Understanding Commonality is Key to Leveraging the Certificate Management Tool (CMT)
This post is a follow-on to the Sept. 6 post entitled SSL / TLS and the Certificate Management Tool (CMT).
You can use the Certificate Management Tool (CMT) to prepare SSL certificate data in a fashion that either a UniData or UniVerse database and any of the U2 tools can consume. When I say any of our tools, I mean Web DE 5.3.x, Connection Manager 1.2.x, and all the U2 DBTools including:
- U2 Basic Developer Toolkit
- U2 EDA Replication Config Tool
- U2 EDA Schema Manager
- U2 Extensible Administration Tool
- U2 Metadata Manager
- U2 RESTful Web Services Developer
- U2 Web Services Developer Tool
- U2 XML/DB Mapping Tool
How? All these tools have something in common, the U2 Resource View, which allows you to take full advantage of the CMT. The U2 Resource view contains an expandable tree view of all U2 servers that have been defined on your computer. You can connect to an existing server or define a new one in this view. When you expand the tree view for a U2 server, the associated U2 accounts and catalog programs are shown in the list.
Why? If you require a secure pipeline that will guarantee that your tool (aka client) is talking to the right UniData or UniVerse database (aka server) and that nothing in between these two connections is snooping, then using the CMT will save you time and simplify working with SSL certificates.
The CIA triad (Confidentiality, Integrity, Availability) plus non-repudiation is at the core of information security including securing a connection between a client and a server. The CMT is a valuable tool for ensuring the connection between a client and a server is secure per the CIA triad plus non-repudiation. Haven’t heard of the CIA triad plus non-repudiation? Here are some quick definitions.
- Confidentially insures that information is not made available or disclosed to unauthorized individuals
- Integrity insures data cannot be modified in an unauthorized or undetected manner
- Availability insures timely and reliable access to, and use of, information provided
- Non-repudiation insures ensure that a party to a contract or a communication cannot deny the authenticity
The Certificate Management Tool is a time-saver
Use the CMT to prepare the certificate files in the fashion that the U2 database or the U2 tools can consume. For example, if a certificate came from an authority, but came in the wrong format, you can use the CMT to quickly and easily get the certificate data into a usable format – for the client or for the server. You can also test the security of the connections within the tool, both on the client side and on the server side.