Security

WebSphere MQ Everyplace provides an integrated set of security features that enable the protection of data when held locally and when it is being transferred. There are three different categories of security:

Local security
Local security provides protection for any WebSphere MQ Everyplace data.

Queue-based security
Queue-based security automatically protects WebSphere MQ Everyplace message data between the initiating queue manager and queue, on the queue, and between the queue and the receiving queue manager. This protection is independent of whether the target queue is owned by a local or a remote queue manager. Using queue-based security does not require any change to application code and, therefore, is not described any further in this chapter. The WebSphere MQ Everyplace Configuration Guide describes how to add security attributes to a queue.

Message-level security
Message-level security provides protection for message data between an initiating and receiving WebSphere MQ Everyplace application.
Note:
Throughout the world there are varying government regulations concerning levels and types of cryptography. You must always use a level and type of cryptography that complies with the appropriate local legislation. This is particularly relevant when using a mobile device that is moved from country to country. WebSphere MQ Everyplace provides facilities for this, but it is the responsibility of the application programmer to implement it.

In this chapter, security is explained under the following headings:



© IBM Corporation 2002. All Rights Reserved