🚩 Self-Signed Certificates Made Secure: Minimum Parameters for a secure AS2 cert

AS2 is one of the most secure ways to transmit EDI data. AS2 certificates plays a central role in encryption and signing thereby ensuring data is kept secure during AS2 transmissions. You can either use certificate generated by Boomi or a certificate issued by a certificate authority.

Boomi certificate component provides a convenient option to generate a self-signed certificate.

It is important that the certificates are created with right parameters so that they are considered more secure by current standards and for AS2 setup to properly work.

Below is an excerpt from Walmart EDI Self-Service Onboarding guide for AS2 X.509 certificate. Ensure to generate a certificate with the below minimum parameters

✅RSA Encryption Key (Key Length): Minimum 2048-bit key

✅Signature Algorithm: Minimum SHA256 key, sometimes called SHA2

✅Expiration Date (Validity): Less than 8 years, with 2 years preferred

Boomi “Generate Private Key” defaults “SHA-512” for Signature Algorithm, “2048” for Key Length and “365” for Validity (in days)