Security
WebSphere MQ Everyplace provides an integrated set of security features that enable the protection of data when held locally and when it is being transferred.
There are three different categories of security:
- Local security
- Local security provides protection for any WebSphere MQ Everyplace data.
- Queue-based security
- Queue-based security automatically protects WebSphere MQ Everyplace message
data between the initiating queue manager and queue, on the queue, and between
the queue and the receiving queue manager. This protection is independent
of whether the target queue is owned by a local or a remote queue manager.
Using queue-based security does not require any change to application code
and, therefore, is not described any further in this chapter. The WebSphere MQ Everyplace Configuration Guide describes
how to add security attributes to a queue.
- Message-level security
- Message-level security provides protection for message data between
an initiating and receiving WebSphere MQ Everyplace application.
Note:
Throughout the world there are varying government
regulations concerning levels and types of cryptography. You must always use
a level and type of cryptography that complies with the appropriate local
legislation. This is particularly relevant when using a mobile device that
is moved from country to country. WebSphere MQ Everyplace provides facilities
for this, but it is the responsibility of the application programmer to implement
it.
In this chapter, security is explained under the following headings: