Advanced Message Security
Advanced Message Security (AMS ) is a component of IBM® MQ that provides a high
level of protection for sensitive data flowing through the IBM MQ network, while not impacting the end applications.
Overview of Advanced Message Security
IBM MQ applications can use Advanced Message Security to send sensitive data, such as high-value financial transactions and personal information, with different levels of protection by using a public key cryptography model.
Advanced Message Security installation overview
Install the Advanced Message Security component on various platforms.
Auditing for AMS on z/OS
Advanced Message Security (AMS ) for z/OS® provides a means for optional auditing of operations by applications on policy protected queues. When enabled, IBM System Management Facility (SMF) audit records are generated for the success and failure of these operations on policy-protected queues. Operations audited include MQPUT, MQPUT1, and MQGET.
Using keystores and certificates with AMS
To provide transparent cryptographic protection to IBM MQ applications, Advanced Message Security uses the keystore file, where public key certificates and a private key are stored. On z/OS , a SAF key ring is used instead of a keystore file.
Administering Advanced Message Security security policies
Advanced Message Security uses security policies to specify the cryptographic encryption and signature algorithms for encrypting and authenticating messages that flow through the queues.