On distributed platforms,
ITCAM for Application Diagnostics uses
the SSL security protocol for integrity and confidentiality. You have
the option of configuring all monitoring components to utilize SSL
for communications. The following steps describe a sample HTTP-based
SSL transaction using server-side certificates:
- The client requests a secure session with the server.
- The server provides a certificate, its public key, and a list
of its ciphers to the client.
- The client uses the certificate to authenticate the server (verify
that the server is who it claims to be).
- The client picks the strongest common cipher and uses the server's
public key to encrypt a newly-generated session key.
- The server decrypts the session key with its private key.
- From this point forward, the client and server use the session
key to encrypt all messages.
The monitoring software uses the Java™ Secure
Sockets Extensions (JSSE) API to create SSL sockets in Java applications.
Note: If you performed an embedded installation of the IBM® WebSphere® Application Server with
the Managing Server,
use the IBM WebSphere Application Server default
key. For more information on IBM WebSphere Application Server default
keys, refer to the IBM WebSphere Application Server documentation.