AS2 or FTP: What s Best for Your Company. John Radko, Chief Technology Strategist, GXS Rochelle Cohen, Sr. Product Marketing Manager, GXS

Transcription

1 AS2 or : What s Best for Your Company John Radko, Chief Technology Strategist, GXS Rochelle Cohen, Sr. Product Marketing Manager, GXS

2 Family Feud: AS2 Versus the Clan Selecting the Right Option for Your B2B Needs May 19, 2011 Slide GXS, Inc.

3 Agenda AS2 vs Review of basics How do they work? How to choose the best one? John Radko GXS Solutions for Connectivity Options available Additional services Rochelle Cohen Q&A May 19, 2011 Slide GXS, Inc.

4 What Is a Protocol? Client?? Channel? To illustrate the basics of a communication protocol, let s buy some furniture May 19, 2011 Slide GXS, Inc.

5 IKEA Protocol for Furniture Transfer Client May 19, 2011 Slide GXS, Inc.

6 IKEA Protocol for Furniture Transfer Client May 19, 2011 Slide GXS, Inc.

7 IKEA Protocol for Furniture Transfer Channel Client May 19, 2011 Slide GXS, Inc.

8 IKEA Protocol for Furniture Transfer Channel Synchronous Request/Response (you go to the store, find it, put it on a cart, buy it, and drive it home.) Client May 19, 2011 Slide GXS, Inc.

9 N.C. Furniture Protocol Client May 19, 2011 Slide GXS, Inc.

10 N.C. Furniture Protocol Client May 19, 2011 Slide GXS, Inc.

11 N.C. Furniture Protocol Channel Request Client May 19, 2011 Slide GXS, Inc.

12 N.C. Furniture Protocol Channel Request Response Client May 19, 2011 Slide GXS, Inc.

13 Understanding a Comms Protocol Clients are requesting data (in the B2B scenario) or services s are providing the data or services The Channel is how the request and data move (may be combined or discrete) Client/ is a role a given system may be both depending on the situation (AS2) May 19, 2011 Slide GXS, Inc.

14 Looking at the Protocol Families May 19, 2011 Slide GXS, Inc.

15 A Shared Family Tree Internet Protocol (IP) May 19, 2011 Slide GXS, Inc.

16 A Shared Family Tree Transport Control Protocol (TCP) (UDP) Internet Protocol (IP) May 19, 2011 Slide GXS, Inc.

17 A Shared Family Tree TCP/IP Transport Control Protocol (TCP) Internet Protocol (IP) (UDP) May 19, 2011 Slide GXS, Inc.

18 A Shared Family Tree File Transfer Protocol () Hyper-text Transfer Protocol (HTTP) TCP/IP Transport Control Protocol (TCP) Internet Protocol (IP) (UDP) May 19, 2011 Slide GXS, Inc.

19 A Shared Family Tree Secure or - SSL (S) File Transfer Protocol () HTTP over SSL (HTTPS) Hyper-text Transfer Protocol (HTTP) TCP/IP Transport Control Protocol (TCP) Internet Protocol (IP) (UDP) May 19, 2011 Slide GXS, Inc.

20 A Shared Family Tree Applicability Statement 3 (AS3) Secure or - SSL (S) File Transfer Protocol () Applicability Statement 2 (AS2) HTTP over SSL (HTTPS) Hyper-text Transfer Protocol (HTTP) TCP/IP Transport Control Protocol (TCP) Internet Protocol (IP) (UDP) May 19, 2011 Slide GXS, Inc.

21 A Shared Family Tree Applicability Statement 3 (AS3) Secure or - SSL (S) File Transfer Protocol () Applicability Statement 2 (AS2) HTTP over SSL (HTTPS) Hyper-text Transfer Protocol (HTTP) TCP/IP Transport Control Protocol (TCP) Internet Protocol (IP) (UDP) May 19, 2011 Slide GXS, Inc.

22 A Shared Family Tree Applicability Statement 3 (AS3) Secure or - SSL (S) File Transfer Protocol () Applicability Statement 2 (AS2) HTTP over SSL (HTTPS) Hyper-text Transfer Protocol (HTTP) TCP/IP Transport Control Protocol (TCP) Internet Protocol (IP) (UDP) May 19, 2011 Slide GXS, Inc.

23 A Shared Family Tree Applicability Statement 3 (AS3) Secure or - SSL (S)* File Transfer Protocol () Applicability Statement 2 (AS2) HTTP over SSL (HTTPS) Hyper-text Transfer Protocol (HTTP) TCP/IP Transport Control Protocol (TCP) Internet Protocol (IP) (UDP) May 19, 2011 Slide GXS, Inc.

24 The Extended Family EDIINT AS3 AS2 AS4 AS1 SOAP S HTTPS S HTTP SMTP SSH The Internet Transport Control Protocol (TCP) Internet Protocol (IP) May 19, 2011 Slide GXS, Inc.

25 How Works (Active Mode) Random port above 1023 Port 21 Client Command Channel May 19, 2011 Slide GXS, Inc.

26 How Works (Active Mode) Random port above 1023 Port 21 Client Command Channel Data Channel Random port +1 (1024) Port 20 May 19, 2011 Slide GXS, Inc.

27 How Works (Active Mode) Challenge Random port above 1023 Port 21 Client Command Channel Data Channel Firewall that HATES inbound connections Port 20 May 19, 2011 Slide GXS, Inc.

28 How Works (Passive Mode) Random port above 1023 Port 21 Client Command Channel May 19, 2011 Slide GXS, Inc.

29 How Works (Passive Mode) Random port above 1023 Port 21 Client Command Channel opens a port in the firewall for the client to use for data (>1023) May 19, 2011 Slide GXS, Inc.

30 How Works (Passive Mode) Random port above 1023 Port 21 Client Command Channel Data Channel Random port +1 (1024) opens a port in the firewall for the client to use for data (>1023) May 19, 2011 Slide GXS, Inc.

31 How Works (Passive Mode) Challenge Random port above 1023 Port 21 Client Command Channel Data Channel Random port +1 (1024) Network Admin that HATES inbound connections May 19, 2011 Slide GXS, Inc.

32 Securing VPN Creates a secure tunnel Can be used with any protocol, not just Some standards (especially server-to-server), but may require client install S 2 types Explicit Implicit Uses TLS/SSL to encrypt one or both channels May 19, 2011 Slide GXS, Inc.

33 Virtual Private Network (VPN) Client VPN Software VPN VPN Software May 19, 2011 Slide GXS, Inc.

34 Virtual Private Network (VPN) Client VPN Software Command Channel VPN VPN Software May 19, 2011 Slide GXS, Inc.

35 Virtual Private Network (VPN) Client VPN Software Command Channel VPN Data Channel VPN Software May 19, 2011 Slide GXS, Inc.

36 Explicit S Client Command Channel Data Channel May 19, 2011 Slide GXS, Inc.

37 Explicit S AUTH SSL Client Command Channel Data Channel May 19, 2011 Slide GXS, Inc.

38 Explicit S AUTH SSL Client Command Channel Data Channel May 19, 2011 Slide GXS, Inc.

39 Explicit S AUTH SSL Client Command Channel Data Channel Explicit S is usually used so that non S clients can still connect. May 19, 2011 Slide GXS, Inc.

40 Explicit S AUTH SSL Client Command Channel Data Channel Explicit S is usually used so that non S clients can still connect. May 19, 2011 Slide GXS, Inc.

41 Implicit S Client Command Channel May 19, 2011 Slide GXS, Inc.

42 Implicit S Client Command Channel Data Channel May 19, 2011 Slide GXS, Inc.

43 Implicit S Client Command Channel Data Channel Implicit S always uses secured channels, but the software must support it to connect. May 19, 2011 Slide GXS, Inc.

44 AS2 Provides Value-Added Capabilities Security Data is encrypted and signed Data is secured at all points Digital signatures allow non-repudiation Message Management Usage of receipts (called MDNs) Defined service levels Interoperability Extensive interoperability testing Certification by Drummond assures products work together May 19, 2011 Slide GXS, Inc.

45 How Does AS2 Work? Partner A Sender Receiver Partner B Public Internet or Other TCP/IP Network May 19, 2011 Slide GXS, Inc.

46 How Does AS2 Work? Partner A Sender Sign Receiver Partner B Public Internet or Other TCP/IP Network May 19, 2011 Slide GXS, Inc.

47 How Does AS2 Work? Partner A Sender Sign Encrypt Receiver Partner B Public Internet or Other TCP/IP Network May 19, 2011 Slide GXS, Inc.

48 How Does AS2 Work? Partner A Sender Sign Encrypt Send Receiver Receive Partner B Public Internet or Other TCP/IP Network HTTP May 19, 2011 Slide GXS, Inc.

49 How Does AS2 Work? Partner A Sender Sign Encrypt Send Receiver Receive Decrypt Partner B Public Internet or Other TCP/IP Network HTTP May 19, 2011 Slide GXS, Inc.

50 How Does AS2 Work? Partner A Sender Sign Encrypt Send Receiver Receive Decrypt Verify Signature Partner B PARTNER A Public Internet or Other TCP/IP Network HTTP May 19, 2011 Slide GXS, Inc.

51 How Does AS2 Work? Partner A Sender Sign Encrypt Send Receiver Receive Decrypt Verify Signature Send MDN Partner B MDN PARTNER A Public Internet or Other TCP/IP Network HTTP May 19, 2011 Slide GXS, Inc.

52 How Does AS2 Work? Partner A Sender Sign Encrypt Send Verify MDN Receiver Receive Decrypt Verify Signature Send MDN Partner B MDN PARTNER A Public Internet or Other TCP/IP Network HTTP May 19, 2011 Slide GXS, Inc.

53 A Quick Comparison Plus AS2 Ready for Business Purposely built for B2B Interoperable security Interoperable non-repudiation Built-in business grade transaction management Proxy/firewall friendly Interoperability testing process Widely adopted in many communities (opt) Re-start I m Already Here Ubiquitous, on basically every computer Widely used in almost every community Vast amounts of experience Nearly instant setup Low administrative overhead* S Privacy Included Channel encryption Low administrative overhead Relatively simple May 19, 2011 Slide GXS, Inc.

54 A Quick Comparison Minus AS2 Specialist Requires special software Certificate administration Higher processing overhead (for encryption and digital signature) More keys/ids to manage Master of None What security? No standard guaranteed delivery No interoperability testing No standardised document tracking Requires two network connections Can be difficult (or impossible) to traverse some networks (NAT) S All the minuses of Not as ubiquitous as May 19, 2011 Slide GXS, Inc.

55 And the Winner Is Applicability Statement 2 (AS2) May 19, 2011 Slide GXS, Inc.

56 A Hybrid Community to Mediate Protocols Partners using same protocol Partners that use a different protocol or AS2 Gateway May 19, 2011 Slide GXS, Inc.

57 GXS Communications Portfolio May 19, 2011 Slide GXS, Inc.

58 Your B2B Communications Decisions Sending Company Receiving Company EDI Translator EDI Translator EDI Data Service Provider EDI Data Communications Software Which protocol? How to connect? Communications Software May 19, 2011 Slide GXS, Inc.

59 AS2 and /VPN Most Popular Protocols for New GXS Clients Protocols Selected by New GXS Clients % 40% 35% 30% 25% 20% 15% 10% 5% 0% AS2 /VPN S S Other May 19, 2011 Slide GXS, Inc.

60 Global, Flexible Connectivity Options Enabling Businesses to Make Technology Decisions Independent of Their Partners VAN Interconnect Private IP Networks (e.g., ANX, ENX) Frame Relay Web Forms EDI-to-Fax Legacy Protocols Async / Bisync & SNA Other Services Internet Protocols /VPN, S/ and /S X.25 SOAP & HTTPS X400 AS1, AS2, AS3 MQ Series O, O2 May 19, 2011 Slide GXS, Inc.

61 Full Portfolio of AS2 Options on GXS Trading Grid AS2 Internet Trading Partners Your Company AS2 Direct Trading Partners Additional AS2 Services: AS2 Contingency Back-up access if your AS2 server goes down AS2 Outsourcing Comply with AS2 mandates without adding infrastructure, expense, & expertise Real-time, efficient communications with your entire community One implementation with GXS, GXS manages community All the value-added transaction management services Leverages AS2 software already in place Reduce risk of failed connectivity May 19, 2011 Slide GXS, Inc.

62 Full Portfolio of Secure Solutions Your Company Secure Internet Trading Partners Multiple options: over VPN S (SSH ) S (/SSL) Easy to implement Standards based Wide range of client software support Multiple security options May 19, 2011 Slide GXS, Inc.

63 GXS BizManager Software Behind-the-Firewall Connectivity Software for Every Type of User BizManager BizLink unlimited connections Windows, Red Hat and SUSE Linux, Solaris, AIX, HP-UX Functionality BizManager400 unlimited connections AS400 BizManager BizConnect Up to 25 connections Community Size Windows, Red Hat and SUSE Linux May 19, 2011 Slide GXS, Inc.

64 GXS Internet Connectivity Solutions for Each Business Scenario B2B Program Outsourcing Connectivity to GXS Trading Grid Software May 19, 2011 Slide GXS, Inc.

65 And More GXS is the Largest Integration Cloud for B2B May 19, 2011 Slide GXS, Inc.

66 Thank You for Your Participation! For More Information May 19, 2011 Slide GXS, Inc.