In certain communication scenarios between two parties, you may need an encryption mechanism for outbound messages, as well as a decryption mechanism for the inbound messages. Information in messages can be of a sensitive nature or bound to privacy law. This can be data such as social security numbers, bank account numbers, addresses, phone numbers, and so on. The BizTalk Server offers encryption capabilities using certificates. These certificates contain cryptographic key pairs consisting of a public and a private key. The owner of a certificate, for instance BizTalk, can share the public key with communication partner(s). These partners use that public key to encrypt their messages. As the message can only be decrypted with the corresponding private key, the partner(s) are certain that the message can only be decrypted by the owner of the certificate. This means that the private key has to be kept secure and should be protected by the owner.
BizTalk can...