Security in TIBCO BusinessEvents

TIBCO BusinessEvents ensures security by implementing the following measures of securing the application and its data.

Rest of the document details the various relevant TIBCO BusinessEvents components and mechanisms to configure security for these components.

Channels

Channels represent physical connections to a resource, such as a Rendezvous daemon, JMS server, HTTP server or client, Hawk domain, StreamBase server, FTL realm server.

TIBCO BusinessEvents provides a way to configure secure connectivity (over SSL) as well as authentication (as applicable) for channels to improve security between TIBCO BusinessEvents and these resources. All passwords that you add to a channel are encrypted.

The specific configuration details vary for specific types of channel. For details about how security is configured for a specific channel, see TIBCO BusinessEvents Developer's GuideShared Resources.

Cluster Providers, Cache Providers and Stores

Depending on the project configuration, TIBCO BusinessEvents needs to communicate with external systems at runtime through cluster providers, cache providers, store providers, and metrics stores.

Secure connectivity to these external systems can be configured based on the secure configuration provided by these products. For details about configuring secure connectivity to these providers, see Cluster Configurations For Your Project.

Rule Management Server (RMS)

RMS is a web-based application that provides an online tool to create and manage business rules and decision tables.

For details about the following security measures implemented in RMS, see TIBCO BusinessEvents WebStudio User's Guide:

JMX

TIBCO BusinessEvents supports JMX based monitoring using tools such as JConsole to view the exposed MBeans. User based authentication as well as enabling SSL transport is supported.

For details, see Setting JMX Properties.

TIBCO BusinessEvents Enterprise Administrator Agent

TIBCO® Enterprise Administrator provides a centralized administrative interface to manage and monitor multiple TIBCO products deployed in an enterprise.

TIBCO BusinessEvents Enterprise Administrator Agent is the backend server process that provides management and monitoring functionality for a TIBCO BusinessEvents application and cluster. The agent communicates with the TIBCO Enterprise Administrator Server for UI interactions and communicates with BusinessEvents instances using JMX. The BusinessEvents Enterprise Administrator Agent communicates with the remote machines for deployments using Secure Shell (SSH).

You can configure one-way or two-way SSL authentication between TIBCO Enterprise Administrator and TIBCO BusinessEvents Enterprise Administrator agent. For details, see Authentication and SSL Configurations.