Public registry service

This section describes the public registry service provided by MQe.

MQe provides default services facilitating the sharing of authenticatable entity public credentials (mini-certificates) between MQe nodes. Access to these mini-certificates is a prerequisite for message-level security. MQe public registry, also a descendent of base registry, provides a publicly accessible repository for mini-certificates. This is analogous to the personal telephone directory service on a mobile phone, the difference being that it is a set of mini-certificates of the authenticatable entities instead of phone numbers.

MQe public registry is not a purely passive service. If accessed to provide a mini-certificate that is does not hold, and if the public registry is configured with a valid home server, the public registry automatically attempts to get the requested mini-certificate from the public registry of the home server. It also provides a mechanism to share a mini-certificate with the public registry of other MQe nodes. Together these services provide the building blocks for an intelligent automated mini-certificate replication service that can facilitates the availability of the right mini-certificate at the right time.


Terms of use | WebSphere software

(c) Copyright IBM Corporation 2004, 2005. All rights reserved.