NonStop Servlets for JavaServer Pages (NSJSP) 6.1 System Administrator's Guide
Security Considerations
NonStop Servlets for JavaServer Pages (NSJSP) 6.1 System Administrator’s Guide—596210-006
8-2
Establishing a Secure Link
This chapter also discusses how security can be implemented in Web applications
(Admin Web, Manager Web, and NSJSP Manager Web applications) that are used for
administration and monitoring purposes. For more information on securing these Web
applications, see Manager Web Application and NSJSP Manager Security on
page 8-41.
Figure 8-1 illustrates the security considerations discussed in this section.
Establishing a Secure Link
A secure link is required between the web browser and the web server to ensure that a
secure channel is created for information exchange and to ensure protection against
eavesdropping.
Secure Sockets Layer (SSL) is a protocol that is used to establish a secure and
encrypted link between two nodes in a network so that data passed between the nodes
is secure. In HP NonStop servers, the SSL standard is implemented by the iTP Secure
WebServer. For information on how to configure iTP Secure WebServer for secure
transport using SSL, see the iTP Secure Webserver System Administrator’s Guide.
You need not perform any additional configuration tasks in NSJSP to enable NSJSP to
handle secure requests. The iTP Secure WebServer acts as the front-end WebServer
for NSJSP. NSJSP does not handle the SSL protocol but obtains sufficient information
from the iTP Secure WebServer about the request delivered over the SSL protocol.
The request can contain certificates (public key certificates) that NSJSP can use to
authenticate. For example, based on the web application configuration, NSJSP can
authenticate the user using the X.509 certificate that is delivered over the secure link.
Figure 8-1. Flow of User Request
hp.com
internal.hp.com
iTPSecure
WebServer
HTTP
Requests
Hostforinternal.hp.com
Hostforhp.com
NSJSPServletContainer
Userapplications runningonthehos t
iTPSecureWebServerEnvironment