AS2 (Applicability Statement 2) provides an Internet solution for securely
exchanging electronic data over the internet using the http protocol. Examples
of this data are Orders, Invoices, Catalogues etc.
AS2 specifies the means to connect, de liver, validate and reply to data in a
secure and reliable way. AS2 only concerns the transport of data; it does not
concern itself with the content or format of the data (which can be any kind of
EDI, XML or other).
AS2 essentially creates a ‘wrapper’ around the data that enables sending them
over the internet. Both the sender and receiver need to have an AS2
installation, being a client or server version. Both AS2 systems perform a
‘handshake’ to ensure the reliability and integrity of the transactions. Digital
certificates are used for encryption of the messages data.
After successful receipt of the message by the partner’s AS2 server, a
Message-Disposition-Notification (MDN) is returned as confirmation of the
delivery. This MDN will be used for audit and traceability.
In most implementations, not only the message data is encrypted, but also the
encrypted https protocol is used for communication. Optionally, the AS2
application can perform hashing and add an electronic signature to the
message.
AS2 is an open standard; Inter-operability between AS2 client- or server
software of different vendors is certified by the DrummondGroup ( http://www.drummondgroup.com/ ).
Advantages of AS2
AS2 provides faster, almost instantaneous data transfers directly to your
network and reduces the points of failure in data transmissions. Using AS2
eliminates day-to-day value-added network (VAN) charges. AS2 also provides
increased reliability and speed, improving supply-chain efficiency.
Listed below are some of the advantages of using AS2:
- lower cost for the transmission of electronic business data
- advanced security features for internet based communication
- faster communication due to the ‘Push’ mechanism to the receivers’
infrastructure (a VAN is a ‘pull’ system at the receivers end)
- digital signatures can assure authentication
- non-repudiation confirming that the intended party has received the
message once and only once.
