Security for messaging engines

When bus security is enabled, you need to be aware of the additional requirements to secure communication between messaging engines.

To ensure that messaging engines operate securely when bus security is enabled, you should understand the following points:
  • Use secure transport connections (SSL or HTTPS) to ensure confidentiality and integrity of messages in transit between messaging engines. Define an appropriate secure transport chain, and then reference the transport chain name from the bus property引擎间传输链. For more information, see 安全传输配置需求.
  • If the bus has a bus member at WebSphere® Application Server V6, set the 内部引擎的认证别名 property. This prevents unauthorized clients or messaging engines from establishing a connection. For more information, see 添加受保护总线.
  • Secure access to the data store for a messaging engine by using a user ID and password. Apply higher levels of security by using the underlying features of message stores. For example, for a data store, Apache Derby Version 10.3 allows the whole database to be encrypted, DB2® allows specific tables to be encrypted. These features must be managed directly by the appropriate database administrator. Refer to 保证数据库访问的安全性 for more details.
  • If fine-grained administrative security is in use, messaging engines are administered as resources at the server or cluster level.

指示主题类型的图标 概念主题



时间戳记图标 最近一次更新时间: July 9, 2016 9:27
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=cord&product=was-nd-mp&topic=cjk0015_
文件名:cjk0015_.html