Home » Products for IBM MQ » MQ Message Encryption Overview

Overview Trial Manuals Customers Lifecycle Buy Now!

MQ Message Encryption Overview

MQME logo The MQ Message Encryption v4.2.0 (MQME) is a solution that provides encryption for MQ message data while it resides in a queue or topic and in the MQ recovery log files (i.e. all data at rest). In cryptography, encryption is the process of transforming information into an unreadable form (encrypted data). Decryption is the reverse process. It makes the encrypted information readable again. Only those with the key (PassPhrase) can successfully decrypt the encrypted data. MQME uses Advanced Encryption Standard (AES) to encrypt the data. AES is a data encryption scheme, adopted by the US government, that uses three different key sizes (128-bit, 192-bit, and 256-bit).

One of the features that MQME offers is the ability to control who accesses protected queues/topics. This control is obtained through the use of UserID grouping. MQME can query the local OS group or a group file. Group files are implemented in a similar manner to the way they are implemented in Unix and Linux (i.e. /etc/group file). Normally, the 'mqm', 'QMQM' or 'MUSR_MQADMIN' MQ UserIDs or any UserID in the 'mqm' group get full access to all messages in all queues/topics. For queues/topics protected by MQME, those privileged UserIds do not get access to the messages in the protected queues/topics unless they are explicitly added to the authorized list of users or groups.

Another feature of MQME is its ability to generate and validate the message via a digital signature. MQME uses the SHA-2 to create a cryptographic hash function (digital signature) for the message data. The digital signature provides verification that the message data has not been altered.

MQME is an MQ API Exit that operates with IBM MQ v7.1, v7.5, v8.0, v9.0, v9.1, v9.2 and v9.3 in Windows, Unix, IBM i (OS/400) and Linux platforms.

On AIX, HP-UX, Linux, Solaris and Windows, MQME can be configured and used with a non-default installation of MQ in a multi-install MQ environment.

MQME Summary

Pricing

Operating System MQ v7.1, v7.5, v8.0, v9.0, v9.1, v9.2 & v9.3
AIX v7.1 or higher 32-bit & 64-bit
IBM i v7.1 or higher 64-bit
HP-UX IA64 v11.23 or higher 32-bit & 64-bit
Linux x86 32-bit
Linux x64 32-bit & 64-bit
Linux on POWER 32-bit & 64-bit
Linux on System z (zSeries) 31-bit & 64-bit
Raspberry Pi (ARM) 32-bit
Solaris SPARC v10 & v11 32-bit & 64-bit
Solaris x86_64 v10 & v11 32-bit & 64-bit
Windows 2008, 2012, 2016, 7, 8, 8.1, 10 & 11 32-bit & 64-bit

 

Product Price (USD) * Ordering
MQ Message Encryption (per license**) $299.00  
Yearly maintenance and support fee 15%  
Total $344.00 Buy Now

* Volume discounts available for as low as $199.00 USD per license plus 15% yearly maintenance and support fee.

** MQ Message Encryption is licensed on a per queue manager basis.

Enterprise License for MQ Message Encryption:
Enterprise License for MQ Message Encryption sells for $55,000 USD plus 15% yearly maintenance and support fee. An enterprise license will allow a company to have unlimited number of queue managers use MQ Message Encryption at an unlimited number of locations.