully qualified host name of the server where the application or the network deployment manager is deployed.
      • port is the secured port used to access the console. The default port is 9043.
      Note: The default unsecured port is 9060. If you use 9060, you must have "http" instead of "https" in the URL.
    2. Enter an administrator user ID and password. (Omit the password if security is not enabled.)
    3. Click Log in.
  2. In the navigation pane, expand TWSS Parlay Administration.
  3. Click Telecom Server to display the list of deployed telecom applications.
  4. Click the name of the application you want to configure, for example Parlay Connector.
  5. Click Parlay Connector.
  6. Click the name of an active configuration.
  7. In the Additional Properties section, click Encryption. Because encryption keys are confidential, you cannot see the data that you enter in some fields.
  8. Type a value in each field for which you want to define an encryption key for the Parlay Connector.
    none
    No encryption.
    DES/56 key
    The key to use for 56-bit Data Encryption Standard (DES) encryption. A string of 16 hexadecimal digits. If not specified, the Parlay Connector does not support 56-bit DES encryption.
    TripleDES (DES/128) key
    The key to use for 168-bit Triple Data Encryption Standard (Triple DES) encryption. A string of 48 hexadecimal digits. If not specified, the Parlay Connector does not support Triple DES encryption.
    Connector RSA/512 private key
    The private key to use for 512-bit Rivest, Shamir, and Adleman (RSA) encryption. Two strings of hexadecimal digits–the key modulus and the key exponent–separated by the pound sign (#). Might be used during authentication processing and for signing service agreements. The value of this key is known by the Parlay Connector, but not by the Parlay gateway.
    Connector RSA/512 public key
    The public key to use for 512-bit RSA encryption. Two strings of hexadecimal digits–the key modulus and the key exponent–separated by the pound sign (#). Might be used during authentication processing and for signing service agreements. The value of this key is known by the Parlay gateway.
    Connector RSA/1024 private key
    The private key to use for 1024-bit RSA encryption. Two strings of hexadecimal digits–the key modulus and the key exponent–separated by the pound sign (#). Might be used during authentication processing and for signing service agreements. The value of this key is known by the Parlay Connector, but not by the Parlay gateway.
    Connector RSA/1024 public key
    The public key to use for 1024-bit RSA algorithm with 1024-bit keys. Two strings of hexadecimal digits–the key modulus and the key exponent–separated by the pound sign (#). Might be used during authentication processing and for signing service agreements. The value of this key is known by the Parlay gateway.
    Gateway RSA/512 public key
    The Parlay gateway's public key to use for 512-bit RSA encryption. Two strings of hexadecimal digits–the key modulus and the key exponent–separated by the pound sign (#). Might be used during authentication processing and for signing service agreements. The value of this key is known by the Parlay gateway. Use this field to configure the Parlay gateway public key if it is not given to you in a security certificate.
    Gateway RSA/512 security certificate
    The certificate containing the Parlay gateway's public key to use for 512-bit RSA encryption. Two strings of hexadecimal digits–the key modulus and the key exponent–separated by the pound sign (#). Might be used during authentication processing and for signing service agreements. Use this field to configure the Parlay gateway RSA/512 public key if it is given to you in this form.
    Gateway RSA/1024 public key
    The Parlay gateway's public key to use for 1024-bit RSA encryption. Two strings of hexadecimal digits–the key modulus and the key exponent–separated by the pound sign (#). Might be used during authentication processing and for signing service agreements. The value of this key is known by the Parlay gateway. Use this field to configure the Parlay gateway public key if it is not given to you in a security certificate.
    Gateway RSA/1024 security certificate
    The certificate containing the Parlay gateway's public key to use for 1024-bit RSA encryption. . Two strings of hexadecimal digits–the key modulus and the key exponent–separated by the pound sign (#). Might be used during authentication processing and for signing service agreements. Use this field to configure the Parlay gateway RSA/1024 public key if it is given to you in this form.
    Gateway 'no encryption' constant
    The string used by the Parlay gateway to specify that no encryption will be used. Use this field if the Parlay gateway does not recognize the empty string.
    Shared secret
    A shared secret known to both the Parlay Connector and the Parlay gateway.
    Secret keys:
    • OSA_HMAC_SHA1_96 - The secret key that is shared by the Parlay Connector and the Parlay gateway, which will be hashed using OSA_HMAC_SHA1_96. A string that is used during the start of the authentication in Parlay 4.x. (OAS treats this as a hexadecimal string and Lucent treats it as a text string.)
    • OSA_HMAC_MD5_96 - The secret key that is shared by the connector and the gateway, which will be hashed using OSA_HMAC_MD5_96. A string that is used during the start of the authentication in Parlay 4.x. (OAS treats this as a hexadecimal string and Lucent treats it as a text string.)
    Private key:
    • SHA1_DSA - The private key used by the Parlay Connector to decrypt the service agreement signed by the Parlay gateway, using the P_SHA1_DSA algorithm. A string with four parts, separated by pound signs (#).
    Public key:
    • SHA1_DSA - The public key used by the Parlay Connector to encrypt the service agreement sent to the Parlay gateway, using the P_SHA1_DSA algorithm. A string with four parts, separated by pound signs (#).
  9. Click OK to save your changes.



Terms of use
(C) Copyright IBM Corporation 2009. All Rights Reserved.