Security

WebSphere MQ Everyplace includes an integrated set of security features that provide protection for message data, both when it is held locally, and when it is being transferred. There are three different categories of security:

Local security
Local security provides protection for WebSphere MQ Everyplace messages while they are held by a local queue manager.

Queue-based security
Queue-based security automatically protects WebSphere MQ Everyplace message data between an initiating queue manager and a target queue, if the target queue is defined with an attribute. This protection is independent of whether the target queue is owned by a local or a remote queue manager.

Message-level security
Message-level security provides protection for message data between an initiating and receiving WebSphere MQ Everyplace application.
WebSphere MQ Everyplace security uses the authenticator, cryptor, and compressor attributes referred to in WebSphere MQ Everyplace connections. Queue based security is handled internally by WebSphere MQ Everyplace and does not require any specific action by the initiator or recipient of the message. Local and Message-level security must be initiated by an application.

WebSphere MQ Everyplace also provides a mini-certificate server for enhanced security.

See Security for detailed information about WebSphere MQ Everyplace security features.

Note:
Throughout the world there are varying government regulations concerning levels and types of cryptography. You must always use a level and type of cryptography that complies with the appropriate local legislation. This is particularly relevant when using a mobile device that is moved from country to country. WebSphere MQ Everyplace provides facilities for this, but it is the responsibility of the application programmer to implement it.


© IBM Corporation 2002. All Rights Reserved