Hey Andy,
I'm not a hard core security guy, so the "DSA" name itself doesn't mean a whole lot.
Is it clear to you that to avoid POODLE AKA CVE-2014-3566 then you must update your CryptoLib using SAP note 2067859? Then essentialy rebuild all your PSE's (basically what note 2068693 is saying?)
I ask because our Firewall team decided to "block" all SSLv3 certificate exchanges and one of the things we do in SAP from our end, is call a credit reporting agency via RFC type G. But doing that, we use an "anonymous" cert, see my post: http://scn.sap.com/thread/3637765
Once they blocked SSLv3 cert exchanges, we were screwed.
My firewall folks are telling me to "get off" SSLv3, so as a basis guy, I want to play nice. So I was wondering how we do that in SAP..I mean start using TLS?
Hope that was clear. Thanks for starting this discussion
NICK