Skip to main content

SSL Encryption on transmissions between AcuThin Client and AcuRCL server

  • August 3, 2011
  • 3 replies
  • 0 views
D

[Migrated content. Thread originally posted on 02 August 2011]

According to Acucobol support the built in encryption in the Acuthin client is very low. It does not get close to meeting the retail industry's PCI DSS standard. Does anyone have an idea how to make the data transmissions between Acuthin client and AcuRCL server SSL encrypted?

    3 replies

    Stephen Hjerpe
    • Stephen Hjerpe
    • Participating Frequently
    • 1100 replies
    • August 3, 2011

    [Migrated content. Thread originally posted on 02 August 2011]

    According to Acucobol support the built in encryption in the Acuthin client is very low. It does not get close to meeting the retail industry's PCI DSS standard. Does anyone have an idea how to make the data transmissions between Acuthin client and AcuRCL server SSL encrypted?
    Thin client has AES 128 bit encryption and you can take it further by making your own seed - Chapter 3: Server Configuration > 3.4 Creating a Runtime Configuration File for the Remote Server Component >
    ENCRYPTION_SEED

    Thin client, the runtime and / or AcuConnect do not provide SSL. As Acu is shipped worldwide there are many import / export regulations surrounding SSL in software.

    If you need SSL you could either use COBOL as a web service (Xcentricity Business Information Services for extend) and in that case the web client and server can communicate via SSL, or you could lok to use a third party library that provides SSL.

    I hope this helps.
    D
    • Dominique SacreRocketeer
    • Author
    • Rocketeer
    • 19312 replies
    • September 8, 2011

    [Migrated content. Thread originally posted on 02 August 2011]

    According to Acucobol support the built in encryption in the Acuthin client is very low. It does not get close to meeting the retail industry's PCI DSS standard. Does anyone have an idea how to make the data transmissions between Acuthin client and AcuRCL server SSL encrypted?
    Just so I'm clear. Ignoring SSL, the thin_client_encrypt does encrypt all traffic from acuthin to acurcl on the server with AES 128bit? I wasn't sure reading the documentation if it applied to all traffic or just sockets we create.

    D
    • Dominique SacreRocketeer
    • Author
    • Rocketeer
    • 19312 replies
    • September 8, 2011

    [Migrated content. Thread originally posted on 02 August 2011]

    According to Acucobol support the built in encryption in the Acuthin client is very low. It does not get close to meeting the retail industry's PCI DSS standard. Does anyone have an idea how to make the data transmissions between Acuthin client and AcuRCL server SSL encrypted?
    Just so I'm clear. Ignoring SSL, the thin_client_encrypt does encrypt all traffic from acuthin to acurcl on the server with AES 128bit? I wasn't sure reading the documentation if it applied to all traffic or just sockets we create.


    Terms & ConditionsAccessibility statement