Click here to view and discuss this page in DocCommentXchange. In the future, you will be sent there automatically.

SQL Anywhere 10.0.1 » QAnywhere » Writing Secure Messaging Applications

Encrypting the client message store Next Page

Encrypting the communication stream


The qaagent -x option can be used to specify a secure communication stream that the QAnywhere Agent can use to communicate with a MobiLink server. It allows you to implement server authentication using server-side certificates, and it allows you to encrypt the communication stream using strong encryption.

See -x option.

You must set up transport-layer security for the MobiLink server as well. For information about creating digital certificates and setting up the MobiLink server, see Encrypting MobiLink client/server communications.

Separately licensed component required

ECC encryption and FIPS-certified encryption require a separate license. All strong encryption technologies are subject to export regulations.

See Separately licensed components.

Examples

The following examples show how to establish a secure communication stream between the QAnywhere Agent and the MobiLink server. They use sample certificates that are installed when the SQL Anywhere security option is installed.

Secure TCP/IP using RSA:

mlsrv10 -x tls(tls_type=rsa;certificate=rsaserver.crt;certificate_password=test)
qaagent -x tls(tls_type=rsa;trusted_certificates=rsaroot.crt)

Secure TCP/IP using ECC:

mlsrv10 -x tls(tls_type=ecc;certificate=sample.crt;certificate_password=tJ1#m6+W)
qaagent -x tls(tls_type=ecc;trusted_certificates=eccroot.crt)

Secure HTTP using HTTPS (only RSA certificates are supported for HTTPS):

mlsrv10 -x https(certificate=rsaserver.crt;certificate_password=test)
qaagent -x https(trusted_certificates=rsaroot.crt)