Skip to main content

19 docs tagged with "Security"

Protect your data and applications with comprehensive security solutions.

View all tags

Authentication with SAP Cloud Identity Services

Identity Access Management > Authentication and Single Sign On

This reference architecture describes the authentication flows for SAP SaaS via the SAP Cloud Identity Services - Identity Authentication.

Cost of Ownership

Multitenant SaaS Application using CAP > Cost of Ownership

Explore strategies to optimize the total cost of ownership for multitenant SAP applications, covering platform, maintenance, and resource allocation costs.

Decentralized Identity Verification

Decentralized Identity Verification

Decentralized Identity Verification (DIV) is a multi-tenant SAP BTP service that enables enterprise applications to use Self-Sovereign Identity (SSI) for secure, privacy-preserving inter-company communications.

DIV – Bring Your Own Wallet

Decentralized Identity Verification > Bring Your Own Wallet

Bring Your Own Wallet (BYOW) describes the provisioning model in which a dataspace member self-provisions SAP DIV on SAP BTP instead of receiving a wallet from the Operating Company. The operator still issues the membership credential, which is pushed to the member-hosted DIV wallet.

DIV – Product Carbon Footprint Use Case

Decentralized Identity Verification > Product Carbon Footprint Use Case

This reference architecture describes how SAP Decentralized Identity Verification (DIV) enables secure, privacy-preserving exchange of Product Carbon Footprint (PCF) data between supply chain partners using Self-Sovereign Identity and Verifiable Credentials, with each member provisioning their own DIV wallet (Bring Your Own Wallet).

DIV – Verifiable Credential Issuance and Verification

Decentralized Identity Verification > VC Issuance and Verification

This reference architecture describes how SAP Decentralized Identity Verification (DIV) issues, signs, and verifies W3C Verifiable Credentials and Verifiable Presentations on SAP BTP.

Identity and Access Management for SAP Joule

Integrating and Extending Joule > Joule and IAM

This reference architecture describes the IAM related flows for SAP Joule with SAP Build Work Zone and via the SAP Cloud Identity Services.

Secure Service Consumption Across Hyperscalers

Secure Service Consumption Across Hyperscalers

This architecture outlines a cloud-agnostic approach for securely consuming services offered by hyperscalers from applications running outside their environments.

Secure Service Consumption on AWS

Secure Service Consumption Across Hyperscalers > Secure Service Consumption on AWS

Securely access AWS services from external applications using robust identity and access management strategies.

Secure Service Consumption on GCP

Secure Service Consumption Across Hyperscalers > Secure Service Consumption on GCP

Configure secure, keyless access to GCP resources using OIDC-based Workload Identity Federation. Workloads authenticate without storing service account keys.

Security

Architecting Multi-Region Resiliency > Security

Security is crucial for enterprise applications and in the multi-region scenario, the security setup varies from service to service.

Third-Party MCP Access to SAP Solutions

Agentic AI & AI Agents > Third-Party MCP Access

Guidance on accessing SAP solutions via third-party MCP servers, covering governance guardrails, OWASP MCP Top 10 risks, and SAP's recommended managed MCP approach via SAP Integration Suite and Joule Studio.

Unifying Access Across SAP BDC with SAP Cloud Identity Services

Transforming Enterprise Data Strategy with SAP Business Data Cloud > Unifying Access Across SAP BDC with SAP Cloud Identity Services

Unifying Access Across for SAP Business Data Cloud using SAP Cloud Identity Services: IAS for SSO (SAML/OIDC) and IPS for SCIM provisioning. Includes scenarios with/without Enterprise IdP, lifecycle, authorization mapping, and operations.