EVERYTHING YOU SHOULD KNOW ABOUT EDI AND AS2

AS2 is one of the most trusted methods for B2B document exchange via the internet — and in retail supply chains, it is essentially the standard rather than an option. Walmart's requirement that all EDI trading partners use AS2 created a cascade effect that made AS2 the dominant protocol across the retail sector. Understanding what AS2 is, how it works, and how it compares to VAN-based EDI is foundational knowledge for any business managing supplier or retailer relationships that involve electronic document exchange.

What AS2 is — its origin and how it differs from AS1

• Client/server architecture over TCP/IP: AS2 requires both trading partners to be online simultaneously — the sender connects directly to the receiver's AS2 endpoint and transmits the document in real time, rather than depositing it in a mailbox for later retrieval. This real-time connection is what enables the immediate delivery confirmation (Message Disposition Notification, or MDN) that makes AS2 transactions verifiable and non-repudiable.
• S/MIME digital certificates for encryption and identity verification: Every AS2 transaction is encrypted using the receiving party's digital certificate (so only the intended recipient can decrypt it) and digitally signed using the sender's certificate (so the recipient can verify who sent it). This dual-verification mechanism is what makes AS2 suitable for sensitive retail and healthcare EDI compliance requirements.
• Retail standard driven by Walmart: Walmart's requirement that all trading partners use AS2 created the retail-wide adoption that makes AS2 effectively mandatory for suppliers to major retailers. The healthcare industry followed independently because AS2's security characteristics satisfy HIPAA requirements at a lower cost than proprietary secure networks.

The AS2 transaction process — step by step

• 1The sender's billing or ERP system creates the business document — a purchase order, invoice, ASN, or other EDI transaction type.
• 2The sender's AS2 software translates the original document into the AS2-compatible EDI format required by the trading partner.
• 3The AS2 software encrypts the document using the receiver's digital certificate, applies the sender's digital signature, and transmits via the internet to the receiver's AS2 endpoint.
• 4The receiver's AS2 software receives the document, decrypts it using their private key, verifies the sender's digital signature to confirm the source, and translates the document into the format their internal systems require.
• 5The receiver's AS2 software sends an MDN (Message Disposition Notification) acknowledgment back to the sender — confirming receipt and completing the verifiable transaction record.

The advantages of AS2 for EDI — and how it relates to VAN-based exchange

• Real-time delivery with verified confirmation: AS2 transmits documents directly between trading partners in real time and receives a verifiable delivery confirmation — rather than depositing to a mailbox and checking for retrieval. This makes AS2 appropriate for time-sensitive compliance windows like Target's 30-minute 855 acknowledgment requirement.
• Strong security appropriate for retail and healthcare compliance: The S/MIME encryption and digital signature combination in AS2 satisfies the security requirements of major retail compliance programs and HIPAA — making it the protocol of choice for trading relationships where data security is a documented compliance requirement.
• VAN and AS2 can work together: According to BOLD VAN, companies increasingly use AS2 via an EDI VAN to combine the benefits of both approaches — the speed and direct delivery of AS2 alongside the monitoring, protocol translation, and backup connectivity that a VAN provides. BOLD VAN's trading partner pricing covers both AS2 and VAN-based exchange under the same predictable flat rate.

How to get started with AS2 — in-house vs outsourced

• In-house implementation: Purchase, install, and configure AS2 software internally; work with each trading partner's IT team to exchange digital certificates and configure firewall access; run connectivity tests with each partner before go-live. Requires internal EDI and networking expertise and ongoing certificate management as certificates expire.
• Consultant-assisted implementation: Engage an EDI consultant to handle the technical setup while your internal team manages the trading partner relationships. Consulting fees are typically project-based and do not include ongoing certificate management or support.
• Fully outsourced to BOLD VAN: According to BOLD VAN, all AS2 configuration, certificate provisioning and management, trading partner setup, firewall configuration coordination, and connectivity testing are handled by BOLD VAN as part of the standard monthly subscription — with no additional charge for setup or onboarding. The white-glove service covers AS2, VAN, and any other EDI services required for each trading partner relationship.

Frequently asked questions