I am currently implementing security with JMS. Could you provide some guidance/advice on the type of security I am dealing with? Thanks in advance and looking forward to your response. [ January 10, 2006: Message edited by: Bhavesh Ravjee ]
With great power comes great responsibility!
posted 10 years ago
Implementing JMS security is very much vendor specific...and we did discuss in our book. The most common JMS security options are:
- Enabling JMS Provider authentication and access control - JMS Queues and Topics protection, so that the desinations are available for access to privileged applications - JMS Message-level (Using Encryption and Digital signatures) and Transport-layer security (Using SSL).
One word of caution, these options are NOT defined by JMS standard specifications so it depends upon your JMS provider.