Copyright © TIBCO Software Inc. All Rights Reserved
Copyright © TIBCO Software Inc. All Rights Reserved


Chapter 18 Using the SSL Protocol : SSL Authentication Only

SSL Authentication Only
EMS servers can use SSL for secure data exchange (standard usage), or only for client authentication. This section describes the use of SSL for client authentication.
Motivation
Some applications require strong or encrypted authentication, but do not require message encryption.
In this situation, application architects could configure SSL with a null cipher. However, this solution incurs internal overhead costs of SSL calls, decreasing message speed and throughput.
For optimal performance, the preferred solution is to use SSL only to authenticate clients, and then avoid SSL calls thereafter, using ordinary TCP communications for subsequent data exchange. Message performance remains unaffected.
Preconditions
All three of these preconditions must be satisfied to use SSL only for authentication:
The server must explicitly enable the parameter ssl_auth_only in the tibemsd.conf configuration file.
See Also
Server parameter ssl_auth_only on page 237
Client parameter ssl_auth_only on page 498

Copyright © TIBCO Software Inc. All Rights Reserved
Copyright © TIBCO Software Inc. All Rights Reserved