Kbase 20283: SonicMQ: How Secure is the First Message Sent?
| Autor |
Progress Software Corporation - Progress |
| Acesso |
Público |
| Publicação |
08/08/2001 |
|
SUMMARY:
This solution applies to Progress SonicMQ Version 2000.x and 3.x. It discusses
how a SonicMQ JMS client acting as a message producer (Sender or Publisher) handles message payload encryption before the Quality of Protection (QoP) of the message's destination (Queue or Topic) is known.
EXPLANATION:
When security is enabled on the SonicMQ broker, a JMS client needs to know the QoP associated with a given destination to determine whether messages sent to that destination must be encrypted. Because the QoP
associated with a given destination is not known when the first message is sent to that destination, the first message is always sent encrypted.
A QoP query is sent along with that first message. In response to this query, the sending client receives that destination's QoP setting. All subsequent messages sent to that destination are sent using the level of protection specified by that QoP setting.
References to Written Documentation:
SonicMQ 2000.x and 3.0 Installation and Administration Guide,
Chapter 2, Administration Concepts, Security
SonicMQ 3.5 Installation and Administration Guide,
Chapter 3, Administration Concepts, Security
Sonic Knowledge Base Solution 19445,
"SonicMQ: What Payload Encryption Algorithm does SonicMQ Use".