I am currently implementing security with JMS. Could you provide some guidance/advice on the type of security I am dealing with? Thanks in advance and looking forward to your response. [ January 10, 2006: Message edited by: Bhavesh Ravjee ]
Implementing JMS security is very much vendor specific...and we did discuss in our book. The most common JMS security options are:
- Enabling JMS Provider authentication and access control - JMS Queues and Topics protection, so that the desinations are available for access to privileged applications - JMS Message-level (Using Encryption and Digital signatures) and Transport-layer security (Using SSL).
One word of caution, these options are NOT defined by JMS standard specifications so it depends upon your JMS provider.